Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier: 2dCzdnf3jZ2fylblWlTPDvICIIzX7+pyHbs+sFPUTUE=
Subject key identifier: FB:16:EC:2F:BD:44:EE:47:AF:25:47:82:24:4B:9C:1A:5D:DA:6A:E1
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial: 0196760C5D7E3BB22F2F68C6589D6D471188
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number: 0C3A
Signing time: Sun 27 Apr 2025 07:00:43 +0000
Manifest this update: Sun 27 Apr 2025 07:00:43 +0000
Manifest next update: Mon 28 Apr 2025 07:00:43 +0000
Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: 43fyLwXKuhWdQPcQUSSdKZyYqHOXBdSnlvzPwQFOp+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:5d:7e:3b:b2:2f:2f:68:c6:58:9d:6d:47:11:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Validity
Not Before: Apr 27 07:00:43 2025 GMT
Not After : Apr 28 07:00:43 2025 GMT
Subject: CN=fb16ec2fbd44ee47af254782244b9c1a5dda6ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c1:93:b0:3e:be:e1:23:af:ac:17:80:97:fa:
63:5e:bd:60:54:8b:52:7e:be:b7:11:03:f5:2f:60:
7c:48:d7:32:d8:f4:ae:ca:01:8b:af:b1:99:16:26:
c2:08:be:7c:2e:f1:92:8b:c9:29:1b:4c:96:34:be:
ad:b6:3e:01:23:b6:68:e5:9d:42:a3:f2:54:05:d2:
11:95:eb:fa:4c:12:9d:c5:56:f6:d3:5a:e0:c0:51:
71:bb:0f:60:17:e6:ad:ac:3a:07:f2:0c:42:4f:24:
6e:e6:1c:e0:a8:bd:ed:da:2c:1a:cb:07:5c:88:82:
9e:f9:90:13:ac:11:3b:26:1b:ff:89:7e:ab:0d:7a:
1c:92:f7:97:c8:89:18:11:46:a0:6e:84:59:95:5c:
10:70:b9:7f:b4:72:d4:c3:e7:22:31:26:c0:ba:d0:
7a:96:2e:ca:01:43:20:77:81:12:d3:ae:d5:a1:0a:
b4:e6:fa:f7:3d:b9:76:52:e3:10:d8:5d:68:5a:68:
b0:d1:30:13:f9:0b:bb:38:f3:b5:90:fc:58:da:e8:
ed:6e:7b:33:a4:c9:ef:4f:72:aa:1a:06:62:6e:0e:
6a:b2:74:48:c8:e9:b2:a5:25:85:15:c7:97:ae:53:
b4:b8:4e:c2:51:e7:dc:3b:cc:cd:5a:e2:e6:27:a6:
97:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:16:EC:2F:BD:44:EE:47:AF:25:47:82:24:4B:9C:1A:5D:DA:6A:E1
X509v3 Authority Key Identifier:
keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:f7:f9:51:91:8c:16:7a:c0:55:86:44:5c:90:7e:c8:8d:8d:
a8:77:ee:b9:46:12:2c:ae:58:b3:a4:06:f8:cf:20:32:3c:19:
e6:f1:0c:a6:e5:67:6a:78:89:86:7f:1f:7a:99:44:14:f5:c0:
29:cd:2b:d7:40:c6:80:4d:a3:4d:a3:66:e9:d9:d4:90:64:e1:
b9:72:d0:a1:4f:53:4c:7b:0e:62:78:63:a3:90:87:94:0b:cc:
5f:dc:e1:96:fa:a8:56:0a:da:f5:ed:d0:33:e2:ee:bf:95:76:
d4:2a:88:32:ab:d1:09:97:0e:58:18:b9:f9:e9:a1:67:40:f7:
74:62:d7:68:9c:38:b8:22:bf:b2:04:00:51:ec:74:dd:d0:61:
60:ad:e3:f8:7f:3b:6a:d6:9d:34:f5:09:32:d8:8b:a7:44:80:
5f:21:af:1b:b2:59:28:b6:72:78:a3:da:8e:d4:e6:1a:a3:67:
b0:91:80:a5:9c:e9:51:8a:24:18:81:10:8f:6f:15:39:39:3b:
a0:19:25:88:04:9d:5b:f5:4a:e0:40:5e:bd:65:aa:db:56:2a:
b3:6d:e9:4d:fe:3f:1b:e6:e7:b9:cc:6c:06:96:89:4d:9a:cd:
2d:33:86:f0:f6:3d:ba:df:40:b1:e9:9b:7a:ff:aa:c0:8b:c7:
bc:64:64:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2DF1+O7IvL2jGWJ1tRxGIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmNGU4ZTc2MTNkYWExN2U4NWFhMTA3OGM4ZWMyNTVjZjE4
ZDQyMmEwHhcNMjUwNDI3MDcwMDQzWhcNMjUwNDI4MDcwMDQzWjAzMTEwLwYDVQQD
EyhmYjE2ZWMyZmJkNDRlZTQ3YWYyNTQ3ODIyNDRiOWMxYTVkZGE2YWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8GTsD6+4SOvrBeAl/pjXr1gVItS
fr63EQP1L2B8SNcy2PSuygGLr7GZFibCCL58LvGSi8kpG0yWNL6ttj4BI7Zo5Z1C
o/JUBdIRlev6TBKdxVb201rgwFFxuw9gF+atrDoH8gxCTyRu5hzgqL3t2iwaywdc
iIKe+ZATrBE7Jhv/iX6rDXockveXyIkYEUagboRZlVwQcLl/tHLUw+ciMSbAutB6
li7KAUMgd4ES067VoQq05vr3Pbl2UuMQ2F1oWmiw0TAT+Qu7OPO1kPxY2ujtbnsz
pMnvT3KqGgZibg5qsnRIyOmypSWFFceXrlO0uE7CUefcO8zNWuLmJ6aX1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPsW7C+9RO5HryVHgiRLnBpd2mrhMB8GA1UdIwQY
MBaAFF9OjnYT2qF+haoQeMjsJVzxjUIqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjct
MmYzYzAwMzJlNDQ2LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjctMmYzYzAwMzJlNDQ2
LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZff5UZGM
FnrAVYZEXJB+yI2NqHfuuUYSLK5Ys6QG+M8gMjwZ5vEMpuVnaniJhn8feplEFPXA
Kc0r10DGgE2jTaNm6dnUkGThuXLQoU9TTHsOYnhjo5CHlAvMX9zhlvqoVgra9e3Q
M+Luv5V21CqIMqvRCZcOWBi5+emhZ0D3dGLXaJw4uCK/sgQAUex03dBhYK3j+H87
atadNPUJMtiLp0SAXyGvG7JZKLZyeKPajtTmGqNnsJGApZzpUYokGIEQj28VOTk7
oBkliASdW/VK4EBevWWq21Yqs23pTf4/G+bnucxsBpaJTZrNLTOG8PY9ut9Asemb
ev+qwIvHvGRk6Q==
-----END CERTIFICATE-----
Generated at Sun Apr 27 12:54:25 2025 by rpki-client