Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json)
Hash identifier: oWzwoO/7RijSvqqU3mBgO2tPuOMJzE4aglOhKtWIACU=
Subject key identifier: 9B:3D:C2:B7:79:7F:30:65:A7:47:DC:31:19:F3:7A:35:E5:31:52:B1
Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Certificate serial: 0194C42C58582AF42AA32625FE81861FBBE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
Manifest number: 36
Signing time: Sun 02 Feb 2025 01:00:27 +0000
Manifest this update: Sun 02 Feb 2025 01:00:27 +0000
Manifest next update: Mon 03 Feb 2025 01:00:27 +0000
Files and hashes: 1: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: 0X6/MSoVp8TwSY3S+kjNWNxMCCZYBKCyZ/ycVVoaA+E=)
2: q9EscCe7t5gVibmBd58asAmZMUg.roa (hash: VIc3vlhk4rBIAMQ48+/9jl8SQU9fOCllGCJznJGDS5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:58:58:2a:f4:2a:a3:26:25:fe:81:86:1f:bb:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Validity
Not Before: Feb 2 01:00:27 2025 GMT
Not After : Feb 3 01:00:27 2025 GMT
Subject: CN=9b3dc2b7797f3065a747dc3119f37a35e53152b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:22:74:3f:49:19:1d:03:bf:48:a0:e3:6e:19:
d6:a5:15:7d:a4:9a:ce:fe:ab:31:de:56:3b:0e:82:
21:a5:78:c9:0e:20:e5:50:e4:eb:6d:f4:70:fe:40:
85:ed:12:17:28:1e:0b:ed:bd:49:ec:6b:98:5c:41:
89:f0:b4:53:fd:64:3d:0e:fc:7c:32:29:60:aa:c6:
38:e9:62:10:82:04:35:47:d6:22:b6:cd:58:d0:96:
cb:ac:86:39:72:a9:8c:ac:49:12:ba:f6:30:80:04:
e1:73:f1:ff:c5:4d:19:39:87:f0:78:38:25:06:35:
15:66:aa:36:52:ca:2e:f9:ad:e4:9f:1d:ee:51:a3:
5a:5e:c8:29:c7:b7:1a:e1:c2:a7:40:e2:3a:c6:c5:
0b:d4:a4:ec:45:1f:07:7d:d0:57:0d:8b:a6:93:cd:
78:41:ab:c6:c5:9a:df:af:80:e4:3c:ac:2b:c0:d5:
9b:71:5a:a8:e7:45:e1:19:52:90:d3:6c:23:72:2d:
5c:5b:47:c7:9b:95:0f:a2:ed:23:d1:44:a6:a5:45:
b6:70:d0:e8:d0:08:3a:61:49:68:8d:21:17:5d:b3:
78:41:41:01:e7:83:8f:e6:c3:83:b7:75:b4:1f:ed:
36:83:ad:b0:3a:65:e9:8c:b4:5c:9c:7a:25:0f:ae:
12:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:3D:C2:B7:79:7F:30:65:A7:47:DC:31:19:F3:7A:35:E5:31:52:B1
X509v3 Authority Key Identifier:
keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:f3:3b:c2:32:59:cf:3a:c7:05:a8:77:a7:fd:da:81:0e:92:
e7:7f:62:0b:94:9b:ac:5a:5c:38:26:ab:8a:f4:74:2a:e4:f0:
1d:33:a9:a3:96:1f:8a:2f:0e:c5:80:df:cb:a3:f6:b0:d7:fc:
92:a2:5b:7d:bb:58:d1:e9:56:df:a9:08:fb:32:31:2d:3e:85:
4b:7e:b3:ca:95:24:d5:a9:3b:51:de:0e:44:31:16:b1:19:9a:
c4:09:a1:46:fe:eb:da:72:49:cc:3f:15:69:21:70:05:a6:e2:
43:95:c3:3a:9c:6c:ea:ab:40:25:cb:ff:ac:4c:15:80:a9:f3:
af:46:a0:c0:02:e6:4f:65:9c:fe:a6:b5:49:b8:2e:1d:47:49:
00:4f:e7:4b:a9:be:7d:f4:c8:67:1b:ba:1b:98:95:35:05:04:
1e:af:d7:dc:77:dd:ee:13:fb:48:72:b2:c6:32:38:75:a9:73:
5e:f5:a2:50:7c:5b:fc:ae:d1:54:d3:d7:ac:ba:25:07:0d:dc:
14:e3:f9:07:b7:8a:13:82:ec:fa:93:7c:0f:9d:48:df:57:d2:
de:de:08:e2:5a:58:ce:e4:46:53:19:5f:f7:46:3b:08:7d:08:
a5:05:2b:a5:9e:99:30:a3:af:c3:d3:62:58:05:98:eb:f1:3b:
c3:4e:1f:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTELFhYKvQqoyYl/oGGH7viMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExOWZkNjMzYTRkM2QyMTBkZWNmN2RiNTdkMTIyYjY0OGI5
OGVkMjUwHhcNMjUwMjAyMDEwMDI3WhcNMjUwMjAzMDEwMDI3WjAzMTEwLwYDVQQD
Eyg5YjNkYzJiNzc5N2YzMDY1YTc0N2RjMzExOWYzN2EzNWU1MzE1MmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSJ0P0kZHQO/SKDjbhnWpRV9pJrO
/qsx3lY7DoIhpXjJDiDlUOTrbfRw/kCF7RIXKB4L7b1J7GuYXEGJ8LRT/WQ9Dvx8
MilgqsY46WIQggQ1R9Yits1Y0JbLrIY5cqmMrEkSuvYwgAThc/H/xU0ZOYfweDgl
BjUVZqo2Usou+a3knx3uUaNaXsgpx7ca4cKnQOI6xsUL1KTsRR8HfdBXDYumk814
QavGxZrfr4DkPKwrwNWbcVqo50XhGVKQ02wjci1cW0fHm5UPou0j0USmpUW2cNDo
0Ag6YUlojSEXXbN4QUEB54OP5sODt3W0H+02g62wOmXpjLRcnHolD64SHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJs9wrd5fzBlp0fcMRnzejXlMVKxMB8GA1UdIwQY
MBaAFKGf1jOk09IQ3s99tX0SK2SLmO0lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC83Y2FiZTAtNmQ4NC00N2E3LWFjZWMt
YzdjYWQ1MDIwZWVmLzEvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC83Y2FiZTAtNmQ4NC00N2E3LWFjZWMtYzdjYWQ1MDIwZWVm
LzEvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcfM7wjJZ
zzrHBah3p/3agQ6S539iC5SbrFpcOCarivR0KuTwHTOpo5Yfii8OxYDfy6P2sNf8
kqJbfbtY0elW36kI+zIxLT6FS36zypUk1ak7Ud4ORDEWsRmaxAmhRv7r2nJJzD8V
aSFwBabiQ5XDOpxs6qtAJcv/rEwVgKnzr0agwALmT2Wc/qa1SbguHUdJAE/nS6m+
ffTIZxu6G5iVNQUEHq/X3Hfd7hP7SHKyxjI4dalzXvWiUHxb/K7RVNPXrLolBw3c
FOP5B7eKE4Ls+pN8D51I31fS3t4I4lpYzuRGUxlf90Y7CH0IpQUrpZ6ZMKOvw9Ni
WAWY6/E7w04fug==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:14 2025 by rpki-client