Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json)
Hash identifier: vvCeT3V1Ny5CbCD1ZJ1SBksc5f4uh6JK3JnpTjqQxBc=
Subject key identifier: 65:DA:E7:FF:17:E3:47:A9:26:F2:24:C3:2B:9D:FC:CB:33:A9:2F:68
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 0196440D64746859D5E490D7BAB5B319F3D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
Manifest number: 0D09
Signing time: Thu 17 Apr 2025 14:00:50 +0000
Manifest this update: Thu 17 Apr 2025 14:00:50 +0000
Manifest next update: Fri 18 Apr 2025 14:00:50 +0000
Files and hashes: 1: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: b0fV2fUDTzxnxn8DrBiaNtjnKLIFYntN0HyaB+oU2C0=)
2: qE1MDKZGRZtaXQk1vt-cL_6WtUI.roa (hash: 3oUc3w7eQj0W70nllC5MQS//X4mPSXNpxrBOqqqOaLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 14:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:0d:64:74:68:59:d5:e4:90:d7:ba:b5:b3:19:f3:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Apr 17 14:00:50 2025 GMT
Not After : Apr 18 14:00:50 2025 GMT
Subject: CN=65dae7ff17e347a926f224c32b9dfccb33a92f68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ad:b9:44:31:46:62:52:7c:c8:59:7e:c5:3f:
12:49:09:7c:de:cc:ef:9b:64:49:c2:80:97:cd:4f:
78:90:c5:6a:18:95:38:6e:97:b4:f5:7d:7d:5e:83:
81:5b:02:b2:1f:59:68:74:06:eb:e4:f7:cc:82:97:
c7:90:ab:8a:06:84:79:46:95:8f:60:1e:21:4f:e5:
cb:87:9b:2a:b0:04:a7:12:15:e5:ed:48:02:a3:db:
1b:31:d2:90:87:2e:25:3a:01:0c:9d:39:c7:d3:d1:
6c:83:6f:d0:b8:20:40:2e:fe:1a:93:6d:52:41:a3:
4d:e9:f4:2d:47:a8:c6:3a:af:20:43:90:9d:c3:21:
44:83:52:59:1b:3b:08:6e:db:94:b4:2b:65:ad:20:
8e:9f:32:1c:61:a2:63:fa:9e:6e:7c:de:32:70:db:
8e:17:6c:46:49:93:bb:93:fa:6d:4e:eb:a1:30:4e:
e2:05:b2:88:91:39:47:ec:98:b8:bb:6c:9a:01:a1:
ad:e3:3f:d0:59:bf:9b:2e:a3:e7:fa:1c:d7:e3:48:
98:b0:82:73:bc:cf:4f:c3:3d:a8:b9:8c:7d:0c:4c:
14:8e:10:2e:d2:1c:ac:7f:a7:9e:16:47:3e:0b:a3:
2c:5e:4e:1b:76:09:33:9b:6a:5f:7c:c3:1a:d6:0a:
35:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:DA:E7:FF:17:E3:47:A9:26:F2:24:C3:2B:9D:FC:CB:33:A9:2F:68
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:e9:7b:ad:bf:94:01:e8:05:d9:13:09:20:ea:45:bd:83:0c:
8f:52:cc:25:3b:31:e6:66:91:82:51:f7:b4:02:ec:53:b9:71:
ca:1b:c5:5a:ce:ca:ce:9d:e9:d7:c1:7a:76:d9:6f:8c:f9:09:
fe:16:a9:8f:51:87:60:bd:f5:74:81:1a:b5:ab:72:d9:e7:43:
e3:19:c7:e8:95:88:3a:23:dd:3e:87:bb:6c:d9:2f:ea:8f:8f:
fa:d4:5c:6a:48:9b:af:01:6f:35:91:bf:df:8e:3f:b7:e6:38:
46:d8:76:e1:8c:0e:e2:cb:51:49:89:01:23:22:83:50:a4:5d:
e2:1d:fb:4f:53:c5:f4:13:ef:42:50:87:cc:54:f8:78:bd:55:
8c:25:24:30:d3:ac:9a:4e:b4:30:83:41:92:25:35:63:bd:88:
48:62:df:e6:5d:32:15:24:93:5a:f6:e6:40:9c:7a:ef:37:e7:
e1:c1:4d:21:6d:a1:66:36:e3:8c:7b:c4:29:53:54:1a:35:f3:
13:df:df:a5:41:a7:0f:9b:01:be:5b:ff:98:95:bc:0a:a5:80:
1c:08:37:84:1c:5d:3b:d6:5b:d8:03:4c:de:ea:d7:a8:f1:ca:
47:1b:7b:e8:70:5a:b4:80:f5:75:1a:e4:30:54:4e:08:02:8d:
66:99:65:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZEDWR0aFnV5JDXurWzGfPVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiN2RjM2QwMjI4MjhlNGY1YjM2YmRlZjdhMThiMGJiMGNm
YmFlMDkwHhcNMjUwNDE3MTQwMDUwWhcNMjUwNDE4MTQwMDUwWjAzMTEwLwYDVQQD
Eyg2NWRhZTdmZjE3ZTM0N2E5MjZmMjI0YzMyYjlkZmNjYjMzYTkyZjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0a25RDFGYlJ8yFl+xT8SSQl83szv
m2RJwoCXzU94kMVqGJU4bpe09X19XoOBWwKyH1lodAbr5PfMgpfHkKuKBoR5RpWP
YB4hT+XLh5sqsASnEhXl7UgCo9sbMdKQhy4lOgEMnTnH09Fsg2/QuCBALv4ak21S
QaNN6fQtR6jGOq8gQ5CdwyFEg1JZGzsIbtuUtCtlrSCOnzIcYaJj+p5ufN4ycNuO
F2xGSZO7k/ptTuuhME7iBbKIkTlH7Ji4u2yaAaGt4z/QWb+bLqPn+hzX40iYsIJz
vM9Pwz2ouYx9DEwUjhAu0hysf6eeFkc+C6MsXk4bdgkzm2pffMMa1go18QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGXa5/8X40epJvIkwyud/MszqS9oMB8GA1UdIwQY
MBaAFDt9w9Aigo5PWza973oYsLsM+64JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzMzRDBDS0NqazliTnIzdmVoaXd1d3o3cmdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80ZWYwMmMtOGY4ZC00NmUzLThkMGIt
NzE5NDhlM2M5YWQ0LzEvTzMzRDBDS0NqazliTnIzdmVoaXd1d3o3cmdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC80ZWYwMmMtOGY4ZC00NmUzLThkMGItNzE5NDhlM2M5YWQ0
LzEvTzMzRDBDS0NqazliTnIzdmVoaXd1d3o3cmdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdOl7rb+U
AegF2RMJIOpFvYMMj1LMJTsx5maRglH3tALsU7lxyhvFWs7Kzp3p18F6dtlvjPkJ
/hapj1GHYL31dIEataty2edD4xnH6JWIOiPdPoe7bNkv6o+P+tRcakibrwFvNZG/
344/t+Y4Rth24YwO4stRSYkBIyKDUKRd4h37T1PF9BPvQlCHzFT4eL1VjCUkMNOs
mk60MINBkiU1Y72ISGLf5l0yFSSTWvbmQJx67zfn4cFNIW2hZjbjjHvEKVNUGjXz
E9/fpUGnD5sBvlv/mJW8CqWAHAg3hBxdO9Zb2ANM3urXqPHKRxt76HBatID1dRrk
MFROCAKNZpll1w==
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:47:18 2025 by rpki-client