Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
File: O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft (raw, json)
Hash identifier: Al5k/AYvAjy1xv1CzdDcEOsQoyYkfJg0b2e1rUMuOsY=
Subject key identifier: FB:49:71:44:55:8A:AD:17:65:6B:40:AE:A2:27:76:38:45:B8:FC:CE
Authority key identifier: 3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
Certificate issuer: /CN=3bed02136698701f74c49f8a2a9e73e84ec981b6
Certificate serial: 01968AA5956DEF9472E4FD50990AB05950AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
Manifest number: 0952
Signing time: Thu 01 May 2025 07:00:29 +0000
Manifest this update: Thu 01 May 2025 07:00:29 +0000
Manifest next update: Fri 02 May 2025 07:00:29 +0000
Files and hashes: 1: O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl (hash: DrFhZUucyKP2moY19TEWZsNf5D4lr2v4Y3LkJZN8lOU=)
2: w9ICT6cKkgB_pyRYfsBkT7I_e5A.roa (hash: Ogtb5a6VjW8bSqLn3V6UgYjH3Wl670+DPbn1H5LtdUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:a5:95:6d:ef:94:72:e4:fd:50:99:0a:b0:59:50:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bed02136698701f74c49f8a2a9e73e84ec981b6
Validity
Not Before: May 1 07:00:29 2025 GMT
Not After : May 2 07:00:29 2025 GMT
Subject: CN=fb497144558aad17656b40aea227763845b8fcce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b5:c2:62:87:f3:70:84:46:82:80:66:29:93:
0e:6b:16:38:87:a8:16:87:d2:35:cd:57:77:16:9c:
44:6e:a1:ff:f1:a2:d0:87:11:01:d0:74:37:eb:7f:
d1:51:bc:16:95:d7:7b:5d:99:a3:d5:b9:19:bf:fa:
9a:58:18:b2:c5:7f:ea:a6:4a:3e:37:32:46:6c:90:
d5:a8:05:8b:82:9f:6b:0c:e3:e0:35:03:74:37:c4:
04:11:14:8d:10:e0:c2:67:a1:bb:5a:8a:20:09:92:
08:93:a4:c9:68:8c:de:28:87:72:5c:3a:ec:c5:72:
c6:6d:b7:2b:74:2c:09:cd:13:95:d3:16:f1:d3:72:
11:e2:c4:20:5f:4d:18:5e:22:30:36:8d:36:cc:57:
14:a8:f8:80:6f:2f:65:34:7d:ff:5e:f9:d0:63:35:
2f:a4:53:4c:6a:85:20:ca:bc:5b:a1:1d:f2:83:62:
8a:b7:65:00:26:e6:9c:89:35:cf:b9:1b:05:21:5f:
fd:83:0c:d1:0d:75:22:f3:36:8c:a9:17:e3:4b:7c:
5c:1b:9e:b8:57:6f:f5:6b:1c:1d:3e:3f:74:b4:6f:
9c:f3:b6:72:d5:3d:3e:20:30:b8:fa:97:9a:88:a1:
c2:4a:a1:fa:1c:f8:b8:81:2e:0e:78:4f:63:2d:3b:
32:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:49:71:44:55:8A:AD:17:65:6B:40:AE:A2:27:76:38:45:B8:FC:CE
X509v3 Authority Key Identifier:
keyid:3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d3:15:34:0c:19:da:2d:c4:b9:f0:5b:35:b9:23:73:cc:d9:
5b:6e:32:35:08:a6:b3:fa:6c:9a:9a:1f:4c:fb:69:49:d2:ef:
2c:fc:5c:c3:b5:c4:3f:07:50:03:02:71:a7:8e:d9:94:b7:dd:
14:e1:94:7d:7d:15:7f:64:6d:30:b5:cf:7d:3f:20:92:88:8d:
e1:95:88:1e:0c:89:79:4b:9b:fd:6d:7d:e6:e7:41:c1:e5:10:
f0:b2:d9:03:22:37:a1:9a:27:30:bd:59:90:89:bd:e0:26:46:
36:9b:d3:0a:a9:ab:dc:6b:eb:50:c7:96:ef:22:c8:2a:b0:82:
17:76:1f:c0:e3:5d:c8:3a:ad:aa:94:f7:c9:d4:1d:43:74:fb:
cd:3e:21:ca:f6:b6:e9:c8:b6:bb:72:57:61:2c:be:2c:ca:97:
54:97:fa:fc:a3:a3:04:f0:60:2d:0d:86:44:0d:e6:94:d4:da:
45:8c:11:72:0a:30:03:24:c1:5d:a7:7e:3f:e4:c8:8b:ae:48:
b2:49:9f:1a:99:f6:42:b0:56:f7:ce:75:fc:ec:ef:c4:e0:f3:
c8:52:53:09:c3:af:c7:46:13:21:53:b9:95:c0:63:1c:13:de:
06:3c:7a:e4:81:c3:84:06:a2:f6:e9:a0:99:e9:12:51:d2:26:
1a:9e:6d:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaKpZVt75Ry5P1QmQqwWVCsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZWQwMjEzNjY5ODcwMWY3NGM0OWY4YTJhOWU3M2U4NGVj
OTgxYjYwHhcNMjUwNTAxMDcwMDI5WhcNMjUwNTAyMDcwMDI5WjAzMTEwLwYDVQQD
EyhmYjQ5NzE0NDU1OGFhZDE3NjU2YjQwYWVhMjI3NzYzODQ1YjhmY2NlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5bXCYofzcIRGgoBmKZMOaxY4h6gW
h9I1zVd3FpxEbqH/8aLQhxEB0HQ363/RUbwWldd7XZmj1bkZv/qaWBiyxX/qpko+
NzJGbJDVqAWLgp9rDOPgNQN0N8QEERSNEODCZ6G7WoogCZIIk6TJaIzeKIdyXDrs
xXLGbbcrdCwJzROV0xbx03IR4sQgX00YXiIwNo02zFcUqPiAby9lNH3/XvnQYzUv
pFNMaoUgyrxboR3yg2KKt2UAJuaciTXPuRsFIV/9gwzRDXUi8zaMqRfjS3xcG564
V2/1axwdPj90tG+c87Zy1T0+IDC4+peaiKHCSqH6HPi4gS4OeE9jLTsyBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPtJcURViq0XZWtArqIndjhFuPzOMB8GA1UdIwQY
MBaAFDvtAhNmmHAfdMSfiiqec+hOyYG2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTy0wQ0UyYVljQjkweEotS0twNXo2RTdKZ2JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS85ZmFlZDEtZjY0Mi00ZTgyLThhNzMt
ZWQ5OWVmNjRhZGJmLzEvTy0wQ0UyYVljQjkweEotS0twNXo2RTdKZ2JZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS85ZmFlZDEtZjY0Mi00ZTgyLThhNzMtZWQ5OWVmNjRhZGJm
LzEvTy0wQ0UyYVljQjkweEotS0twNXo2RTdKZ2JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADtMVNAwZ
2i3EufBbNbkjc8zZW24yNQims/psmpofTPtpSdLvLPxcw7XEPwdQAwJxp47ZlLfd
FOGUfX0Vf2RtMLXPfT8gkoiN4ZWIHgyJeUub/W195udBweUQ8LLZAyI3oZonML1Z
kIm94CZGNpvTCqmr3GvrUMeW7yLIKrCCF3YfwONdyDqtqpT3ydQdQ3T7zT4hyva2
6ci2u3JXYSy+LMqXVJf6/KOjBPBgLQ2GRA3mlNTaRYwRcgowAyTBXad+P+TIi65I
skmfGpn2QrBW9851/OzvxODzyFJTCcOvx0YTIVO5lcBjHBPeBjx65IHDhAai9umg
mekSUdImGp5tOg==
-----END CERTIFICATE-----
Generated at Thu May 1 13:24:11 2025 by rpki-client