Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
File: oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft (raw, json)
Hash identifier: mKqdlCLqXd6HvP5Xe/PWD2v7G9SxZDoAAf3asqgc9cU=
Subject key identifier: EC:56:5C:AF:FD:12:41:DC:7C:3F:74:3C:F6:CA:4A:15:49:7E:2A:84
Authority key identifier: A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
Certificate issuer: /CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Certificate serial: 019684A3C0131B65AC64E67DC5BA33B3E86D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
Manifest number: 0689
Signing time: Wed 30 Apr 2025 03:00:46 +0000
Manifest this update: Wed 30 Apr 2025 03:00:46 +0000
Manifest next update: Thu 01 May 2025 03:00:46 +0000
Files and hashes: 1: RgkGs56a3wBSH0Yhny04eNJEX3I.roa (hash: 1WUdRWIGnTtyys0okmGp0iV2hIZohfzABaDiV/G7uDo=)
2: oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl (hash: k2gm8AAZYZSvK61GYs3wRsbQsZHbnJ2i8psUbryzmWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 03:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:a3:c0:13:1b:65:ac:64:e6:7d:c5:ba:33:b3:e8:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Validity
Not Before: Apr 30 03:00:46 2025 GMT
Not After : May 1 03:00:46 2025 GMT
Subject: CN=ec565caffd1241dc7c3f743cf6ca4a15497e2a84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:3f:5f:db:03:80:90:7f:3b:f4:68:0c:60:75:
f7:70:a4:6c:eb:f4:6c:29:2d:be:a7:42:7d:0a:d5:
8c:37:e4:60:b1:f5:3c:90:12:c2:04:fc:2e:da:80:
b8:c5:72:ba:14:0b:b7:18:1d:c4:6c:e2:d5:9c:b2:
10:7f:e2:64:bf:76:d0:fc:e9:95:da:ff:de:c0:bc:
c5:96:80:4f:78:4d:3c:7e:ae:c7:f8:a3:4c:1e:d1:
e8:23:75:4c:6c:b1:79:a3:a7:de:2a:1a:85:c9:3a:
34:e0:15:09:84:dd:c5:be:2a:5c:0f:d4:47:e9:78:
72:e6:b3:86:b9:dc:be:6a:d9:69:ba:19:96:d7:5f:
33:82:36:8c:bb:67:66:19:13:bc:63:51:74:8b:47:
4a:18:e5:09:72:36:f1:0d:94:53:64:d9:98:9f:18:
64:e5:3d:87:35:13:22:bb:fa:5a:54:5c:f5:2b:1c:
7a:7d:5a:65:55:e7:81:2b:65:c0:14:09:0b:52:ab:
49:48:78:14:6b:00:07:aa:d1:81:ff:5b:f8:57:23:
1b:b1:53:b6:91:e4:83:1e:fd:52:7e:4a:10:3a:48:
0e:58:0c:1a:e2:9a:07:9f:a2:e8:9d:1e:87:09:12:
3c:1d:5f:7d:39:18:23:ab:fa:1e:00:d6:cb:93:2d:
2d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:56:5C:AF:FD:12:41:DC:7C:3F:74:3C:F6:CA:4A:15:49:7E:2A:84
X509v3 Authority Key Identifier:
keyid:A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:9f:81:88:f6:2b:61:d6:fb:d2:8e:c0:e1:21:41:f8:cb:0b:
d3:54:41:10:5f:dd:02:56:a3:ce:6c:9e:0e:76:ac:e4:16:29:
0d:27:74:2e:05:59:96:78:ea:93:a3:b4:45:64:f5:4c:fb:30:
ba:29:1b:83:bd:09:c8:3d:fa:02:b2:b9:e3:90:e6:de:f5:6e:
50:bf:e8:00:27:99:8f:0f:32:da:0d:81:06:15:87:d1:e5:33:
7a:5a:78:e2:e9:47:ce:b5:35:2b:f0:82:3b:ee:75:07:11:7e:
b6:94:ab:d4:10:f7:d5:6f:b4:f9:98:16:46:ee:16:72:e8:00:
b3:cb:d0:94:32:17:1b:f3:d5:06:2b:a6:d9:f5:8d:a3:fd:f0:
da:bb:ec:f5:8d:46:b3:51:cb:29:d9:cc:15:d3:6c:4a:a7:02:
5b:de:c6:56:6c:d5:56:5c:3d:53:79:d5:18:50:ba:69:58:9a:
31:7f:41:f0:9e:31:f8:cb:6e:92:d6:8c:f3:97:17:80:c5:2e:
f1:2f:92:9b:57:97:8f:b4:f0:ac:09:0a:cb:ba:a4:7d:ca:8b:
a3:06:1b:d8:ac:35:21:56:7a:d7:a8:94:ab:b8:02:b7:bd:85:
6e:d2:ec:16:42:90:cc:da:41:dc:fc:55:cc:2f:d4:00:b4:22:
3c:6c:bb:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaEo8ATG2WsZOZ9xbozs+htMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZTMxMjhmZDA5ZGMxOGU2NmVlNDIxMmE3ZTY0ZjNlNGU3
NGE4MTQwHhcNMjUwNDMwMDMwMDQ2WhcNMjUwNTAxMDMwMDQ2WjAzMTEwLwYDVQQD
EyhlYzU2NWNhZmZkMTI0MWRjN2MzZjc0M2NmNmNhNGExNTQ5N2UyYTg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5j9f2wOAkH879GgMYHX3cKRs6/Rs
KS2+p0J9CtWMN+RgsfU8kBLCBPwu2oC4xXK6FAu3GB3EbOLVnLIQf+Jkv3bQ/OmV
2v/ewLzFloBPeE08fq7H+KNMHtHoI3VMbLF5o6feKhqFyTo04BUJhN3FvipcD9RH
6Xhy5rOGudy+atlpuhmW118zgjaMu2dmGRO8Y1F0i0dKGOUJcjbxDZRTZNmYnxhk
5T2HNRMiu/paVFz1Kxx6fVplVeeBK2XAFAkLUqtJSHgUawAHqtGB/1v4VyMbsVO2
keSDHv1SfkoQOkgOWAwa4poHn6LonR6HCRI8HV99ORgjq/oeANbLky0teQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOxWXK/9EkHcfD90PPbKShVJfiqEMB8GA1UdIwQY
MBaAFKDjEo/QncGOZu5CEqfmTz5OdKgUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wYjRlNzMtYTE1NC00MDU5LWI2MjIt
OGZkNWNhYmE1NGU5LzEvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8wYjRlNzMtYTE1NC00MDU5LWI2MjItOGZkNWNhYmE1NGU5
LzEvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHZ+BiPYr
Ydb70o7A4SFB+MsL01RBEF/dAlajzmyeDnas5BYpDSd0LgVZlnjqk6O0RWT1TPsw
uikbg70JyD36ArK545Dm3vVuUL/oACeZjw8y2g2BBhWH0eUzelp44ulHzrU1K/CC
O+51BxF+tpSr1BD31W+0+ZgWRu4WcugAs8vQlDIXG/PVBium2fWNo/3w2rvs9Y1G
s1HLKdnMFdNsSqcCW97GVmzVVlw9U3nVGFC6aViaMX9B8J4x+MtuktaM85cXgMUu
8S+Sm1eXj7TwrAkKy7qkfcqLowYb2Kw1IVZ616iUq7gCt72FbtLsFkKQzNpB3PxV
zC/UALQiPGy7sw==
-----END CERTIFICATE-----
Generated at Wed Apr 30 12:58:15 2025 by rpki-client