Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
File: O9VD0EZeovb-uCjxhQSwP0A6xmk.mft (raw, json)
Hash identifier: /4Wu8BvqLzNkST/qLGT3IRg7ayYiJW/aZYku83WTQgk=
Subject key identifier: 74:D4:8F:70:80:82:1E:CD:9D:41:FC:94:E0:03:3A:2E:5B:C6:BA:45
Authority key identifier: 3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
Certificate issuer: /CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Certificate serial: 01969115925592A06331A21864ABA1B3BB03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
Manifest number: 0F57
Signing time: Fri 02 May 2025 13:00:32 +0000
Manifest this update: Fri 02 May 2025 13:00:32 +0000
Manifest next update: Sat 03 May 2025 13:00:32 +0000
Files and hashes: 1: O9VD0EZeovb-uCjxhQSwP0A6xmk.crl (hash: /eHV5B+YhuRmZArBhAyVK7UQOV6lRfe7+0dhKhUfvhw=)
2: x4WRkvTk4Qfvxow9VzZXx3rDXCk.roa (hash: RyOgBcFttRpc6DEmQeaGYO0tOWZlEQp1Uhl8vvwB5VE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 13:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:15:92:55:92:a0:63:31:a2:18:64:ab:a1:b3:bb:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Validity
Not Before: May 2 13:00:32 2025 GMT
Not After : May 3 13:00:32 2025 GMT
Subject: CN=74d48f7080821ecd9d41fc94e0033a2e5bc6ba45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0d:6a:4e:c9:24:23:5e:77:71:09:b3:87:84:
a9:b8:52:58:2a:18:4b:13:e1:67:1a:07:7a:06:98:
db:72:72:ae:f7:97:f7:f2:99:c2:1e:37:8d:60:cc:
40:43:c5:9f:84:25:a7:78:27:c4:fc:a2:c6:01:dd:
f3:34:bf:c2:94:ff:43:c0:f6:1e:86:a2:0a:f9:c2:
66:83:ee:df:de:ba:ef:dd:c8:bf:00:11:22:a0:e3:
5c:3d:b8:32:ac:42:3b:02:6b:40:ec:b2:bc:08:7d:
4e:01:ae:95:65:5c:02:52:35:38:01:54:ab:2d:c9:
1c:dc:f0:2f:a8:bb:f1:9f:28:89:11:41:7b:6b:44:
c0:2d:c6:ac:d4:90:83:c0:fa:94:22:25:4e:9a:9f:
d0:c5:28:12:62:b7:0d:71:f6:70:f9:4f:47:da:be:
70:cc:7a:7b:eb:0a:2a:75:1d:f0:79:c4:82:40:b1:
69:5c:6c:76:32:62:d7:61:ce:70:64:76:ac:df:d2:
19:dc:51:1e:b4:d8:d6:e9:b0:d8:1e:2c:9b:e0:6f:
cb:0d:d2:ca:8a:cc:d1:52:fa:3a:7e:14:ba:df:7f:
24:39:5e:30:be:ef:6d:11:36:8f:64:dc:f0:ca:8b:
2e:23:09:d1:6e:85:8b:10:9d:84:a4:df:0c:ed:8a:
6a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D4:8F:70:80:82:1E:CD:9D:41:FC:94:E0:03:3A:2E:5B:C6:BA:45
X509v3 Authority Key Identifier:
keyid:3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:8a:a7:50:3f:2c:18:dd:54:68:c9:5f:a9:36:f3:8d:13:56:
28:26:89:3c:00:e4:09:2f:ae:1d:b4:69:b9:6b:7b:3b:c7:c0:
4b:47:c7:ab:9f:4c:b6:1f:c0:7e:7a:27:28:87:ae:2b:b1:96:
88:96:e8:fe:71:94:49:7b:f5:4e:19:a0:30:65:d4:00:6d:18:
74:b1:0d:a1:97:95:f5:78:6e:f7:c5:70:cb:53:14:5f:c8:da:
c0:c5:81:f3:67:bf:8a:55:59:ff:68:e4:69:43:0d:f3:ab:30:
c9:ae:ad:ce:4a:80:24:58:e7:32:a7:9f:15:10:a4:6a:4f:ae:
61:a8:7f:df:6a:51:e4:b4:e6:c3:a3:f6:43:93:f5:f8:33:2b:
7e:df:47:48:ed:67:ee:5a:5b:ee:51:b6:85:b0:a1:36:78:42:
e9:81:38:1e:50:1d:2b:5c:f6:36:b2:9d:1a:0c:ed:16:73:05:
f3:d6:2b:08:c8:3e:36:54:5c:b7:8e:df:f0:97:24:07:5f:b7:
61:b8:08:9e:b2:ae:c5:5a:6a:7b:8d:89:c0:71:5c:c3:85:d1:
53:9c:57:e0:52:d4:c2:3c:82:dd:f3:7b:57:c1:d4:01:47:b7:
cc:92:22:ab:86:a0:b6:e6:49:ac:fe:3b:0b:e8:68:03:4b:e9:
7c:3d:f2:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaRFZJVkqBjMaIYZKuhs7sDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZDU0M2QwNDY1ZWEyZjZmZWI4MjhmMTg1MDRiMDNmNDAz
YWM2NjkwHhcNMjUwNTAyMTMwMDMyWhcNMjUwNTAzMTMwMDMyWjAzMTEwLwYDVQQD
Eyg3NGQ0OGY3MDgwODIxZWNkOWQ0MWZjOTRlMDAzM2EyZTViYzZiYTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQ1qTskkI153cQmzh4SpuFJYKhhL
E+FnGgd6BpjbcnKu95f38pnCHjeNYMxAQ8WfhCWneCfE/KLGAd3zNL/ClP9DwPYe
hqIK+cJmg+7f3rrv3ci/ABEioONcPbgyrEI7AmtA7LK8CH1OAa6VZVwCUjU4AVSr
Lckc3PAvqLvxnyiJEUF7a0TALcas1JCDwPqUIiVOmp/QxSgSYrcNcfZw+U9H2r5w
zHp76woqdR3wecSCQLFpXGx2MmLXYc5wZHas39IZ3FEetNjW6bDYHiyb4G/LDdLK
iszRUvo6fhS6338kOV4wvu9tETaPZNzwyosuIwnRboWLEJ2EpN8M7YpqawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHTUj3CAgh7NnUH8lOADOi5bxrpFMB8GA1UdIwQY
MBaAFDvVQ9BGXqL2/rgo8YUEsD9AOsZpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzlWRDBFWmVvdmItdUNqeGhRU3dQMEE2eG1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy83OGZlYTktZWZhYy00OTgzLWFjMmIt
ZGY0NTA1NGRkOTM0LzEvTzlWRDBFWmVvdmItdUNqeGhRU3dQMEE2eG1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy83OGZlYTktZWZhYy00OTgzLWFjMmItZGY0NTA1NGRkOTM0
LzEvTzlWRDBFWmVvdmItdUNqeGhRU3dQMEE2eG1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAoqnUD8s
GN1UaMlfqTbzjRNWKCaJPADkCS+uHbRpuWt7O8fAS0fHq59Mth/AfnonKIeuK7GW
iJbo/nGUSXv1ThmgMGXUAG0YdLENoZeV9Xhu98Vwy1MUX8jawMWB82e/ilVZ/2jk
aUMN86swya6tzkqAJFjnMqefFRCkak+uYah/32pR5LTmw6P2Q5P1+DMrft9HSO1n
7lpb7lG2hbChNnhC6YE4HlAdK1z2NrKdGgztFnMF89YrCMg+NlRct47f8JckB1+3
YbgInrKuxVpqe42JwHFcw4XRU5xX4FLUwjyC3fN7V8HUAUe3zJIiq4agtuZJrP47
C+hoA0vpfD3yfg==
-----END CERTIFICATE-----
Generated at Fri May 2 20:38:33 2025 by rpki-client