Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/9ad081-da5a-42a4-a430-1e67170dfbba/1/OlVdhNzX3bZAaRuUDHygl3KIocQ.mft
File: OlVdhNzX3bZAaRuUDHygl3KIocQ.mft (raw, json)
Hash identifier: 2QlEDTdpgVxrOWWJdCVoeh8i0HOmWWWxiHPaAMHyA+s=
Subject key identifier: 70:8F:DF:20:8D:20:58:1F:A9:6F:97:DF:F1:E7:59:BA:F0:AA:0E:2A
Authority key identifier: 3A:55:5D:84:DC:D7:DD:B6:40:69:1B:94:0C:7C:A0:97:72:88:A1:C4
Certificate issuer: /CN=3a555d84dcd7ddb640691b940c7ca0977288a1c4
Certificate serial: 01964F6D4BDA5BBA2EE26243A195E7BEF335
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OlVdhNzX3bZAaRuUDHygl3KIocQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/9ad081-da5a-42a4-a430-1e67170dfbba/1/OlVdhNzX3bZAaRuUDHygl3KIocQ.mft
Manifest number: 0819
Signing time: Sat 19 Apr 2025 19:01:24 +0000
Manifest this update: Sat 19 Apr 2025 19:01:24 +0000
Manifest next update: Sun 20 Apr 2025 19:01:24 +0000
Files and hashes: 1: OlVdhNzX3bZAaRuUDHygl3KIocQ.crl (hash: aip+RXwY+nSXMjWmOtd6574MDXNFDGllgBbqB79qEn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/9ad081-da5a-42a4-a430-1e67170dfbba/1/OlVdhNzX3bZAaRuUDHygl3KIocQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/9ad081-da5a-42a4-a430-1e67170dfbba/1/OlVdhNzX3bZAaRuUDHygl3KIocQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OlVdhNzX3bZAaRuUDHygl3KIocQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6d:4b:da:5b:ba:2e:e2:62:43:a1:95:e7:be:f3:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a555d84dcd7ddb640691b940c7ca0977288a1c4
Validity
Not Before: Apr 19 19:01:24 2025 GMT
Not After : Apr 20 19:01:24 2025 GMT
Subject: CN=708fdf208d20581fa96f97dff1e759baf0aa0e2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:94:d9:6a:b0:32:fa:c7:4e:2b:8a:8a:a5:f3:
b9:1f:19:cb:f1:7b:b3:84:22:1d:d8:d9:b4:0e:ad:
5f:a4:08:3e:87:6f:ca:a6:99:a6:77:e2:ad:7e:d5:
29:9c:e8:f8:f8:39:67:d2:33:c4:b4:14:7a:72:41:
00:97:1a:fa:c2:11:17:ef:f4:bc:c4:f1:08:ee:59:
14:55:14:d1:3b:a6:35:9e:77:86:f6:4d:f6:6a:c4:
fd:a6:e0:00:e8:10:8e:b4:14:a3:39:f2:f0:44:bc:
87:6e:06:75:04:fa:8c:e6:3f:19:68:ac:5a:88:f6:
f5:9c:4d:93:d4:48:89:0a:d2:a4:5a:bb:80:de:fd:
d4:58:74:18:7f:3f:b3:0f:4e:e3:2c:13:b2:d5:1f:
82:db:e2:2c:2a:fd:04:b1:14:b5:56:f7:15:64:b2:
cd:dd:74:e6:c5:3b:17:7c:5a:e9:c3:1d:73:d4:e2:
26:5a:98:f6:8d:f7:7f:06:5f:7e:72:0e:de:40:5c:
80:13:05:3f:60:01:38:36:27:1e:33:01:27:5d:60:
ef:05:4d:9b:69:e1:98:25:af:5e:77:40:5a:c1:67:
12:2b:09:b4:26:82:a0:ab:3e:d0:95:d1:77:59:9d:
bf:78:7a:98:8f:da:88:32:e3:1f:13:19:58:ca:13:
a3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:8F:DF:20:8D:20:58:1F:A9:6F:97:DF:F1:E7:59:BA:F0:AA:0E:2A
X509v3 Authority Key Identifier:
keyid:3A:55:5D:84:DC:D7:DD:B6:40:69:1B:94:0C:7C:A0:97:72:88:A1:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OlVdhNzX3bZAaRuUDHygl3KIocQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/9ad081-da5a-42a4-a430-1e67170dfbba/1/OlVdhNzX3bZAaRuUDHygl3KIocQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/9ad081-da5a-42a4-a430-1e67170dfbba/1/OlVdhNzX3bZAaRuUDHygl3KIocQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:b6:f6:f9:af:0b:bb:57:b0:65:fb:88:de:af:9d:dd:ee:91:
7b:5d:45:23:08:73:06:5f:e3:4d:50:bd:3a:62:a7:1c:33:59:
0a:10:c6:64:f5:4c:13:9b:e2:56:da:96:f2:0c:d6:fd:d5:a0:
d3:86:fe:3e:a3:fd:4e:c0:49:d3:17:cc:02:6d:11:ab:d8:cc:
a2:40:81:61:2c:ee:aa:6e:6a:89:12:74:75:8c:51:70:64:a9:
db:f5:7c:8f:57:f4:fe:8f:08:17:70:47:e0:32:a1:e1:48:00:
83:3d:a7:a1:40:42:83:cb:58:75:6d:5a:94:82:72:0b:00:93:
7e:c3:7b:19:53:83:1e:74:1f:a9:ac:c5:b5:d5:7c:2c:59:d2:
c9:80:82:82:fd:4f:e7:37:08:84:08:74:8b:5a:97:a4:33:0f:
f6:ec:18:f2:44:b8:e5:65:1e:10:48:ed:fa:92:ab:b7:83:bf:
3b:e7:e2:91:00:ea:34:43:74:9e:77:62:04:16:fc:be:9b:ed:
bb:5e:86:71:ef:a4:cb:37:21:52:3f:25:ac:40:8c:89:42:ef:
9a:9b:c7:19:57:1b:61:94:a5:d2:86:98:26:02:35:29:3c:5c:
fc:3b:b9:72:69:9d:02:b5:d5:c7:e4:71:99:5b:f8:00:ee:8d:
35:d9:06:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZPbUvaW7ou4mJDoZXnvvM1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNTU1ZDg0ZGNkN2RkYjY0MDY5MWI5NDBjN2NhMDk3NzI4
OGExYzQwHhcNMjUwNDE5MTkwMTI0WhcNMjUwNDIwMTkwMTI0WjAzMTEwLwYDVQQD
Eyg3MDhmZGYyMDhkMjA1ODFmYTk2Zjk3ZGZmMWU3NTliYWYwYWEwZTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAipTZarAy+sdOK4qKpfO5HxnL8Xuz
hCId2Nm0Dq1fpAg+h2/Kppmmd+KtftUpnOj4+Dln0jPEtBR6ckEAlxr6whEX7/S8
xPEI7lkUVRTRO6Y1nneG9k32asT9puAA6BCOtBSjOfLwRLyHbgZ1BPqM5j8ZaKxa
iPb1nE2T1EiJCtKkWruA3v3UWHQYfz+zD07jLBOy1R+C2+IsKv0EsRS1VvcVZLLN
3XTmxTsXfFrpwx1z1OImWpj2jfd/Bl9+cg7eQFyAEwU/YAE4NiceMwEnXWDvBU2b
aeGYJa9ed0BawWcSKwm0JoKgqz7QldF3WZ2/eHqYj9qIMuMfExlYyhOjrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHCP3yCNIFgfqW+X3/HnWbrwqg4qMB8GA1UdIwQY
MBaAFDpVXYTc1922QGkblAx8oJdyiKHEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2xWZGhOelgzYlpBYVJ1VURIeWdsM0tJb2NRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy85YWQwODEtZGE1YS00MmE0LWE0MzAt
MWU2NzE3MGRmYmJhLzEvT2xWZGhOelgzYlpBYVJ1VURIeWdsM0tJb2NRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy85YWQwODEtZGE1YS00MmE0LWE0MzAtMWU2NzE3MGRmYmJh
LzEvT2xWZGhOelgzYlpBYVJ1VURIeWdsM0tJb2NRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhrb2+a8L
u1ewZfuI3q+d3e6Re11FIwhzBl/jTVC9OmKnHDNZChDGZPVME5viVtqW8gzW/dWg
04b+PqP9TsBJ0xfMAm0Rq9jMokCBYSzuqm5qiRJ0dYxRcGSp2/V8j1f0/o8IF3BH
4DKh4UgAgz2noUBCg8tYdW1alIJyCwCTfsN7GVODHnQfqazFtdV8LFnSyYCCgv1P
5zcIhAh0i1qXpDMP9uwY8kS45WUeEEjt+pKrt4O/O+fikQDqNEN0nndiBBb8vpvt
u16Gce+kyzchUj8lrECMiULvmpvHGVcbYZSl0oaYJgI1KTxc/Du5cmmdArXVx+Rx
mVv4AO6NNdkGkw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:52:34 2025 by rpki-client