Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
File: o4SlYxesgXmFG1cPDjp6oEToCKY.mft (raw, json)
Hash identifier: Y28P60h7GXRHZnVrgoE1Twn9h8CrHr/yBJpELIqDcoc=
Subject key identifier: 26:47:4D:F2:29:A5:16:0D:7E:2A:84:C4:35:87:07:5D:77:45:22:64
Authority key identifier: A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
Certificate issuer: /CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Certificate serial: 019611D7DBBF1CD213A67EE5928D53E14684
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
Manifest number: 02FC
Signing time: Mon 07 Apr 2025 20:01:21 +0000
Manifest this update: Mon 07 Apr 2025 20:01:21 +0000
Manifest next update: Tue 08 Apr 2025 20:01:21 +0000
Files and hashes: 1: K7qTK9pIyiEZfe3oYQ_ZP0X2yEA.roa (hash: aRm9dSDweAWyai2Lyi7lBDWMUI5ncN0CehfI1VhjASU=)
2: o4SlYxesgXmFG1cPDjp6oEToCKY.crl (hash: gf6FKc5qALEZCbAmBDOlabwrkXTHTondpC/vUtvakLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:d7:db:bf:1c:d2:13:a6:7e:e5:92:8d:53:e1:46:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Validity
Not Before: Apr 7 20:01:21 2025 GMT
Not After : Apr 8 20:01:21 2025 GMT
Subject: CN=26474df229a5160d7e2a84c43587075d77452264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0d:f4:b1:83:7f:c3:36:89:a7:f4:20:5f:27:
20:67:6a:e9:f4:eb:a9:ae:dc:de:96:8f:40:3b:a9:
c5:27:a2:35:2e:c8:0a:99:a1:0b:f1:2f:7a:62:16:
44:3e:92:25:05:78:85:af:a7:37:49:73:da:7f:3b:
c7:d3:20:2c:74:33:b5:ee:af:13:b6:aa:8d:0b:4a:
6a:ef:e4:bd:59:a5:95:6b:d9:72:62:1c:8d:31:61:
95:23:88:64:77:d8:ce:38:e2:58:00:91:b1:53:1b:
ab:89:e8:13:f3:5c:99:d7:81:92:61:c1:d9:5f:3a:
fa:44:e9:4d:bd:03:2c:c6:c5:b6:04:15:05:e1:ba:
de:cc:ba:6f:23:22:62:11:66:83:d8:34:9c:cd:8b:
2a:d6:c9:0f:15:43:20:e0:70:e3:71:0d:94:ce:63:
43:0e:20:24:f9:43:85:2e:b7:6c:04:ed:45:3f:64:
ed:0b:20:9c:bd:66:54:70:43:bb:36:12:5a:0b:2e:
84:4c:c9:1a:d9:89:b2:cf:c1:8b:0d:fd:40:f9:55:
89:50:46:34:ac:74:15:df:e1:40:97:02:39:77:32:
3b:2f:ca:3e:23:c0:96:ce:2c:82:97:44:c8:ef:2f:
e7:12:ed:cc:59:d8:82:e3:46:ce:6b:43:d1:5d:3c:
ba:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:47:4D:F2:29:A5:16:0D:7E:2A:84:C4:35:87:07:5D:77:45:22:64
X509v3 Authority Key Identifier:
keyid:A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:f4:3e:d5:74:e0:53:e3:e6:11:69:77:f9:6b:dc:70:30:e7:
0c:20:f2:38:1b:45:2a:a9:66:5e:7e:d1:37:b1:04:c4:a2:3a:
ab:9e:e8:c6:9c:20:a3:d8:eb:a7:0e:64:41:57:c3:25:25:fc:
ef:59:55:c8:8f:81:7e:25:2f:e4:87:2e:2d:f5:2d:ba:bf:29:
5b:af:cf:26:5f:1e:85:6e:91:68:84:32:bd:79:b7:be:14:8c:
7a:fd:3e:2d:e4:5b:db:d0:e4:be:4d:d7:8f:29:ec:46:3b:19:
8f:26:6e:e4:50:ce:70:f2:27:67:f1:99:d4:a2:02:7e:13:19:
f9:e5:e8:b0:92:ec:ca:d7:12:c4:56:82:4d:2f:82:d5:da:05:
1b:37:80:c7:6c:dd:d4:5d:8b:b7:02:e7:2b:6f:bb:c0:66:e6:
2a:64:6b:9e:de:e0:5a:1d:a5:01:94:9d:51:27:2f:83:78:4a:
a5:ad:27:5f:bd:64:d0:07:b8:6c:fb:65:36:15:c1:7a:fc:f5:
a2:80:a0:c5:75:b8:ba:fe:64:0f:c6:42:6e:e7:51:82:3f:85:
13:79:3b:5f:06:f0:c3:f3:43:1e:5f:96:1f:7a:48:8e:07:4b:
0e:9b:0d:f4:0b:7d:6f:2e:4f:3b:a2:e2:51:92:5e:17:c0:87:
e8:43:8c:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYR19u/HNITpn7lko1T4UaEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzODRhNTYzMTdhYzgxNzk4NTFiNTcwZjBlM2E3YWEwNDRl
ODA4YTYwHhcNMjUwNDA3MjAwMTIxWhcNMjUwNDA4MjAwMTIxWjAzMTEwLwYDVQQD
EygyNjQ3NGRmMjI5YTUxNjBkN2UyYTg0YzQzNTg3MDc1ZDc3NDUyMjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAog30sYN/wzaJp/QgXycgZ2rp9Oup
rtzelo9AO6nFJ6I1LsgKmaEL8S96YhZEPpIlBXiFr6c3SXPafzvH0yAsdDO17q8T
tqqNC0pq7+S9WaWVa9lyYhyNMWGVI4hkd9jOOOJYAJGxUxuriegT81yZ14GSYcHZ
Xzr6ROlNvQMsxsW2BBUF4brezLpvIyJiEWaD2DSczYsq1skPFUMg4HDjcQ2UzmND
DiAk+UOFLrdsBO1FP2TtCyCcvWZUcEO7NhJaCy6ETMka2Ymyz8GLDf1A+VWJUEY0
rHQV3+FAlwI5dzI7L8o+I8CWziyCl0TI7y/nEu3MWdiC40bOa0PRXTy6pQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCZHTfIppRYNfiqExDWHB113RSJkMB8GA1UdIwQY
MBaAFKOEpWMXrIF5hRtXDw46eqBE6AimMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzRTbFl4ZXNnWG1GRzFjUERqcDZvRVRvQ0tZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9jMmZiZTEtZGQ5ZC00MjA0LTkwNjYt
ZTIyNWEyNDkzNzhlLzEvbzRTbFl4ZXNnWG1GRzFjUERqcDZvRVRvQ0tZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9jMmZiZTEtZGQ5ZC00MjA0LTkwNjYtZTIyNWEyNDkzNzhl
LzEvbzRTbFl4ZXNnWG1GRzFjUERqcDZvRVRvQ0tZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJvQ+1XTg
U+PmEWl3+WvccDDnDCDyOBtFKqlmXn7RN7EExKI6q57oxpwgo9jrpw5kQVfDJSX8
71lVyI+BfiUv5IcuLfUtur8pW6/PJl8ehW6RaIQyvXm3vhSMev0+LeRb29Dkvk3X
jynsRjsZjyZu5FDOcPInZ/GZ1KICfhMZ+eXosJLsytcSxFaCTS+C1doFGzeAx2zd
1F2LtwLnK2+7wGbmKmRrnt7gWh2lAZSdUScvg3hKpa0nX71k0Ae4bPtlNhXBevz1
ooCgxXW4uv5kD8ZCbudRgj+FE3k7Xwbww/NDHl+WH3pIjgdLDpsN9At9by5PO6Li
UZJeF8CH6EOMvA==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:06:08 2025 by rpki-client