
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
File: M-okCE9ribBlVZkQ4DEetRS-uxE.mft (raw, json)
Hash identifier: KssoA2rOfFuaINsnxHHGg79ToVsyeb1YKqt+l+d+z2A=
Subject key identifier: D7:1C:0D:A3:26:9F:21:DC:0B:F9:A6:60:79:38:93:24:FA:A1:F6:D0
Authority key identifier: 33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11
Certificate issuer: /CN=33ea24084f6b89b065559910e0311eb514bebb11
Certificate serial: 01968E8262547665C796ECD16B3E9F724D3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
Manifest number: 0853
Signing time: Fri 02 May 2025 01:00:31 +0000
Manifest this update: Fri 02 May 2025 01:00:31 +0000
Manifest next update: Sat 03 May 2025 01:00:31 +0000
Files and hashes: 1: M-okCE9ribBlVZkQ4DEetRS-uxE.crl (hash: 6FQUWc3b4p1ZOQfTVrWZggyq5xqGvXm71WK72gg8mmI=)
2: q5bfraBywGI6OWgME5lOUXQvdtQ.roa (hash: VPJfRwAlvqbFoPlw0asR42eLfzS3WBMbNuvc2HvQmEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8e:82:62:54:76:65:c7:96:ec:d1:6b:3e:9f:72:4d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33ea24084f6b89b065559910e0311eb514bebb11
Validity
Not Before: May 2 01:00:31 2025 GMT
Not After : May 3 01:00:31 2025 GMT
Subject: CN=d71c0da3269f21dc0bf9a66079389324faa1f6d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e5:73:1f:62:42:4a:e2:ea:89:bd:cf:bd:38:
df:33:26:9a:30:7d:a8:80:70:fb:f7:63:ec:a0:46:
ed:87:56:4f:55:ec:10:f7:33:ef:59:d2:f2:ff:5f:
c8:e0:9c:dd:8c:8f:38:01:42:92:39:0e:62:cd:38:
ef:65:e3:f9:3d:76:97:24:a2:2e:66:ce:23:af:39:
ca:82:5c:42:10:ed:3f:3b:1f:99:d2:85:f9:8e:62:
eb:3c:d9:50:e9:bc:55:de:19:cc:75:35:e9:d3:02:
c9:6a:33:4a:07:37:80:9d:c7:1f:c5:55:02:24:38:
ec:ec:2e:e3:2f:2c:07:40:96:98:ac:ab:a9:1a:72:
d9:98:e2:a2:7f:60:da:f0:0d:0e:e7:8e:9f:80:0c:
7a:fa:17:f0:66:83:31:04:98:f1:c5:e5:6b:fc:fa:
74:08:70:e0:54:dd:4e:d7:56:16:59:f7:18:04:f1:
2c:13:6b:5c:b7:e2:88:e8:39:cb:36:a6:b6:06:8c:
7c:a6:44:c8:14:73:cc:32:fb:08:3f:37:b9:af:8b:
35:74:46:08:27:c0:6e:68:18:f3:57:b2:a9:c1:96:
68:21:bd:a7:d6:5a:a5:1f:09:85:b1:d0:40:5b:30:
22:fb:3a:05:a6:de:e5:35:39:09:e1:55:71:7c:db:
1a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1C:0D:A3:26:9F:21:DC:0B:F9:A6:60:79:38:93:24:FA:A1:F6:D0
X509v3 Authority Key Identifier:
keyid:33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:77:46:1f:ed:0e:e6:de:ef:41:24:58:6f:0a:cd:9f:1f:0a:
50:7c:4a:73:96:cc:74:5b:0a:54:ab:4c:e2:cb:31:47:05:46:
cd:ef:07:eb:03:f9:a0:30:e1:46:f9:21:db:ac:8d:4c:88:d9:
ca:1a:25:f4:63:4f:c7:1a:6e:1f:15:e7:83:c3:c0:10:4a:eb:
55:93:f6:1f:39:97:34:be:a0:45:78:b5:bb:21:e4:f3:51:55:
00:ae:45:1f:5c:a1:09:24:c4:af:ba:0c:40:47:cb:fb:5d:24:
91:cb:7b:3b:15:a0:7a:c2:b5:76:f8:38:48:2b:03:9b:bb:d5:
df:0b:da:01:d4:f6:d3:81:9d:e9:95:f6:75:d2:59:57:43:b4:
37:88:08:36:78:c6:e1:6f:54:20:6a:74:e2:75:36:86:30:c7:
36:f5:77:98:fc:b3:0a:28:98:07:07:5e:30:bd:23:fb:6b:68:
fa:b5:ea:ec:1e:b2:9a:66:0a:06:2d:b6:47:40:a9:d2:ae:6c:
8b:9f:19:fd:2d:c2:68:a3:cc:f4:e0:e9:6d:4d:3c:bb:21:0a:
5c:3e:b8:9e:19:41:9d:ea:96:78:48:72:db:7f:0f:07:29:a0:
f1:7e:e1:aa:25:df:d3:a3:d2:50:a7:bf:be:08:0a:ec:5d:bf:
87:f4:0e:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaOgmJUdmXHluzRaz6fck09MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzZWEyNDA4NGY2Yjg5YjA2NTU1OTkxMGUwMzExZWI1MTRi
ZWJiMTEwHhcNMjUwNTAyMDEwMDMxWhcNMjUwNTAzMDEwMDMxWjAzMTEwLwYDVQQD
EyhkNzFjMGRhMzI2OWYyMWRjMGJmOWE2NjA3OTM4OTMyNGZhYTFmNmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+VzH2JCSuLqib3PvTjfMyaaMH2o
gHD792PsoEbth1ZPVewQ9zPvWdLy/1/I4JzdjI84AUKSOQ5izTjvZeP5PXaXJKIu
Zs4jrznKglxCEO0/Ox+Z0oX5jmLrPNlQ6bxV3hnMdTXp0wLJajNKBzeAnccfxVUC
JDjs7C7jLywHQJaYrKupGnLZmOKif2Da8A0O546fgAx6+hfwZoMxBJjxxeVr/Pp0
CHDgVN1O11YWWfcYBPEsE2tct+KI6DnLNqa2Box8pkTIFHPMMvsIPze5r4s1dEYI
J8BuaBjzV7KpwZZoIb2n1lqlHwmFsdBAWzAi+zoFpt7lNTkJ4VVxfNsaiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNccDaMmnyHcC/mmYHk4kyT6ofbQMB8GA1UdIwQY
MBaAFDPqJAhPa4mwZVWZEOAxHrUUvrsRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mZTNmZWYtZTE3Ni00NTFhLTk1ZDUt
OTA1MTk2ZWJhMGJlLzEvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mZTNmZWYtZTE3Ni00NTFhLTk1ZDUtOTA1MTk2ZWJhMGJl
LzEvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm3dGH+0O
5t7vQSRYbwrNnx8KUHxKc5bMdFsKVKtM4ssxRwVGze8H6wP5oDDhRvkh26yNTIjZ
yhol9GNPxxpuHxXng8PAEErrVZP2HzmXNL6gRXi1uyHk81FVAK5FH1yhCSTEr7oM
QEfL+10kkct7OxWgesK1dvg4SCsDm7vV3wvaAdT204Gd6ZX2ddJZV0O0N4gINnjG
4W9UIGp04nU2hjDHNvV3mPyzCiiYBwdeML0j+2to+rXq7B6ymmYKBi22R0Cp0q5s
i58Z/S3CaKPM9ODpbU08uyEKXD64nhlBneqWeEhy238PBymg8X7hqiXf06PSUKe/
vggK7F2/h/QOoQ==
-----END CERTIFICATE-----
Generated at Fri May 2 07:36:51 2025 by rpki-client