Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft
File: PubOz_2bi7oY1HTns5k-Ch0U27M.mft (raw, json)
Hash identifier: NqPG/MOuLIzJNanxAnkFkdBsnen8mVmUo+8sunaTkTs=
Subject key identifier: EA:1A:55:77:64:6D:81:27:07:A2:9F:E2:8D:A2:2E:4D:CD:04:66:0E
Authority key identifier: 3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
Certificate issuer: /CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Certificate serial: 0196395292C41CE6439E35998902FAC8EF68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft
Manifest number: 14EE
Signing time: Tue 15 Apr 2025 12:00:34 +0000
Manifest this update: Tue 15 Apr 2025 12:00:34 +0000
Manifest next update: Wed 16 Apr 2025 12:00:34 +0000
Files and hashes: 1: 0Z0N7XcDaBDDIFuADZvveEOpnJw.roa (hash: gAUFpbijoaRws4OSpZQdGdoxqVjsxrfddgC/n57+l3g=)
2: 8-FKPJHE6vcPzqBfhidoWPOxdAI.roa (hash: YFJG/U27ibxfBXMxeBPb2K+kYbsAd+aEaMxdkmB5KX8=)
3: MeMsmYAnac73QikfwHpf4FiB8MA.roa (hash: w8cyx5Qe5TgkNbDbtB6QAHXf0+aV1FgiM053aALKsSg=)
4: PubOz_2bi7oY1HTns5k-Ch0U27M.crl (hash: yOnIN/gsXLQrQBPJ4fp45OtS2i3MZnw1H+pXyvFJzuA=)
5: gBOr1K9o3G_sjVut4hTNYrOz3aw.roa (hash: WvCboN2sSwdfSWgLauEyXaJvvKZ2k+WSGckagpeMJcA=)
6: pRRc-aHsLhs7L3jVpiMmTF9mbXU.roa (hash: 3+Rll0s3Qp4ADMZLaRyXjqLo1eqDlTqqXI3V1CpcTo4=)
7: vuTW0ftXsfvIWtL6nGLUGKWxAa0.roa (hash: vusAgJM4Fe2/TEz+SbhV7Z/ibEen3tJQhfA8nIe5Or8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:39:52:92:c4:1c:e6:43:9e:35:99:89:02:fa:c8:ef:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Validity
Not Before: Apr 15 12:00:34 2025 GMT
Not After : Apr 16 12:00:34 2025 GMT
Subject: CN=ea1a5577646d812707a29fe28da22e4dcd04660e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7e:74:7f:bc:f1:3b:dd:f7:99:f9:27:27:d6:
e3:58:b6:d0:19:d7:e6:65:d2:8b:83:ed:7f:d0:31:
03:4b:a0:0e:38:70:8a:e0:7d:87:c9:32:e8:27:ae:
85:7b:45:fe:a8:75:ba:db:8f:c9:fc:35:80:46:05:
85:be:da:fd:93:e8:80:5e:ee:56:85:62:02:61:70:
69:23:75:79:26:78:70:47:a9:eb:32:10:bb:2f:d9:
8d:c0:df:f5:17:8b:a8:d4:65:d4:09:b4:f8:93:a6:
7e:ad:64:ff:94:67:1e:0a:13:73:21:a5:9f:7b:00:
dc:4d:36:4b:34:39:ec:33:ad:0b:d3:b1:6f:ae:4c:
8f:61:53:85:ae:86:94:c8:a4:cc:43:63:5f:e4:81:
32:c5:3e:32:9e:89:36:7e:30:72:fc:79:21:f6:7e:
0e:33:ea:42:65:28:a6:1e:a1:c5:cb:fd:d8:59:8d:
1a:5e:f9:e8:b2:0b:bb:70:ac:ab:4e:51:aa:c0:c7:
8c:9c:c4:85:71:45:54:0b:b2:79:76:fc:1e:f4:88:
b0:34:cb:df:17:ae:9f:77:9e:30:31:e9:a3:46:ed:
98:ee:01:61:0b:67:4c:ca:07:2e:40:50:a5:8e:af:
e4:d6:b6:0f:68:fb:cf:dd:44:1a:d6:49:c0:dd:53:
c7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:1A:55:77:64:6D:81:27:07:A2:9F:E2:8D:A2:2E:4D:CD:04:66:0E
X509v3 Authority Key Identifier:
keyid:3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:1b:e8:70:fe:7a:fc:19:fc:b1:65:1e:aa:99:93:c1:d4:ae:
54:ad:b1:53:e7:11:87:3b:0d:98:ae:19:8f:18:d3:2e:80:3b:
dd:14:f8:40:3a:d2:6d:c1:de:59:a0:bb:ed:e0:d9:82:c6:fa:
4d:c5:a7:54:ca:6f:58:a3:05:d6:69:38:ff:b0:5b:bb:33:31:
29:48:7a:f8:03:a1:db:d4:24:fe:85:87:29:69:3b:80:e6:51:
cc:fa:a7:af:33:39:17:de:64:f9:ea:5a:de:77:35:11:3b:70:
50:d4:d9:93:0f:68:6a:8f:5a:90:69:05:f6:ee:33:69:06:8f:
ae:07:7c:30:38:ee:b0:da:4c:45:dd:98:16:60:43:c3:a7:72:
45:cb:dc:f5:e7:a7:e5:02:60:7b:8d:1f:40:2c:3f:00:9f:21:
12:8d:18:1e:1a:85:00:c5:33:b0:29:45:3c:83:a5:ec:e9:08:
04:3e:39:bc:ed:0b:63:9f:fe:e2:0d:f7:4b:bc:8b:99:90:c1:
51:98:23:20:99:d4:f5:91:7f:a6:fe:61:11:cb:1d:96:10:b6:
88:43:a2:22:0a:39:33:ef:cc:df:ba:e2:32:c1:27:bf:95:82:
3f:a2:87:a3:05:75:e3:ef:28:5a:30:3b:d4:8f:86:df:73:98:
1c:20:89:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY5UpLEHOZDnjWZiQL6yO9oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlZTZjZWNmZmQ5YjhiYmExOGQ0NzRlN2IzOTkzZTBhMWQx
NGRiYjMwHhcNMjUwNDE1MTIwMDM0WhcNMjUwNDE2MTIwMDM0WjAzMTEwLwYDVQQD
EyhlYTFhNTU3NzY0NmQ4MTI3MDdhMjlmZTI4ZGEyMmU0ZGNkMDQ2NjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjn50f7zxO933mfknJ9bjWLbQGdfm
ZdKLg+1/0DEDS6AOOHCK4H2HyTLoJ66Fe0X+qHW624/J/DWARgWFvtr9k+iAXu5W
hWICYXBpI3V5JnhwR6nrMhC7L9mNwN/1F4uo1GXUCbT4k6Z+rWT/lGceChNzIaWf
ewDcTTZLNDnsM60L07FvrkyPYVOFroaUyKTMQ2Nf5IEyxT4ynok2fjBy/Hkh9n4O
M+pCZSimHqHFy/3YWY0aXvnosgu7cKyrTlGqwMeMnMSFcUVUC7J5dvwe9IiwNMvf
F66fd54wMemjRu2Y7gFhC2dMygcuQFCljq/k1rYPaPvP3UQa1knA3VPHlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOoaVXdkbYEnB6Kf4o2iLk3NBGYOMB8GA1UdIwQY
MBaAFD7mzs/9m4u6GNR057OZPgodFNuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9lNjFjYWEtMjUwMC00Mzg4LWE5ZmEt
NzMyNDkxMzk3NWQ1LzEvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS9lNjFjYWEtMjUwMC00Mzg4LWE5ZmEtNzMyNDkxMzk3NWQ1
LzEvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxRvocP56
/Bn8sWUeqpmTwdSuVK2xU+cRhzsNmK4ZjxjTLoA73RT4QDrSbcHeWaC77eDZgsb6
TcWnVMpvWKMF1mk4/7BbuzMxKUh6+AOh29Qk/oWHKWk7gOZRzPqnrzM5F95k+epa
3nc1ETtwUNTZkw9oao9akGkF9u4zaQaPrgd8MDjusNpMRd2YFmBDw6dyRcvc9een
5QJge40fQCw/AJ8hEo0YHhqFAMUzsClFPIOl7OkIBD45vO0LY5/+4g33S7yLmZDB
UZgjIJnU9ZF/pv5hEcsdlhC2iEOiIgo5M+/M37riMsEnv5WCP6KHowV14+8oWjA7
1I+G33OYHCCJRw==
-----END CERTIFICATE-----
Generated at Tue Apr 15 14:03:12 2025 by rpki-client