Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
File: rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft (raw, json)
Hash identifier: 7XE61575nmaaIUQ4CJq8/PvT0iSyb2wAMZG6xh+8HcI=
Subject key identifier: 5D:E6:76:0D:EE:50:65:02:11:DE:09:08:EC:40:22:CF:12:D6:78:0B
Authority key identifier: AC:EC:F0:9B:85:D9:1C:D6:82:B0:67:43:CB:6C:59:30:E1:FC:55:1C
Certificate issuer: /CN=acecf09b85d91cd682b06743cb6c5930e1fc551c
Certificate serial: 019676E7E7B33FF1DC9A9843D18A178168B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
Manifest number: 0132
Signing time: Sun 27 Apr 2025 11:00:31 +0000
Manifest this update: Sun 27 Apr 2025 11:00:31 +0000
Manifest next update: Mon 28 Apr 2025 11:00:31 +0000
Files and hashes: 1: 2-l-7yT7_u7_OYzRYJFyaa75TPk.roa (hash: bYwJQxGV83lRBUqEUc8QOqElQ+XjkvUc1MyoxR+0EMk=)
2: rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl (hash: X2RAMX8kIogYnjZvzIRk6tNUdfuRp23XtxhdGUw6qsw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:e7:b3:3f:f1:dc:9a:98:43:d1:8a:17:81:68:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acecf09b85d91cd682b06743cb6c5930e1fc551c
Validity
Not Before: Apr 27 11:00:31 2025 GMT
Not After : Apr 28 11:00:31 2025 GMT
Subject: CN=5de6760dee50650211de0908ec4022cf12d6780b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:63:73:6e:86:87:80:f5:35:58:9e:47:fd:53:
c9:b7:cb:77:43:51:15:7e:a1:c1:66:74:4e:40:33:
f1:4d:58:cf:25:ad:ec:84:eb:0d:5e:55:25:1d:c1:
c9:7f:38:b1:39:84:de:bc:57:b9:40:59:5f:f6:2b:
b8:c3:9e:f0:ad:75:f7:d2:4c:c0:87:0c:12:14:d1:
1c:97:76:03:0e:23:55:5c:28:fd:b2:c2:70:ff:48:
55:3d:9d:13:74:ac:15:8f:fd:1e:13:9e:c4:51:e8:
b6:5c:9b:37:81:53:84:92:02:1d:94:68:5c:a6:66:
31:48:4d:62:63:18:21:a2:a6:b1:7f:51:89:54:7a:
13:63:33:2b:b1:63:ae:c6:ba:6d:0c:00:37:70:4f:
ca:95:73:15:16:19:de:d8:f3:a6:94:c7:ae:47:15:
68:e2:0f:c5:28:1b:ed:c5:d7:0e:de:58:fb:65:fa:
0c:37:4d:56:05:32:af:36:2a:b9:df:23:45:9e:e4:
5d:12:51:09:04:b5:30:c4:0b:ad:88:b7:48:76:b9:
a9:d0:c7:4b:30:e0:d6:08:54:e0:db:ea:2e:bc:36:
30:90:9c:3d:ed:0b:69:68:e7:da:50:54:8b:2b:6f:
c1:11:0f:ec:91:20:00:90:4b:67:d0:e3:7a:f5:1f:
20:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E6:76:0D:EE:50:65:02:11:DE:09:08:EC:40:22:CF:12:D6:78:0B
X509v3 Authority Key Identifier:
keyid:AC:EC:F0:9B:85:D9:1C:D6:82:B0:67:43:CB:6C:59:30:E1:FC:55:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOzwm4XZHNaCsGdDy2xZMOH8VRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/25f4f4-a547-4238-a1da-f18d7818f84a/1/rOzwm4XZHNaCsGdDy2xZMOH8VRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:01:ce:4a:79:15:7f:94:56:56:6a:8d:ab:4a:0b:cd:4d:94:
b8:a1:67:69:82:a7:19:6f:9d:ef:6b:08:59:6a:b8:39:ef:1e:
4f:99:83:67:e3:eb:c7:00:69:2b:d1:21:f7:35:be:83:23:bd:
d8:0e:69:68:9b:86:fb:5e:e2:0f:97:1f:b4:7b:61:bd:78:50:
13:62:17:89:84:7f:6a:44:8b:73:81:15:46:7d:b0:02:ee:c2:
73:c1:20:2e:f3:f2:d8:e7:e0:df:0b:09:bc:0b:f8:3d:60:09:
1c:41:d0:4b:74:4c:64:bb:ec:2a:e4:62:bb:ed:8c:1e:d0:d1:
60:84:1b:33:64:d4:1a:f7:56:f7:96:39:cb:86:76:55:32:66:
bb:37:45:d8:72:1e:8e:c0:fb:98:f5:5d:73:e2:06:f5:c5:0d:
ef:a2:eb:35:3d:8e:47:1c:af:1b:4f:14:05:1a:bc:25:5d:5c:
80:a9:b2:e8:88:1c:f6:56:e7:0f:13:cf:bd:68:51:14:12:33:
a3:f7:d3:ad:63:df:38:f2:58:9d:e7:dd:64:76:16:f0:c1:a9:
03:5e:ab:c8:28:f6:03:c7:8c:62:dd:78:0a:29:c7:24:6e:f6:
9d:60:a3:bb:00:2f:4c:e3:81:72:a2:62:84:3f:df:18:00:52:
b1:a0:73:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ25+ezP/HcmphD0YoXgWi1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjZWNmMDliODVkOTFjZDY4MmIwNjc0M2NiNmM1OTMwZTFm
YzU1MWMwHhcNMjUwNDI3MTEwMDMxWhcNMjUwNDI4MTEwMDMxWjAzMTEwLwYDVQQD
Eyg1ZGU2NzYwZGVlNTA2NTAyMTFkZTA5MDhlYzQwMjJjZjEyZDY3ODBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2NzboaHgPU1WJ5H/VPJt8t3Q1EV
fqHBZnROQDPxTVjPJa3shOsNXlUlHcHJfzixOYTevFe5QFlf9iu4w57wrXX30kzA
hwwSFNEcl3YDDiNVXCj9ssJw/0hVPZ0TdKwVj/0eE57EUei2XJs3gVOEkgIdlGhc
pmYxSE1iYxghoqaxf1GJVHoTYzMrsWOuxrptDAA3cE/KlXMVFhne2POmlMeuRxVo
4g/FKBvtxdcO3lj7ZfoMN01WBTKvNiq53yNFnuRdElEJBLUwxAutiLdIdrmp0MdL
MODWCFTg2+ouvDYwkJw97QtpaOfaUFSLK2/BEQ/skSAAkEtn0ON69R8gbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF3mdg3uUGUCEd4JCOxAIs8S1ngLMB8GA1UdIwQY
MBaAFKzs8JuF2RzWgrBnQ8tsWTDh/FUcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvck96d200WFpITmFDc0dkRHkyeFpNT0g4VlJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8yNWY0ZjQtYTU0Ny00MjM4LWExZGEt
ZjE4ZDc4MThmODRhLzEvck96d200WFpITmFDc0dkRHkyeFpNT0g4VlJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi8yNWY0ZjQtYTU0Ny00MjM4LWExZGEtZjE4ZDc4MThmODRh
LzEvck96d200WFpITmFDc0dkRHkyeFpNT0g4VlJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0QHOSnkV
f5RWVmqNq0oLzU2UuKFnaYKnGW+d72sIWWq4Oe8eT5mDZ+PrxwBpK9Eh9zW+gyO9
2A5paJuG+17iD5cftHthvXhQE2IXiYR/akSLc4EVRn2wAu7Cc8EgLvPy2Ofg3wsJ
vAv4PWAJHEHQS3RMZLvsKuRiu+2MHtDRYIQbM2TUGvdW95Y5y4Z2VTJmuzdF2HIe
jsD7mPVdc+IG9cUN76LrNT2ORxyvG08UBRq8JV1cgKmy6Igc9lbnDxPPvWhRFBIz
o/fTrWPfOPJYnefdZHYW8MGpA16ryCj2A8eMYt14CinHJG72nWCjuwAvTOOBcqJi
hD/fGABSsaBzaA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 12:53:22 2025 by rpki-client