Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
File: oZUhxzUtHKw_mMdW_HprSzrpdT0.mft (raw, json)
Hash identifier: lN7iC9t2U5aDQPrDVjcujN1HAHnzoQA8QGrgLZFtevo=
Subject key identifier: BB:E1:2A:11:C3:80:AD:BB:94:04:21:9F:E8:C6:1C:E7:63:11:1C:38
Authority key identifier: A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
Certificate issuer: /CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Certificate serial: 0196439F68DC324D2A256FF8F1B58C6622E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
Manifest number: 0F46
Signing time: Thu 17 Apr 2025 12:00:42 +0000
Manifest this update: Thu 17 Apr 2025 12:00:42 +0000
Manifest next update: Fri 18 Apr 2025 12:00:42 +0000
Files and hashes: 1: Bo1myrpN4GYHDeA8eZrww4v2MYk.roa (hash: iX1wfmXvs8NDvW8ILAABxp5yjw4VCOGlhTOgUXPFMOo=)
2: oZUhxzUtHKw_mMdW_HprSzrpdT0.crl (hash: SvnzsFLK3FoTMuK1G52tTyPkAxMtCKhiMdcQ5GUlLbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:9f:68:dc:32:4d:2a:25:6f:f8:f1:b5:8c:66:22:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Validity
Not Before: Apr 17 12:00:42 2025 GMT
Not After : Apr 18 12:00:42 2025 GMT
Subject: CN=bbe12a11c380adbb9404219fe8c61ce763111c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b5:6e:8b:74:7b:3c:af:a9:9c:f8:05:b1:ea:
12:a7:f7:cc:a0:08:89:c4:22:ff:bf:50:e8:48:22:
6d:af:a8:01:f9:fa:ff:16:7f:bc:3b:d1:b5:ff:c2:
70:85:5c:47:77:a2:83:95:22:e9:f2:67:70:fc:72:
37:ba:9a:09:5a:b8:09:f9:e7:20:68:eb:f8:11:11:
94:b9:66:ce:20:05:2f:59:75:db:c3:24:9b:e0:6a:
4a:30:92:d0:18:e6:22:cc:39:8b:e1:b0:db:c6:d0:
a9:3e:60:34:23:42:8c:a0:61:3a:6a:f8:04:c1:ff:
77:79:25:df:13:2e:ea:67:4f:25:b5:3d:63:ba:9f:
bb:10:5e:dd:8b:13:9b:e8:a5:ec:6e:32:f3:ae:ab:
b5:ef:b6:98:dd:4d:07:1f:5f:b3:7e:ea:a8:27:d9:
a0:72:87:12:b9:30:6f:47:3d:ef:eb:36:be:93:e7:
c4:11:16:50:2b:3b:8f:8c:02:84:97:4c:0f:a0:9e:
19:58:f7:6d:1c:c2:0d:72:06:3e:5c:d9:4e:03:14:
38:3d:8e:4c:99:4c:e5:a5:cf:aa:a0:0c:12:35:bb:
bb:92:b1:7c:30:96:0d:4c:58:92:5b:5a:5c:9f:85:
7f:9b:29:cc:b5:12:8e:88:49:61:bb:da:0a:80:b0:
18:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:E1:2A:11:C3:80:AD:BB:94:04:21:9F:E8:C6:1C:E7:63:11:1C:38
X509v3 Authority Key Identifier:
keyid:A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:e0:00:77:24:39:bc:10:5c:17:fd:75:a5:94:9b:a9:2d:5a:
7b:39:45:ad:f9:d0:41:f4:75:be:2b:e4:24:dd:84:29:06:c1:
7f:f8:c5:c2:64:3d:11:4b:e0:9f:43:f0:63:cc:a0:5b:73:8f:
8e:e3:ef:35:8c:21:ac:8a:0b:17:93:a6:82:69:ca:b3:ba:a4:
83:25:94:8e:fa:e4:cd:84:3c:2b:3d:d9:27:52:02:39:69:04:
b8:31:ef:fe:ff:5b:8f:b0:c8:f4:45:0c:5c:b1:5d:32:e8:f5:
2e:49:f9:fe:9a:a2:97:eb:8d:8b:93:95:42:88:6b:50:11:01:
2d:11:70:b6:54:80:cd:b3:2b:01:9f:21:a5:19:d9:49:7c:52:
d5:a6:a9:15:3d:d1:b6:b4:c9:03:be:cf:cd:48:58:1a:30:f4:
68:21:66:78:d2:31:f0:30:a1:c8:36:c8:61:c8:2a:64:9b:f4:
a6:67:2d:c8:4d:7b:d6:c2:9f:23:34:32:8d:6d:31:fa:1e:c2:
0d:74:5f:71:52:d8:e6:e5:ab:15:0c:76:dd:0f:1e:6c:f2:a6:
71:b4:11:1d:4a:d1:95:db:f8:ec:37:43:bb:0a:f9:53:b5:3b:
f6:56:5c:a7:f8:94:5a:22:cf:e6:4e:85:8f:1a:8e:92:44:f6:
4f:94:3d:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZDn2jcMk0qJW/48bWMZiLiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExOTUyMWM3MzUyZDFjYWMzZjk4Yzc1NmZjN2E2YjRiM2Fl
OTc1M2QwHhcNMjUwNDE3MTIwMDQyWhcNMjUwNDE4MTIwMDQyWjAzMTEwLwYDVQQD
EyhiYmUxMmExMWMzODBhZGJiOTQwNDIxOWZlOGM2MWNlNzYzMTExYzM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bVui3R7PK+pnPgFseoSp/fMoAiJ
xCL/v1DoSCJtr6gB+fr/Fn+8O9G1/8JwhVxHd6KDlSLp8mdw/HI3upoJWrgJ+ecg
aOv4ERGUuWbOIAUvWXXbwySb4GpKMJLQGOYizDmL4bDbxtCpPmA0I0KMoGE6avgE
wf93eSXfEy7qZ08ltT1jup+7EF7dixOb6KXsbjLzrqu177aY3U0HH1+zfuqoJ9mg
cocSuTBvRz3v6za+k+fEERZQKzuPjAKEl0wPoJ4ZWPdtHMINcgY+XNlOAxQ4PY5M
mUzlpc+qoAwSNbu7krF8MJYNTFiSW1pcn4V/mynMtRKOiElhu9oKgLAY1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLvhKhHDgK27lAQhn+jGHOdjERw4MB8GA1UdIwQY
MBaAFKGVIcc1LRysP5jHVvx6a0s66XU9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1pVaHh6VXRIS3dfbU1kV19IcHJTenJwZFQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8yYjdkYzItYzFkZS00OTcwLWFiNTMt
ZTVhZGEzNmZhMWYzLzEvb1pVaHh6VXRIS3dfbU1kV19IcHJTenJwZFQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi8yYjdkYzItYzFkZS00OTcwLWFiNTMtZTVhZGEzNmZhMWYz
LzEvb1pVaHh6VXRIS3dfbU1kV19IcHJTenJwZFQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAReAAdyQ5
vBBcF/11pZSbqS1aezlFrfnQQfR1vivkJN2EKQbBf/jFwmQ9EUvgn0PwY8ygW3OP
juPvNYwhrIoLF5OmgmnKs7qkgyWUjvrkzYQ8Kz3ZJ1ICOWkEuDHv/v9bj7DI9EUM
XLFdMuj1Lkn5/pqil+uNi5OVQohrUBEBLRFwtlSAzbMrAZ8hpRnZSXxS1aapFT3R
trTJA77PzUhYGjD0aCFmeNIx8DChyDbIYcgqZJv0pmctyE171sKfIzQyjW0x+h7C
DXRfcVLY5uWrFQx23Q8ebPKmcbQRHUrRldv47DdDuwr5U7U79lZcp/iUWiLP5k6F
jxqOkkT2T5Q9XA==
-----END CERTIFICATE-----
Generated at Thu Apr 17 13:52:40 2025 by rpki-client