Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json)
Hash identifier: Hkw0UFeRoL+O8p0OE8DPdziRBLfXYmksg00q6fT+3MY=
Subject key identifier: 81:98:7A:55:AB:48:0C:06:7B:30:93:40:9C:1D:17:44:4D:7E:CB:D8
Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Certificate serial: 019674F97BA5033038E85AECCE701847CCA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
Manifest number: 1510
Signing time: Sun 27 Apr 2025 02:00:29 +0000
Manifest this update: Sun 27 Apr 2025 02:00:29 +0000
Manifest next update: Mon 28 Apr 2025 02:00:29 +0000
Files and hashes: 1: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: M1DN0JSWskQ9df4FZOMXlHKcolVMq1I8V6VWPIQDdAc=)
2: meyQlZ2V2fFm7jP19tS1SnwZU8o.roa (hash: Rjzn7WIqlB0uqbC7++KFiY3Pm+Td1rmouk6fxkElj30=)
3: u8p2k1kowabt5V010HcHbUdny4A.roa (hash: +zIIZMzEVP0HgE88S7aeA3JokmowyYpTKNzs1+R3c2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:7b:a5:03:30:38:e8:5a:ec:ce:70:18:47:cc:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Validity
Not Before: Apr 27 02:00:29 2025 GMT
Not After : Apr 28 02:00:29 2025 GMT
Subject: CN=81987a55ab480c067b3093409c1d17444d7ecbd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:44:87:d5:54:26:25:d0:59:d2:71:3a:43:63:
c2:21:4d:ec:b0:9f:f9:2f:40:a9:b3:7b:7e:3a:97:
ac:1d:ac:86:58:0c:50:7b:1e:20:7a:4d:07:4f:a9:
02:ac:f8:7c:02:d9:dd:f6:f3:94:b3:fc:91:15:75:
1a:d9:ca:84:67:d1:86:68:8e:23:aa:fa:e7:ba:2d:
89:bb:bc:36:f5:5f:42:9a:48:3f:9f:47:c3:ff:c0:
35:ba:95:72:21:3d:3e:51:85:18:4f:e2:85:c3:50:
58:ae:b5:e1:5e:26:bb:58:b4:45:e8:51:07:30:0d:
82:65:fc:d8:e8:c7:74:f2:d8:f1:2d:6b:a1:aa:fb:
50:f9:62:5e:e1:8e:5d:97:a6:04:89:3b:31:45:82:
9e:e1:52:d8:f9:3c:48:99:de:0d:1a:9f:51:0c:d3:
48:65:05:6b:dc:91:0d:d7:6d:91:69:23:f5:ec:f2:
1f:48:7a:c4:7e:e3:49:59:ac:d4:63:68:8c:d4:d8:
a9:7f:01:7d:c5:62:b9:90:7d:bb:a1:d1:83:49:aa:
5f:9b:b4:31:e2:e1:5f:4c:2f:87:87:ae:d6:cf:63:
26:d6:b1:94:f2:66:0f:ca:c4:c5:0b:a1:53:65:a4:
f1:72:8e:cd:d8:5f:4e:cf:ed:63:b5:22:e1:c6:06:
59:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:98:7A:55:AB:48:0C:06:7B:30:93:40:9C:1D:17:44:4D:7E:CB:D8
X509v3 Authority Key Identifier:
keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:fa:ca:5a:37:78:47:22:a3:e2:f7:7b:3b:40:4c:67:06:9b:
c1:f0:c3:a7:6e:db:5b:f1:5e:1d:c1:5b:3a:b9:20:b3:4d:68:
d7:8a:1b:88:43:40:fe:f6:e4:48:94:cc:ac:f7:b1:1b:f1:e3:
8d:be:02:91:2c:8a:79:18:d0:f9:71:79:2b:5f:84:8b:2d:27:
66:35:68:e4:f7:0f:bf:cd:28:ca:35:d9:15:3f:7d:ef:ac:c0:
f2:11:4f:4f:08:a0:8e:9c:bc:dd:19:cf:7a:9b:fd:0a:ab:d0:
5b:ee:93:7a:45:da:88:9e:5e:e1:0e:58:5b:bf:a2:14:96:07:
b5:8f:7b:aa:ca:f9:23:61:e6:c7:7a:88:79:cc:92:c5:82:ed:
c2:2b:bf:7b:28:80:a3:47:40:cc:75:36:b4:d7:0c:73:50:56:
29:49:ea:8c:3d:36:72:7b:63:df:c6:f6:ae:34:71:82:c6:38:
d7:43:78:51:54:b0:ff:f5:b4:eb:d3:4d:cf:f6:e5:78:38:58:
8e:10:c3:5f:10:de:b5:67:6f:2e:51:0e:f0:4f:93:b2:21:c9:
fb:d9:58:4d:bf:2a:d8:61:a2:a6:55:e0:7c:32:16:a5:96:fb:
f2:87:58:f5:3b:83:3e:9f:78:01:4f:0e:8a:2b:9c:54:65:a2:
c4:57:f6:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0+XulAzA46FrsznAYR8ypMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlNDNhMGRmMDU5YTUyNTFhNDAwYjVhMWYxMzIxYmEwMGQz
MTIwZDIwHhcNMjUwNDI3MDIwMDI5WhcNMjUwNDI4MDIwMDI5WjAzMTEwLwYDVQQD
Eyg4MTk4N2E1NWFiNDgwYzA2N2IzMDkzNDA5YzFkMTc0NDRkN2VjYmQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0SH1VQmJdBZ0nE6Q2PCIU3ssJ/5
L0Cps3t+OpesHayGWAxQex4gek0HT6kCrPh8Atnd9vOUs/yRFXUa2cqEZ9GGaI4j
qvrnui2Ju7w29V9Cmkg/n0fD/8A1upVyIT0+UYUYT+KFw1BYrrXhXia7WLRF6FEH
MA2CZfzY6Md08tjxLWuhqvtQ+WJe4Y5dl6YEiTsxRYKe4VLY+TxImd4NGp9RDNNI
ZQVr3JEN122RaSP17PIfSHrEfuNJWazUY2iM1NipfwF9xWK5kH27odGDSapfm7Qx
4uFfTC+Hh67Wz2Mm1rGU8mYPysTFC6FTZaTxco7N2F9Oz+1jtSLhxgZZqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIGYelWrSAwGezCTQJwdF0RNfsvYMB8GA1UdIwQY
MBaAFA5DoN8FmlJRpAC1ofEyG6ANMSDSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGtPZzN3V2FVbEdrQUxXaDhUSWJvQTB4SU5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wYmIzM2ItNjhmNy00NzQ4LTg0YWMt
MDA0ZmU0MzNjN2M4LzEvRGtPZzN3V2FVbEdrQUxXaDhUSWJvQTB4SU5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS8wYmIzM2ItNjhmNy00NzQ4LTg0YWMtMDA0ZmU0MzNjN2M4
LzEvRGtPZzN3V2FVbEdrQUxXaDhUSWJvQTB4SU5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbPrKWjd4
RyKj4vd7O0BMZwabwfDDp27bW/FeHcFbOrkgs01o14obiENA/vbkSJTMrPexG/Hj
jb4CkSyKeRjQ+XF5K1+Eiy0nZjVo5PcPv80oyjXZFT9976zA8hFPTwigjpy83RnP
epv9CqvQW+6TekXaiJ5e4Q5YW7+iFJYHtY97qsr5I2Hmx3qIecySxYLtwiu/eyiA
o0dAzHU2tNcMc1BWKUnqjD02cntj38b2rjRxgsY410N4UVSw//W069NNz/bleDhY
jhDDXxDetWdvLlEO8E+TsiHJ+9lYTb8q2GGiplXgfDIWpZb78odY9TuDPp94AU8O
iiucVGWixFf2qw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:37:36 2025 by rpki-client