Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft
File: oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft (raw, json)
Hash identifier: fJ648tkNOmYoU7NDRQsBflzNwYGD5J6gm9j9s9ICB04=
Subject key identifier: F7:C2:AB:3A:EB:3A:5F:85:1F:A3:24:AB:20:19:FF:53:FD:DF:CA:C8
Authority key identifier: A1:18:AA:FD:BB:CA:8D:4E:00:63:C3:11:95:FA:6C:19:4C:39:43:CB
Certificate issuer: /CN=a118aafdbbca8d4e0063c31195fa6c194c3943cb
Certificate serial: 01964EC7C335EC879A9059EA279AE36AD6B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft
Manifest number: 041A
Signing time: Sat 19 Apr 2025 16:00:36 +0000
Manifest this update: Sat 19 Apr 2025 16:00:36 +0000
Manifest next update: Sun 20 Apr 2025 16:00:36 +0000
Files and hashes: 1: oRiq_bvKjU4AY8MRlfpsGUw5Q8s.crl (hash: agJGa4otN9sFoA7JnR6Bq5e/cBAs9X1QcjzClBB+48U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c7:c3:35:ec:87:9a:90:59:ea:27:9a:e3:6a:d6:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a118aafdbbca8d4e0063c31195fa6c194c3943cb
Validity
Not Before: Apr 19 16:00:36 2025 GMT
Not After : Apr 20 16:00:36 2025 GMT
Subject: CN=f7c2ab3aeb3a5f851fa324ab2019ff53fddfcac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:27:f2:2e:83:6e:d1:e3:91:f6:ab:7e:04:d3:
47:02:56:23:09:e0:3a:47:e9:d8:c9:cd:85:79:da:
71:82:5a:0a:dd:3a:1d:4a:62:c6:c3:cc:f0:1c:7e:
d0:cc:d9:b0:a7:b8:76:fa:9b:9c:31:7a:53:28:64:
10:21:ef:c0:5c:eb:46:aa:1b:10:2f:59:f7:77:9e:
cb:28:91:46:e4:5c:e5:f8:fd:11:53:d4:6d:e2:71:
5d:18:7b:20:0e:57:d0:7c:2e:ed:28:3e:de:37:c6:
99:47:e2:94:b9:b4:96:f2:0b:4a:c3:b7:6f:bc:96:
7a:a2:dd:f5:21:eb:3c:f3:9b:b6:a7:6d:06:6f:d6:
08:f1:d5:bc:76:ea:4e:a0:32:e1:3d:11:0a:47:d8:
d0:0a:09:06:9f:f5:29:e7:ac:cc:8a:94:36:57:16:
00:1c:40:ef:b6:b9:a2:28:1d:23:86:a8:d9:5a:d4:
76:dd:15:4a:a8:50:8d:e4:4c:88:9f:40:e9:73:4e:
32:57:1b:48:ad:95:47:f6:6e:af:18:a9:43:8b:25:
ab:ce:bf:fe:89:ef:da:ef:31:55:3a:a2:43:6e:06:
fc:7a:6a:f2:5d:91:aa:12:ed:c5:42:48:ef:25:d9:
8f:a0:18:e5:9d:fc:e1:aa:8d:84:ff:b9:a4:0d:98:
9f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C2:AB:3A:EB:3A:5F:85:1F:A3:24:AB:20:19:FF:53:FD:DF:CA:C8
X509v3 Authority Key Identifier:
keyid:A1:18:AA:FD:BB:CA:8D:4E:00:63:C3:11:95:FA:6C:19:4C:39:43:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
df:fd:57:41:bf:5e:a3:da:5e:11:ab:02:77:34:cf:ef:11:c7:
26:81:02:42:57:a8:fd:c8:5c:a9:21:80:06:8b:d9:fc:36:9f:
4c:59:ad:4f:58:8b:f6:fd:5f:6c:25:d1:4f:e7:c9:f3:c0:64:
99:32:ea:35:88:13:70:3a:da:9d:ab:0e:37:24:05:ca:7f:8d:
11:f8:1f:f5:77:a6:a9:06:77:a9:75:e2:83:85:4b:07:86:9c:
4b:2f:aa:58:3b:11:80:f2:8c:c6:d4:10:a4:8d:9a:74:50:46:
94:c4:a2:b0:34:f9:b1:c7:1c:d1:b9:b3:b7:5c:9b:cc:b4:ea:
e0:db:cf:b6:1a:df:d6:86:4d:76:b5:8c:e9:82:74:f8:a3:51:
22:1f:4e:eb:3f:53:97:ba:78:1f:96:8e:67:67:4e:4c:6e:5e:
5f:b6:68:fc:15:a3:ea:b6:fb:0a:26:8c:14:2b:eb:a7:95:0a:
d9:43:2c:28:bc:97:62:86:ee:f6:50:94:e4:d2:3d:88:1a:da:
ea:7e:98:e8:da:c4:6b:60:6d:fd:38:2e:51:7d:d8:72:28:0b:
cd:b7:4d:4b:0d:48:89:fd:98:2a:23:52:37:87:6d:c3:4b:a6:
09:47:fd:e3:b8:3e:bf:e8:a7:91:71:2d:fd:d0:6c:c2:9c:35:
08:a7:60:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZOx8M17IeakFnqJ5rjatayMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExMThhYWZkYmJjYThkNGUwMDYzYzMxMTk1ZmE2YzE5NGMz
OTQzY2IwHhcNMjUwNDE5MTYwMDM2WhcNMjUwNDIwMTYwMDM2WjAzMTEwLwYDVQQD
EyhmN2MyYWIzYWViM2E1Zjg1MWZhMzI0YWIyMDE5ZmY1M2ZkZGZjYWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzyfyLoNu0eOR9qt+BNNHAlYjCeA6
R+nYyc2FedpxgloK3TodSmLGw8zwHH7QzNmwp7h2+pucMXpTKGQQIe/AXOtGqhsQ
L1n3d57LKJFG5Fzl+P0RU9Rt4nFdGHsgDlfQfC7tKD7eN8aZR+KUubSW8gtKw7dv
vJZ6ot31Ies885u2p20Gb9YI8dW8dupOoDLhPREKR9jQCgkGn/Up56zMipQ2VxYA
HEDvtrmiKB0jhqjZWtR23RVKqFCN5EyIn0Dpc04yVxtIrZVH9m6vGKlDiyWrzr/+
ie/a7zFVOqJDbgb8emryXZGqEu3FQkjvJdmPoBjlnfzhqo2E/7mkDZifmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPfCqzrrOl+FH6MkqyAZ/1P938rIMB8GA1UdIwQY
MBaAFKEYqv27yo1OAGPDEZX6bBlMOUPLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1JpcV9idktqVTRBWThNUmxmcHNHVXc1UThzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC80NjVjNTEtNzhlNC00MTc4LTg1ODUt
NzJmMjFlNjQ2ZThlLzEvb1JpcV9idktqVTRBWThNUmxmcHNHVXc1UThzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC80NjVjNTEtNzhlNC00MTc4LTg1ODUtNzJmMjFlNjQ2ZThl
LzEvb1JpcV9idktqVTRBWThNUmxmcHNHVXc1UThzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3/1XQb9e
o9peEasCdzTP7xHHJoECQleo/chcqSGABovZ/DafTFmtT1iL9v1fbCXRT+fJ88Bk
mTLqNYgTcDranasONyQFyn+NEfgf9XemqQZ3qXXig4VLB4acSy+qWDsRgPKMxtQQ
pI2adFBGlMSisDT5sccc0bmzt1ybzLTq4NvPthrf1oZNdrWM6YJ0+KNRIh9O6z9T
l7p4H5aOZ2dOTG5eX7Zo/BWj6rb7CiaMFCvrp5UK2UMsKLyXYobu9lCU5NI9iBra
6n6Y6NrEa2Bt/TguUX3YcigLzbdNSw1Iif2YKiNSN4dtw0umCUf947g+v+inkXEt
/dBswpw1CKdg/Q==
-----END CERTIFICATE-----
Generated at Sat Apr 19 19:03:26 2025 by rpki-client