Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
File: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft (raw, json)
Hash identifier: IZ9VRHIobmmDmPQUgo1hsIFulwxqrHuse9ePS+xeSEI=
Subject key identifier: 9A:E3:CE:48:F6:4F:2C:3E:25:2D:F0:A0:7E:44:B3:B7:5F:7E:0B:14
Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Certificate serial: 0196857FC879768008D1820FAF72BBB6693F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
Manifest number: 0E45
Signing time: Wed 30 Apr 2025 07:01:06 +0000
Manifest this update: Wed 30 Apr 2025 07:01:06 +0000
Manifest next update: Thu 01 May 2025 07:01:06 +0000
Files and hashes: 1: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl (hash: qimhS3so6szqyBLPgnqlaWCm79pLsAGoLgYrJ1qRARk=)
2: y54lwyg0yxWntbnoIO-4zit0Jno.roa (hash: H4sOyX+DnDSSZx2P69W1kPQ6mzjJ5+oKrKghYFIkZco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 07:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:7f:c8:79:76:80:08:d1:82:0f:af:72:bb:b6:69:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Validity
Not Before: Apr 30 07:01:06 2025 GMT
Not After : May 1 07:01:06 2025 GMT
Subject: CN=9ae3ce48f64f2c3e252df0a07e44b3b75f7e0b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:46:6f:c5:e4:08:c5:fa:1e:ec:dc:d2:97:
c3:cb:54:48:ed:78:0b:e2:4f:4c:40:87:26:4a:eb:
6d:75:71:99:41:0f:90:43:62:a4:09:e6:d3:08:75:
c0:f1:c3:19:c1:2a:0c:28:82:26:57:c2:e0:c5:48:
b6:80:78:91:d2:68:92:2b:52:de:f9:67:95:74:d8:
31:94:dc:57:15:57:32:c9:2c:14:de:da:58:b5:31:
8e:08:98:98:fa:96:90:54:76:f2:88:c8:b9:ab:42:
fe:da:fb:be:5c:b1:df:51:6a:05:1f:f6:4f:01:78:
78:5c:21:76:78:84:6d:c7:83:97:fe:6d:d7:62:3d:
8b:57:c6:86:41:45:63:9c:b4:25:25:59:f2:32:be:
8e:81:8e:d5:ae:a0:49:8d:62:ca:3d:49:9a:bf:c2:
58:9d:25:7f:23:49:ce:62:10:31:91:e0:28:51:22:
ea:71:92:8e:8a:75:fc:9d:a0:da:81:34:16:3d:d8:
3b:be:63:34:00:70:ad:5f:dd:12:9b:6d:e3:b6:f2:
c5:35:7f:3b:e5:02:df:46:69:2d:18:c7:f8:d4:0b:
84:1c:93:52:4e:65:f3:b1:36:38:a0:5b:9b:ec:fe:
90:7b:23:25:48:9c:4f:14:ca:9f:69:2b:e6:ac:e4:
bd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E3:CE:48:F6:4F:2C:3E:25:2D:F0:A0:7E:44:B3:B7:5F:7E:0B:14
X509v3 Authority Key Identifier:
keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:24:72:70:25:17:17:b1:1a:b2:3a:93:ef:f5:c3:b6:89:0a:
ca:36:79:6e:a0:40:c5:b2:90:61:bf:70:48:8c:a7:c6:9e:b7:
43:bd:f9:c2:2e:b4:e8:a5:7f:2c:d3:9d:65:64:80:5b:a6:dd:
11:89:05:92:21:93:5b:b3:1a:6f:bd:d6:b0:6c:b1:b8:27:83:
07:2b:fb:8e:66:01:6a:aa:7b:05:7e:52:d1:a6:8b:f8:6d:7b:
7a:8c:44:7d:cd:76:92:de:b4:06:ff:18:11:da:bf:d9:6f:64:
9a:b2:69:b0:9f:f4:a9:9a:60:33:9d:ed:be:a7:39:89:40:fc:
46:b8:59:e1:89:1b:13:88:57:d3:24:fc:9a:f6:f8:5a:41:01:
ac:0b:4a:b6:7d:d6:eb:32:bc:a2:bf:95:c7:45:e8:f7:be:14:
78:12:a1:77:50:f9:be:85:cc:08:d9:85:17:5a:bc:ac:c2:de:
3f:2f:73:bb:e2:b4:82:10:a7:9c:ef:62:5f:2c:8f:b6:22:78:
f9:52:c6:99:8e:14:e6:ec:e9:c0:64:3b:58:36:e4:d6:77:62:
3e:6d:6b:e0:1a:a9:f9:dd:7f:7d:61:27:00:67:9d:72:00:40:
0c:8d:5b:3e:50:e1:47:bf:89:e0:17:e4:01:4c:05:a2:ed:ad:
80:81:80:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaFf8h5doAI0YIPr3K7tmk/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwMDk5NWE4N2JmNjRkYzQ5NDliODE5ZGZlMDJmOGE1ODZh
YWE0ZGUwHhcNMjUwNDMwMDcwMTA2WhcNMjUwNTAxMDcwMTA2WjAzMTEwLwYDVQQD
Eyg5YWUzY2U0OGY2NGYyYzNlMjUyZGYwYTA3ZTQ0YjNiNzVmN2UwYjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVdGb8XkCMX6Huzc0pfDy1RI7XgL
4k9MQIcmSuttdXGZQQ+QQ2KkCebTCHXA8cMZwSoMKIImV8LgxUi2gHiR0miSK1Le
+WeVdNgxlNxXFVcyySwU3tpYtTGOCJiY+paQVHbyiMi5q0L+2vu+XLHfUWoFH/ZP
AXh4XCF2eIRtx4OX/m3XYj2LV8aGQUVjnLQlJVnyMr6OgY7VrqBJjWLKPUmav8JY
nSV/I0nOYhAxkeAoUSLqcZKOinX8naDagTQWPdg7vmM0AHCtX90Sm23jtvLFNX87
5QLfRmktGMf41AuEHJNSTmXzsTY4oFub7P6QeyMlSJxPFMqfaSvmrOS9JQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJrjzkj2Tyw+JS3woH5Es7dffgsUMB8GA1UdIwQY
MBaAFKAJlah79k3ElJuBnf4C+KWGqqTeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGIt
ODkzOGU5NTU2MzQyLzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGItODkzOGU5NTU2MzQy
LzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcSRycCUX
F7EasjqT7/XDtokKyjZ5bqBAxbKQYb9wSIynxp63Q735wi606KV/LNOdZWSAW6bd
EYkFkiGTW7Mab73WsGyxuCeDByv7jmYBaqp7BX5S0aaL+G17eoxEfc12kt60Bv8Y
Edq/2W9kmrJpsJ/0qZpgM53tvqc5iUD8RrhZ4YkbE4hX0yT8mvb4WkEBrAtKtn3W
6zK8or+Vx0Xo974UeBKhd1D5voXMCNmFF1q8rMLePy9zu+K0ghCnnO9iXyyPtiJ4
+VLGmY4U5uzpwGQ7WDbk1ndiPm1r4Bqp+d1/fWEnAGedcgBADI1bPlDhR7+J4Bfk
AUwFou2tgIGA3g==
-----END CERTIFICATE-----
Generated at Wed Apr 30 11:53:14 2025 by rpki-client