Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier: HNlBO68qiG+XKxqjOR9vmSsYzgkwF5jO1kGTVRk2AZo=
Subject key identifier: 78:94:9D:A6:ED:36:53:BA:DC:5F:EA:0D:E6:D9:5B:F3:05:9D:69:BF
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial: 019644E894996FC17274093BB385AF02F1E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number: 0F56
Signing time: Thu 17 Apr 2025 18:00:15 +0000
Manifest this update: Thu 17 Apr 2025 18:00:15 +0000
Manifest next update: Fri 18 Apr 2025 18:00:15 +0000
Files and hashes: 1: DfIfeCsjxuTLGxOswS1IRTtCtFo.roa (hash: BfLaITLvBopGuXyhXf+VexAjyd8LBGCkT8+9wJK+KLI=)
2: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: LhA2OMoZFl+psSZNY4zMGXNgnKOIxkrpiqO/Dp7WhdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 18:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:e8:94:99:6f:c1:72:74:09:3b:b3:85:af:02:f1:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Validity
Not Before: Apr 17 18:00:15 2025 GMT
Not After : Apr 18 18:00:15 2025 GMT
Subject: CN=78949da6ed3653badc5fea0de6d95bf3059d69bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fa:f3:84:f2:f1:73:5e:47:9b:61:d0:0a:89:
02:58:ab:ae:03:7a:8e:39:9a:78:53:69:ae:7b:07:
c5:39:7f:79:48:ff:15:fa:f4:cd:0d:0a:eb:8e:73:
22:24:6f:70:c7:7c:73:3a:d1:01:3f:5a:fe:e7:e1:
3d:97:77:37:09:98:dc:85:9e:96:db:e8:b7:d0:ee:
27:98:50:6a:f2:ef:06:72:c7:d1:e3:9d:d4:72:ec:
09:89:c4:52:c6:54:d4:45:b8:3e:ba:a0:bf:d3:f8:
2f:76:5c:a3:0a:5a:95:dd:dc:36:ff:f5:c5:66:f6:
96:b0:70:74:7c:59:31:2a:9e:62:73:4d:0e:3d:c6:
a2:c5:3d:7f:f8:10:f7:03:0f:c4:e0:78:09:d2:bf:
aa:7a:63:43:a5:5f:d2:36:f6:9f:f5:0d:75:35:b9:
f1:bd:d6:34:48:7c:d5:38:a2:e9:2a:10:d8:3b:9c:
d1:94:3e:68:60:3b:45:41:9c:37:ac:0e:af:c9:e8:
e2:c7:d0:3b:3f:a8:7a:b5:ec:46:88:20:80:8f:f2:
92:77:c5:64:36:d6:85:23:16:d1:74:df:e0:57:5d:
da:d4:28:14:f1:ba:de:e4:33:c0:1a:89:5f:9a:eb:
25:17:46:6f:ea:40:f3:16:39:50:08:27:61:8e:cd:
6d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:94:9D:A6:ED:36:53:BA:DC:5F:EA:0D:E6:D9:5B:F3:05:9D:69:BF
X509v3 Authority Key Identifier:
keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c7:9f:c9:2c:cf:2b:b4:54:2e:6f:5e:72:9a:41:1d:5e:b4:
9a:63:fd:9e:da:16:c8:88:6d:89:70:f8:78:59:fd:2b:b0:a3:
93:4c:d7:2f:d4:76:67:40:d9:09:5f:66:47:50:cc:ca:ce:03:
0f:ca:b6:c9:4a:21:a7:ca:32:e8:f9:d4:31:81:14:7c:4a:99:
1f:30:b3:b6:a8:bf:01:c4:5b:5c:19:d0:a9:5b:c1:24:e1:a3:
3e:a6:a6:78:7a:ba:66:b9:a2:e5:dd:f0:39:1c:e3:e1:19:94:
1b:2a:9f:27:0b:89:ab:04:71:74:c8:3a:57:52:81:78:70:a2:
a8:1c:34:d1:2d:3c:d1:14:53:76:45:10:0b:7a:6b:c1:0d:96:
8a:30:dc:13:06:3c:6d:c0:e1:c1:61:78:24:d6:0c:2a:7f:d8:
6c:37:8b:52:f6:66:ba:ec:ed:87:9b:dd:2c:9a:e0:0b:48:25:
cb:bd:ad:96:fd:31:cb:1b:b8:fa:2f:ae:7a:66:eb:17:24:fb:
eb:59:4f:53:2e:11:00:50:18:1d:1e:0a:5f:8c:57:5c:27:90:
68:1f:c9:f8:68:23:d6:70:ab:59:f3:88:a0:9b:5c:3b:00:4c:
1d:b8:30:a6:c0:dd:4f:93:be:7e:fd:72:71:2c:4d:1b:b9:d4:
15:1d:c4:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZE6JSZb8FydAk7s4WvAvHpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNjlmYjE5MWJlZTUxY2RjNzQxNGE2OTYzMTk3Zjg2YmJm
MzEzYWIwHhcNMjUwNDE3MTgwMDE1WhcNMjUwNDE4MTgwMDE1WjAzMTEwLwYDVQQD
Eyg3ODk0OWRhNmVkMzY1M2JhZGM1ZmVhMGRlNmQ5NWJmMzA1OWQ2OWJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofrzhPLxc15Hm2HQCokCWKuuA3qO
OZp4U2muewfFOX95SP8V+vTNDQrrjnMiJG9wx3xzOtEBP1r+5+E9l3c3CZjchZ6W
2+i30O4nmFBq8u8GcsfR453UcuwJicRSxlTURbg+uqC/0/gvdlyjClqV3dw2//XF
ZvaWsHB0fFkxKp5ic00OPcaixT1/+BD3Aw/E4HgJ0r+qemNDpV/SNvaf9Q11Nbnx
vdY0SHzVOKLpKhDYO5zRlD5oYDtFQZw3rA6vyejix9A7P6h6texGiCCAj/KSd8Vk
NtaFIxbRdN/gV13a1CgU8bre5DPAGolfmuslF0Zv6kDzFjlQCCdhjs1t7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHiUnabtNlO63F/qDebZW/MFnWm/MB8GA1UdIwQY
MBaAFKNp+xkb7lHNx0FKaWMZf4a78xOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYt
ZTE4MDUyZjM4MWJiLzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYtZTE4MDUyZjM4MWJi
LzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMMefySzP
K7RULm9ecppBHV60mmP9ntoWyIhtiXD4eFn9K7Cjk0zXL9R2Z0DZCV9mR1DMys4D
D8q2yUohp8oy6PnUMYEUfEqZHzCztqi/AcRbXBnQqVvBJOGjPqameHq6Zrmi5d3w
ORzj4RmUGyqfJwuJqwRxdMg6V1KBeHCiqBw00S080RRTdkUQC3prwQ2WijDcEwY8
bcDhwWF4JNYMKn/YbDeLUvZmuuzth5vdLJrgC0gly72tlv0xyxu4+i+uembrFyT7
61lPUy4RAFAYHR4KX4xXXCeQaB/J+Ggj1nCrWfOIoJtcOwBMHbgwpsDdT5O+fv1y
cSxNG7nUFR3EPw==
-----END CERTIFICATE-----
Generated at Fri Apr 18 04:32:38 2025 by rpki-client