Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: MuMVNWc8Qu/hABLYyP8/IpyFANmEuo4V6Ukh0OPYbZY=
Subject key identifier: 3A:54:78:13:C7:9D:98:D1:D4:ED:7D:62:80:43:EF:60:72:CB:D5:CE
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 01967FEACECFC7A806E1A48371EF4809672C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 05:00:16 +0000
Manifest this update: Tue 29 Apr 2025 05:00:16 +0000
Manifest next update: Wed 30 Apr 2025 05:00:16 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: zemQqV6rhsEwlwjILWZ5m7wkzaR6kLXOjJrQC9OXc9s=)
2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 05:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:ea:ce:cf:c7:a8:06:e1:a4:83:71:ef:48:09:67:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Apr 29 05:00:16 2025 GMT
Not After : Apr 30 05:00:16 2025 GMT
Subject: CN=3a547813c79d98d1d4ed7d628043ef6072cbd5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c7:43:67:7b:7a:7e:44:ad:dd:ea:dc:78:2b:
ff:a9:00:58:41:d3:97:4a:6d:8e:42:a0:23:9c:aa:
78:11:5f:fe:e4:76:8d:30:23:2b:0a:38:07:e5:62:
f3:de:65:05:4f:94:50:ac:86:e3:b3:f1:60:0a:5e:
50:06:2f:77:5b:20:29:51:99:0f:3b:38:84:e1:12:
2b:99:a1:46:49:64:1d:54:92:33:3a:c4:ab:94:0d:
5c:5b:8d:51:23:83:80:2d:56:3a:c7:12:50:bc:34:
92:de:be:cc:66:ab:9f:95:e8:eb:31:1d:1d:e1:45:
85:6f:6a:a4:73:d9:26:cd:52:29:a7:3e:2a:84:c6:
86:6e:0f:3f:5d:34:66:fa:0f:06:a9:ec:66:79:02:
d2:9f:c4:d6:c5:2a:1d:1a:48:46:7b:1a:0e:8e:cb:
a2:16:17:9f:63:87:63:82:49:86:d3:52:30:24:a4:
d5:cf:c5:04:2a:67:28:6b:86:e0:8d:b1:f1:07:9b:
02:dd:ad:f1:0c:01:4c:60:b3:23:03:82:40:ba:26:
80:53:ca:28:b0:f7:4e:f1:b2:c9:e5:81:4a:31:73:
5a:21:d2:8d:75:b4:49:0b:92:7e:20:0f:61:f8:fa:
54:d1:6d:99:07:c2:6f:ef:f2:0f:16:e3:f3:08:4d:
c6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:54:78:13:C7:9D:98:D1:D4:ED:7D:62:80:43:EF:60:72:CB:D5:CE
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:ba:c3:8b:cc:8e:1c:68:28:cd:1c:c6:46:b6:4e:e1:e2:f2:
15:da:fe:d7:95:b1:69:a4:cb:7a:02:ef:4b:ce:97:c2:2f:5b:
03:8f:f4:e8:c4:8a:21:2f:54:b0:d8:d5:8f:d2:22:a2:b1:b2:
0a:7e:a2:fb:0c:38:cf:ec:b3:eb:e4:70:73:f5:6e:95:c7:a7:
24:2f:7f:9e:4e:3b:f5:2f:fc:45:e2:04:6a:c8:2f:5e:96:f7:
b5:18:53:0c:e0:6c:d0:a1:28:b1:9b:6b:c8:4b:e1:6e:54:67:
9b:e0:42:e9:b6:cc:ab:54:08:25:9e:f2:9a:cb:eb:58:75:d4:
61:14:33:d5:d8:7e:e5:29:84:90:ff:3e:8a:a8:7f:20:8f:9c:
a4:8b:25:c8:37:04:19:dc:11:a0:74:62:e7:e0:08:f7:e3:5d:
1b:43:d6:1e:ee:bf:c8:ae:7f:dd:e2:bb:77:e6:2a:fd:aa:96:
8b:56:3a:00:5c:27:fa:a5:96:7b:68:7b:d7:29:45:d7:2a:ea:
dd:66:00:65:46:35:24:f4:1d:c5:b7:28:c6:51:36:0e:4e:77:
78:88:c7:9e:96:d4:86:29:4d:34:e3:93:5d:3a:79:a8:be:49:
e7:06:1f:4d:be:c5:fc:f7:1c:25:45:c6:1d:49:6d:e2:3f:c9:
2f:82:50:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ/6s7Px6gG4aSDce9ICWcsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZGRhODMyNzY5YzMxNjgxZjgyNTY4NTE0NzM2OGFmM2Ex
MWY2ZjgwHhcNMjUwNDI5MDUwMDE2WhcNMjUwNDMwMDUwMDE2WjAzMTEwLwYDVQQD
EygzYTU0NzgxM2M3OWQ5OGQxZDRlZDdkNjI4MDQzZWY2MDcyY2JkNWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48dDZ3t6fkSt3erceCv/qQBYQdOX
Sm2OQqAjnKp4EV/+5HaNMCMrCjgH5WLz3mUFT5RQrIbjs/FgCl5QBi93WyApUZkP
OziE4RIrmaFGSWQdVJIzOsSrlA1cW41RI4OALVY6xxJQvDSS3r7MZquflejrMR0d
4UWFb2qkc9kmzVIppz4qhMaGbg8/XTRm+g8GqexmeQLSn8TWxSodGkhGexoOjsui
FhefY4djgkmG01IwJKTVz8UEKmcoa4bgjbHxB5sC3a3xDAFMYLMjA4JAuiaAU8oo
sPdO8bLJ5YFKMXNaIdKNdbRJC5J+IA9h+PpU0W2ZB8Jv7/IPFuPzCE3GSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDpUeBPHnZjR1O19YoBD72Byy9XOMB8GA1UdIwQY
MBaAFNHdqDJ2nDFoH4JWhRRzaK86Efb4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDIt
ODYyMzZiYWMxMzA4LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDItODYyMzZiYWMxMzA4
LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAarrDi8yO
HGgozRzGRrZO4eLyFdr+15WxaaTLegLvS86Xwi9bA4/06MSKIS9UsNjVj9IiorGy
Cn6i+ww4z+yz6+Rwc/VulcenJC9/nk479S/8ReIEasgvXpb3tRhTDOBs0KEosZtr
yEvhblRnm+BC6bbMq1QIJZ7ymsvrWHXUYRQz1dh+5SmEkP8+iqh/II+cpIslyDcE
GdwRoHRi5+AI9+NdG0PWHu6/yK5/3eK7d+Yq/aqWi1Y6AFwn+qWWe2h71ylF1yrq
3WYAZUY1JPQdxbcoxlE2Dk53eIjHnpbUhilNNOOTXTp5qL5J5wYfTb7F/PccJUXG
HUlt4j/JL4JQ7g==
-----END CERTIFICATE-----
Generated at Tue Apr 29 11:29:33 2025 by rpki-client