Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
File: OuUFv8f9kXaGscizohj1UI9aNwo.mft (raw, json)
Hash identifier: l0wO63e8xcUrzmoiqUUVyfUWHm3GxNuqMz8g/gjP+Ps=
Subject key identifier: FA:66:F6:72:45:75:7C:91:4A:FD:35:06:D0:71:CC:39:CB:3A:EA:87
Authority key identifier: 3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A
Certificate issuer: /CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a
Certificate serial: 0194C3BE7898AD47FDC03CDE40DAC68CB228
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
Manifest number: 7E
Signing time: Sat 01 Feb 2025 23:00:27 +0000
Manifest this update: Sat 01 Feb 2025 23:00:27 +0000
Manifest next update: Sun 02 Feb 2025 23:00:27 +0000
Files and hashes: 1: OuUFv8f9kXaGscizohj1UI9aNwo.crl (hash: ko8EacirOtja8dlY9fOku4FoE5sF8k9lFqofpQ4p8to=)
2: lhV68OSkur6ZsAA_2dy8-L_4IL0.roa (hash: BvvVh8/fqP1HPi1uOxwh0N4UEkoJk2nM455CRrFSNec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:78:98:ad:47:fd:c0:3c:de:40:da:c6:8c:b2:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a
Validity
Not Before: Feb 1 23:00:27 2025 GMT
Not After : Feb 2 23:00:27 2025 GMT
Subject: CN=fa66f67245757c914afd3506d071cc39cb3aea87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d5:1f:4d:a1:e9:31:22:12:54:19:ef:48:d7:
fa:d6:c4:fc:44:30:4f:8f:5a:3c:b5:bc:86:86:23:
8c:3a:d4:6d:1b:6a:1a:6a:37:e8:dc:f9:20:cf:be:
5d:c0:e9:9b:88:fe:a9:ad:49:fe:ed:eb:93:7a:77:
a0:84:a0:6b:ee:a9:eb:d6:01:b3:2f:eb:50:5b:45:
f7:2f:b3:a0:ab:83:41:7c:1c:f0:b6:8b:90:d4:ef:
e0:e1:26:c6:58:1e:8b:29:b7:a9:8f:5e:0c:29:1e:
14:49:38:12:bf:4f:47:62:cb:1a:a8:5c:6c:a7:e8:
7f:5a:bd:12:f4:53:30:11:07:30:80:71:cf:cc:23:
03:88:6f:de:c1:68:9e:52:31:77:ad:5e:03:a7:4b:
3a:8e:5e:04:09:77:1a:c4:d2:18:36:ea:be:f9:53:
1c:53:b5:12:db:f1:68:c4:cf:c3:f5:e4:34:27:d0:
34:e3:42:d3:27:72:31:bf:91:48:75:d5:41:b7:77:
0a:3e:3e:3b:cb:18:3f:b1:f2:35:13:e6:60:a9:b7:
b8:10:09:30:5b:d3:a4:a1:e2:84:89:48:dd:2c:dd:
db:49:62:83:40:77:70:ba:cd:d0:a3:84:6c:54:99:
ee:22:2b:6d:1e:e4:8f:f7:cd:d6:3a:93:9b:f3:38:
9f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:66:F6:72:45:75:7C:91:4A:FD:35:06:D0:71:CC:39:CB:3A:EA:87
X509v3 Authority Key Identifier:
keyid:3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:60:91:9c:a8:32:1e:c1:43:28:b2:a1:e8:5c:35:fe:b3:61:
54:8d:81:c3:a7:9d:b7:65:e0:4a:f2:33:60:74:bd:4e:16:8a:
d4:7d:4e:86:7a:8b:3a:b9:43:a0:9d:37:7d:d9:03:1b:5f:33:
22:cf:40:89:06:27:0e:b9:c5:4a:c9:37:94:13:d5:f1:8f:0c:
f6:af:56:a0:4f:36:ad:83:b5:c4:eb:dc:97:76:5e:cd:c4:6b:
c3:e6:e3:17:e0:7e:b6:0f:4b:5b:7d:d6:15:b1:09:97:8d:69:
ca:f2:e3:8d:67:d5:69:2b:bd:f2:13:6a:84:59:1a:6d:5a:4b:
6c:b3:1a:f1:cd:2f:d1:1e:d0:46:61:10:a2:8f:f7:d8:ea:e7:
4a:4a:76:a1:e2:87:87:52:d5:d6:fd:28:98:12:d3:c6:fc:e3:
20:65:a4:c1:88:4c:a6:e9:c3:c2:9e:32:ae:a5:b8:36:cd:18:
5b:6b:36:4e:11:ed:51:7f:77:e5:87:3c:9b:32:df:57:eb:f8:
ae:a4:b0:58:87:dc:fb:68:0b:28:a2:9b:01:20:d2:08:3a:0b:
4d:66:82:fd:20:c4:9f:ac:b6:cc:77:dd:fd:89:1f:62:4b:32:
5f:11:7f:fe:29:2f:7c:3c:ac:48:35:1e:d0:d8:a9:4c:8f:58:
3b:e8:d1:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDvniYrUf9wDzeQNrGjLIoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZTUwNWJmYzdmZDkxNzY4NmIxYzhiM2EyMThmNTUwOGY1
YTM3MGEwHhcNMjUwMjAxMjMwMDI3WhcNMjUwMjAyMjMwMDI3WjAzMTEwLwYDVQQD
EyhmYTY2ZjY3MjQ1NzU3YzkxNGFmZDM1MDZkMDcxY2MzOWNiM2FlYTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutUfTaHpMSISVBnvSNf61sT8RDBP
j1o8tbyGhiOMOtRtG2oaajfo3Pkgz75dwOmbiP6prUn+7euTeneghKBr7qnr1gGz
L+tQW0X3L7Ogq4NBfBzwtouQ1O/g4SbGWB6LKbepj14MKR4USTgSv09HYssaqFxs
p+h/Wr0S9FMwEQcwgHHPzCMDiG/ewWieUjF3rV4Dp0s6jl4ECXcaxNIYNuq++VMc
U7US2/FoxM/D9eQ0J9A040LTJ3Ixv5FIddVBt3cKPj47yxg/sfI1E+Zgqbe4EAkw
W9OkoeKEiUjdLN3bSWKDQHdwus3Qo4RsVJnuIittHuSP983WOpOb8zifOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPpm9nJFdXyRSv01BtBxzDnLOuqHMB8GA1UdIwQY
MBaAFDrlBb/H/ZF2hrHIs6IY9VCPWjcKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3VVRnY4ZjlrWGFHc2Npem9oajFVSTlhTndvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS80MTkzZWEtYzgzZi00YmViLWEyMWUt
YTFjNzhhMGE2YmZkLzEvT3VVRnY4ZjlrWGFHc2Npem9oajFVSTlhTndvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS80MTkzZWEtYzgzZi00YmViLWEyMWUtYTFjNzhhMGE2YmZk
LzEvT3VVRnY4ZjlrWGFHc2Npem9oajFVSTlhTndvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUGCRnKgy
HsFDKLKh6Fw1/rNhVI2Bw6edt2XgSvIzYHS9ThaK1H1OhnqLOrlDoJ03fdkDG18z
Is9AiQYnDrnFSsk3lBPV8Y8M9q9WoE82rYO1xOvcl3ZezcRrw+bjF+B+tg9LW33W
FbEJl41pyvLjjWfVaSu98hNqhFkabVpLbLMa8c0v0R7QRmEQoo/32OrnSkp2oeKH
h1LV1v0omBLTxvzjIGWkwYhMpunDwp4yrqW4Ns0YW2s2ThHtUX935Yc8mzLfV+v4
rqSwWIfc+2gLKKKbASDSCDoLTWaC/SDEn6y2zHfd/YkfYksyXxF//ikvfDysSDUe
0NipTI9YO+jRsA==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:42:01 2025 by rpki-client