Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
File: O_zNSgBCLIZfUJO4W7howrswxGk.mft (raw, json)
Hash identifier: b3W/eYUyp1sqe/0TPjvl82xh/wy/LsF9rRnQ6GrXu1I=
Subject key identifier: 10:82:64:5A:C1:91:27:4A:26:2A:DE:52:80:1C:4D:62:BA:A3:DE:2D
Authority key identifier: 3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
Certificate issuer: /CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Certificate serial: 01965F84AB1495F1EFE3F95946AAE7838B3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
Manifest number: 1506
Signing time: Tue 22 Apr 2025 22:00:51 +0000
Manifest this update: Tue 22 Apr 2025 22:00:51 +0000
Manifest next update: Wed 23 Apr 2025 22:00:51 +0000
Files and hashes: 1: 3U1ZWgNoASiRwWRzOTs9a26_aSI.roa (hash: rfiPEMHu4Dy2ke39aiCtx6HNVMRJPDS81QuXHyTH8CQ=)
2: O_zNSgBCLIZfUJO4W7howrswxGk.crl (hash: HV7uHcCpjy0qgLtxM46f4ceo/9n1FuC2No1+KlNtZXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:84:ab:14:95:f1:ef:e3:f9:59:46:aa:e7:83:8b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Validity
Not Before: Apr 22 22:00:51 2025 GMT
Not After : Apr 23 22:00:51 2025 GMT
Subject: CN=1082645ac191274a262ade52801c4d62baa3de2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ff:4e:f1:19:ee:f3:17:07:97:91:d8:c9:ee:7f:
16:19:3d:82:02:b6:75:7b:ea:43:14:01:ca:05:a7:
2c:1d:da:10:c9:5f:14:d7:a8:df:28:ec:0f:5f:e3:
22:7f:cf:f9:3a:52:21:c9:71:12:8f:71:e2:7c:90:
79:4e:5b:47:a7:61:b4:82:22:36:eb:2f:cc:af:3d:
38:d3:ed:40:70:e7:1b:08:15:b1:a7:e9:a8:49:07:
49:36:ac:62:6f:41:3d:d1:93:6c:fd:6c:9c:6b:e8:
b1:08:ab:64:2e:4e:fb:5a:1a:9b:80:ea:02:d9:c3:
f5:11:b2:6d:fd:c5:9b:9d:26:b9:e6:24:32:de:fb:
7d:a5:50:b4:29:af:e1:90:33:1d:a8:10:7d:c0:4f:
d9:58:06:fd:2a:c0:12:fe:d1:6d:7f:94:6c:07:43:
46:76:37:fc:1a:32:43:22:6f:ce:e2:f7:57:f2:e5:
fc:2d:ef:f1:fa:02:c4:b9:07:c3:78:34:a2:a8:5d:
df:dd:51:6f:d6:f8:de:34:48:22:e4:cf:87:06:a9:
91:e9:f9:83:b5:52:c5:1f:31:e5:fd:f0:8b:ed:65:
e5:5e:7a:9d:0f:39:ed:78:6d:23:4b:54:2c:f7:48:
4a:44:84:1b:df:16:61:11:c5:b7:04:57:11:e8:21:
7c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:82:64:5A:C1:91:27:4A:26:2A:DE:52:80:1C:4D:62:BA:A3:DE:2D
X509v3 Authority Key Identifier:
keyid:3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:b3:cb:5d:37:08:ae:fe:de:0b:a1:7e:05:11:42:f2:05:42:
e0:be:2b:cb:12:6f:24:0d:4b:bb:c4:9c:9f:f9:c6:47:6f:63:
e2:cc:f6:9a:d5:88:c0:1a:d2:73:ce:de:01:52:42:d2:81:08:
d3:b2:df:06:ea:47:ec:fe:a0:17:72:f9:f1:35:3f:6e:6e:33:
25:18:4c:19:4a:90:9c:49:e3:04:e3:f1:af:18:e7:c4:48:64:
8e:19:f6:3c:a3:c3:5f:5d:6e:5f:d4:aa:8d:69:3c:e1:29:06:
cf:6d:8d:60:de:75:00:ee:26:a1:26:1f:63:17:73:35:e3:09:
80:7a:7d:5b:d3:0c:d2:27:5d:99:d0:53:93:0e:f6:5b:e9:ab:
15:73:62:1b:b7:64:41:c6:15:f7:44:7b:a6:e3:c2:3e:5c:46:
36:82:f8:7b:d1:5e:98:b9:a9:7a:cf:10:d5:05:db:92:be:1b:
61:91:8b:db:e6:77:2c:43:1d:9f:6c:59:7f:45:e2:cd:b7:b2:
39:2f:ac:4b:ef:35:12:f4:c6:4c:02:db:58:15:62:0d:90:7e:
f0:22:fd:7b:fc:37:b6:ef:57:9d:c3:b7:84:38:e3:aa:98:a6:
19:2a:8a:cb:d4:a0:af:78:43:f8:16:60:35:91:f2:50:bc:eb:
6a:bd:0f:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZfhKsUlfHv4/lZRqrng4s+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZmNjZDRhMDA0MjJjODY1ZjUwOTNiODViYjg2OGMyYmIz
MGM0NjkwHhcNMjUwNDIyMjIwMDUxWhcNMjUwNDIzMjIwMDUxWjAzMTEwLwYDVQQD
EygxMDgyNjQ1YWMxOTEyNzRhMjYyYWRlNTI4MDFjNGQ2MmJhYTNkZTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/07xGe7zFweXkdjJ7n8WGT2CArZ1
e+pDFAHKBacsHdoQyV8U16jfKOwPX+Mif8/5OlIhyXESj3HifJB5TltHp2G0giI2
6y/Mrz040+1AcOcbCBWxp+moSQdJNqxib0E90ZNs/Wyca+ixCKtkLk77WhqbgOoC
2cP1EbJt/cWbnSa55iQy3vt9pVC0Ka/hkDMdqBB9wE/ZWAb9KsAS/tFtf5RsB0NG
djf8GjJDIm/O4vdX8uX8Le/x+gLEuQfDeDSiqF3f3VFv1vjeNEgi5M+HBqmR6fmD
tVLFHzHl/fCL7WXlXnqdDznteG0jS1Qs90hKRIQb3xZhEcW3BFcR6CF8bwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBCCZFrBkSdKJireUoAcTWK6o94tMB8GA1UdIwQY
MBaAFDv8zUoAQiyGX1CTuFu4aMK7MMRpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT196TlNnQkNMSVpmVUpPNFc3aG93cnN3eEdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9iYTcwZjItYjdhYy00MzQ2LTlkMDgt
NjNhZTBiZmMxNjlmLzEvT196TlNnQkNMSVpmVUpPNFc3aG93cnN3eEdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC9iYTcwZjItYjdhYy00MzQ2LTlkMDgtNjNhZTBiZmMxNjlm
LzEvT196TlNnQkNMSVpmVUpPNFc3aG93cnN3eEdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHbPLXTcI
rv7eC6F+BRFC8gVC4L4ryxJvJA1Lu8Scn/nGR29j4sz2mtWIwBrSc87eAVJC0oEI
07LfBupH7P6gF3L58TU/bm4zJRhMGUqQnEnjBOPxrxjnxEhkjhn2PKPDX11uX9Sq
jWk84SkGz22NYN51AO4moSYfYxdzNeMJgHp9W9MM0iddmdBTkw72W+mrFXNiG7dk
QcYV90R7puPCPlxGNoL4e9FemLmpes8Q1QXbkr4bYZGL2+Z3LEMdn2xZf0Xizbey
OS+sS+81EvTGTALbWBViDZB+8CL9e/w3tu9XncO3hDjjqpimGSqKy9Sgr3hD+BZg
NZHyULzrar0PIg==
-----END CERTIFICATE-----
Generated at Wed Apr 23 01:15:05 2025 by rpki-client