Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: uVLnyHiVtiFUR8QfRzlneMVxUZSWstQ7ujA7ywjCRTU=
Subject key identifier: F8:F7:AD:E7:69:A5:18:FF:A4:B0:F2:7D:11:68:F7:8A:0B:74:BA:7A
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 01965538AC0C18738AF7B6ACE899B7AFDEBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 1456
Signing time: Sun 20 Apr 2025 22:01:39 +0000
Manifest this update: Sun 20 Apr 2025 22:01:39 +0000
Manifest next update: Mon 21 Apr 2025 22:01:39 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: aQ9R+ub+NITvIswABB9QLqqNdP/W3LzumbdTt2TUmrk=)
2: I8hH4YeV3HM0yWrc52lfIOhYTt8.roa (hash: colmP8j9TQydvYGFc1+glmJgVJjDM5AxsV+6TerMW6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:ac:0c:18:73:8a:f7:b6:ac:e8:99:b7:af:de:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Apr 20 22:01:39 2025 GMT
Not After : Apr 21 22:01:39 2025 GMT
Subject: CN=f8f7ade769a518ffa4b0f27d1168f78a0b74ba7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dd:70:b9:e6:11:ba:ef:fe:40:ac:65:b9:b8:
f3:c1:5a:31:78:75:1a:48:2f:fc:14:e7:e9:f7:7f:
77:a8:d4:19:be:59:53:b0:a1:26:e5:a8:32:8a:38:
b8:a6:d8:b5:8c:05:58:5e:98:58:ec:c2:5a:d2:4f:
bd:de:bf:31:96:cc:62:30:03:e1:cd:67:6c:b1:32:
1d:40:89:73:f0:3a:68:65:c9:e4:e6:28:f1:b2:f3:
c7:a6:e5:3b:f7:32:38:76:16:27:c5:84:00:c0:8e:
cb:e9:7d:8e:9a:a2:2a:86:22:e1:9a:1a:8c:d2:4b:
46:a0:93:ab:b3:29:94:54:05:75:88:4a:9d:4d:75:
72:a2:57:54:9e:03:1c:35:fe:84:b7:4c:f0:7a:fb:
3a:7c:d4:57:a2:bd:30:2e:34:94:3e:67:81:86:94:
66:50:f0:ca:3a:c1:e7:77:cb:fc:34:af:48:34:2e:
22:0f:78:5e:92:69:27:31:9b:16:81:78:d4:ce:bc:
32:e0:c8:5e:5e:39:72:46:29:e1:4b:d4:c0:5b:38:
b0:97:18:75:6b:12:e0:36:ea:82:ca:7f:2b:32:fd:
6b:c4:b8:e7:79:05:8f:a8:ad:c2:ee:9f:e0:a9:57:
99:9d:76:d1:28:5c:bb:72:3f:9a:83:4f:40:d1:21:
7b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F7:AD:E7:69:A5:18:FF:A4:B0:F2:7D:11:68:F7:8A:0B:74:BA:7A
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:59:6f:7e:f1:0d:e7:cb:18:a0:ed:f4:9b:01:09:4a:88:16:
c4:e1:9a:de:87:f7:be:0d:d8:d6:83:dd:59:e5:fa:c3:ce:ad:
ed:ca:73:89:f7:85:d6:20:ec:af:0c:73:1d:b0:f5:44:f4:74:
c7:e4:9f:81:b3:7a:2d:9f:10:72:22:ba:2c:7b:e0:54:fb:76:
4c:c8:c7:d1:65:4a:7c:b6:c5:dd:4b:1f:5a:77:84:19:8c:35:
f0:1f:9d:b7:ce:13:ea:d6:d8:cb:37:60:0c:36:4a:0f:55:01:
78:e5:89:bc:b2:20:d0:13:21:b6:ae:92:a0:e6:21:a5:45:00:
48:33:88:df:18:4a:a6:15:19:97:bf:19:59:ca:a9:2f:94:50:
83:13:13:07:e8:b4:5f:05:14:22:3d:e2:2f:90:0a:70:1b:20:
55:08:53:7d:cd:41:d4:cd:1a:0b:0a:d1:63:99:d3:09:f8:79:
2e:14:c4:58:cc:9e:e5:54:b2:ea:88:a8:06:20:70:46:52:7f:
6a:d0:67:12:e3:15:1d:17:b8:95:8b:8a:6e:26:be:e9:c3:35:
ab:d9:f0:f8:47:32:92:e1:d7:f8:6c:90:ab:38:f1:aa:60:50:
b6:72:07:2c:ec:da:2e:c5:ef:be:f2:92:f5:34:5f:c7:6e:89:
bd:51:04:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVOKwMGHOK97as6Jm3r968MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwZTY1MzQ4ZGMxM2M4NTQ5OWM3Nzc0ZDE1NjYxNGMxMjAx
MThhYjUwHhcNMjUwNDIwMjIwMTM5WhcNMjUwNDIxMjIwMTM5WjAzMTEwLwYDVQQD
EyhmOGY3YWRlNzY5YTUxOGZmYTRiMGYyN2QxMTY4Zjc4YTBiNzRiYTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvd1wueYRuu/+QKxlubjzwVoxeHUa
SC/8FOfp9393qNQZvllTsKEm5agyiji4pti1jAVYXphY7MJa0k+93r8xlsxiMAPh
zWdssTIdQIlz8DpoZcnk5ijxsvPHpuU79zI4dhYnxYQAwI7L6X2OmqIqhiLhmhqM
0ktGoJOrsymUVAV1iEqdTXVyoldUngMcNf6Et0zwevs6fNRXor0wLjSUPmeBhpRm
UPDKOsHnd8v8NK9INC4iD3hekmknMZsWgXjUzrwy4MheXjlyRinhS9TAWziwlxh1
axLgNuqCyn8rMv1rxLjneQWPqK3C7p/gqVeZnXbRKFy7cj+ag09A0SF7swIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPj3redppRj/pLDyfRFo94oLdLp6MB8GA1UdIwQY
MBaAFNDmU0jcE8hUmcd3TRVmFMEgEYq1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYt
MGRiMGVjMWU5NDVjLzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYtMGRiMGVjMWU5NDVj
LzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKFlvfvEN
58sYoO30mwEJSogWxOGa3of3vg3Y1oPdWeX6w86t7cpzifeF1iDsrwxzHbD1RPR0
x+SfgbN6LZ8QciK6LHvgVPt2TMjH0WVKfLbF3UsfWneEGYw18B+dt84T6tbYyzdg
DDZKD1UBeOWJvLIg0BMhtq6SoOYhpUUASDOI3xhKphUZl78ZWcqpL5RQgxMTB+i0
XwUUIj3iL5AKcBsgVQhTfc1B1M0aCwrRY5nTCfh5LhTEWMye5VSy6oioBiBwRlJ/
atBnEuMVHRe4lYuKbia+6cM1q9nw+EcykuHX+GyQqzjxqmBQtnIHLOzaLsXvvvKS
9TRfx26JvVEE7w==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:28:39 2025 by rpki-client