Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: w1vrHBxR/KrXZNkdIfNLS688X1YiXMlPnh/N5pHtlxI=
Subject key identifier: 7F:1A:FC:D8:51:B5:16:C4:DC:93:F0:23:B6:BC:67:D2:4D:6C:CB:45
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 0196726652C24F5AA60EE9C6DFE504FF97BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 0468
Signing time: Sat 26 Apr 2025 14:00:30 +0000
Manifest this update: Sat 26 Apr 2025 14:00:30 +0000
Manifest next update: Sun 27 Apr 2025 14:00:30 +0000
Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: ebRA3hEek5VMfAaN6KI7Rkshavt4QYOJCNUO42VJHFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:72:66:52:c2:4f:5a:a6:0e:e9:c6:df:e5:04:ff:97:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Apr 26 14:00:30 2025 GMT
Not After : Apr 27 14:00:30 2025 GMT
Subject: CN=7f1afcd851b516c4dc93f023b6bc67d24d6ccb45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5d:4d:e2:64:4f:d2:5a:49:1c:54:6d:f7:6b:
1f:00:89:0d:18:72:2c:46:66:1d:1b:85:cc:31:83:
e9:ed:09:ea:34:f5:50:c3:de:17:d9:66:43:c1:ca:
71:d3:2b:76:66:f8:f9:ee:e5:4c:a2:a9:d7:3d:2f:
a5:bf:83:ca:ad:dc:45:e2:de:ba:a0:51:74:02:c9:
8b:ff:0b:44:d7:97:ef:ef:8a:96:4d:ce:00:dd:d0:
39:5d:43:a1:f4:70:44:b2:12:82:2d:f6:06:aa:1c:
53:b4:2e:ce:78:bb:89:44:19:1e:01:8f:1e:f1:6c:
0a:5e:fb:c8:7f:f2:93:99:2d:97:e7:f3:73:b6:c4:
6c:62:6e:d4:ec:9d:89:9c:5b:98:42:2c:32:4a:d8:
57:ee:ba:b9:ad:62:c3:66:8e:0a:fe:57:7a:bb:c0:
fc:68:5d:0b:86:c7:ce:ea:89:83:7c:40:00:c8:14:
32:df:12:f5:8b:d9:38:9c:4e:c3:ad:d1:66:31:99:
3f:95:aa:b2:16:63:2b:a0:a5:39:d7:95:bf:32:37:
c6:f8:b8:44:b8:ba:55:18:55:01:dd:6e:ca:f2:55:
95:15:28:96:38:39:60:31:81:81:b7:7e:bc:d8:cd:
5c:5f:9a:0f:6d:73:46:55:08:29:ef:d9:ce:f3:3c:
af:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:1A:FC:D8:51:B5:16:C4:DC:93:F0:23:B6:BC:67:D2:4D:6C:CB:45
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:f0:1e:a6:40:82:55:97:eb:61:71:ca:0a:ba:05:0f:93:be:
fc:b9:ba:82:cb:a9:fc:df:07:79:c7:a6:21:a1:27:4a:d3:10:
fe:8d:d8:92:27:cc:f4:39:d1:f5:6c:95:bb:ad:bb:e8:af:23:
a4:c0:53:2f:91:01:41:58:a9:74:09:15:13:c5:89:1b:ce:32:
7d:76:50:24:37:7e:07:96:38:ab:9c:8c:5a:0b:1d:67:86:f5:
2f:c6:55:f0:a9:d3:2e:b7:72:de:54:c6:68:c1:1d:e3:dd:9a:
89:fa:fe:25:34:e3:10:fd:7f:42:e9:80:dd:8c:e1:20:6f:5a:
1b:b0:b8:49:04:af:81:e6:56:7b:f5:88:64:a7:15:1d:74:5f:
38:40:48:13:60:f6:39:dc:13:9c:80:83:87:9e:9f:6e:12:d1:
2c:84:35:d4:2d:86:45:01:a4:67:cb:2a:dd:2c:5a:83:ab:14:
cd:b2:36:e7:c8:3d:bb:77:50:08:66:0a:c9:a8:e9:f9:0c:19:
32:bd:5f:65:d8:12:0f:e0:4c:17:4a:e9:d7:08:24:c5:0b:92:
e7:24:3a:df:d7:f5:ba:b5:c5:0c:41:a0:db:26:97:86:a1:78:
ab:ea:66:01:93:75:2d:dc:8f:35:1b:cb:44:39:83:91:80:d4:
c0:ea:48:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZyZlLCT1qmDunG3+UE/5e8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOWZkYTA0N2IzYTBiMWM4MjA0MzVlNjk5Mzg4NjYwZGEz
MmM2M2YwHhcNMjUwNDI2MTQwMDMwWhcNMjUwNDI3MTQwMDMwWjAzMTEwLwYDVQQD
Eyg3ZjFhZmNkODUxYjUxNmM0ZGM5M2YwMjNiNmJjNjdkMjRkNmNjYjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4V1N4mRP0lpJHFRt92sfAIkNGHIs
RmYdG4XMMYPp7QnqNPVQw94X2WZDwcpx0yt2Zvj57uVMoqnXPS+lv4PKrdxF4t66
oFF0AsmL/wtE15fv74qWTc4A3dA5XUOh9HBEshKCLfYGqhxTtC7OeLuJRBkeAY8e
8WwKXvvIf/KTmS2X5/NztsRsYm7U7J2JnFuYQiwySthX7rq5rWLDZo4K/ld6u8D8
aF0LhsfO6omDfEAAyBQy3xL1i9k4nE7DrdFmMZk/laqyFmMroKU515W/MjfG+LhE
uLpVGFUB3W7K8lWVFSiWODlgMYGBt3682M1cX5oPbXNGVQgp79nO8zyv2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH8a/NhRtRbE3JPwI7a8Z9JNbMtFMB8GA1UdIwQY
MBaAFKCf2gR7OgscggQ15pk4hmDaMsY/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWIt
Mjk5MjBlNTE2N2Q5LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWItMjk5MjBlNTE2N2Q5
LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX/AepkCC
VZfrYXHKCroFD5O+/Lm6gsup/N8HecemIaEnStMQ/o3YkifM9DnR9WyVu6276K8j
pMBTL5EBQVipdAkVE8WJG84yfXZQJDd+B5Y4q5yMWgsdZ4b1L8ZV8KnTLrdy3lTG
aMEd492aifr+JTTjEP1/QumA3YzhIG9aG7C4SQSvgeZWe/WIZKcVHXRfOEBIE2D2
OdwTnICDh56fbhLRLIQ11C2GRQGkZ8sq3Sxag6sUzbI258g9u3dQCGYKyajp+QwZ
Mr1fZdgSD+BMF0rp1wgkxQuS5yQ639f1urXFDEGg2yaXhqF4q+pmAZN1LdyPNRvL
RDmDkYDUwOpIgQ==
-----END CERTIFICATE-----
Generated at Sat Apr 26 20:33:47 2025 by rpki-client