Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: ehckyIoChMZwHfO5jnFoeA0VpuF8TztgWU6IhNWSDvY=
Subject key identifier: B1:E5:A4:5A:85:51:AF:CB:E3:E4:46:53:6A:C4:D9:D9:EB:39:D5:97
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 0196760CD0EB3109929BD0C5CDAFD02D2CA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: 7A
Signing time: Sun 27 Apr 2025 07:01:13 +0000
Manifest this update: Sun 27 Apr 2025 07:01:13 +0000
Manifest next update: Mon 28 Apr 2025 07:01:13 +0000
Files and hashes: 1: 2d_NXZtW0ODYRMQ4wdJe7FkxoW0.roa (hash: PhAe9DgdWLVDbJJiZelbxMyByKXlfBNEMtHqWSG1jZ8=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: vaqtSbgN5opiIoORo3+IL66e1Lu7Hvv2hF7JmhrMu+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:d0:eb:31:09:92:9b:d0:c5:cd:af:d0:2d:2c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: Apr 27 07:01:13 2025 GMT
Not After : Apr 28 07:01:13 2025 GMT
Subject: CN=b1e5a45a8551afcbe3e446536ac4d9d9eb39d597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:22:18:59:9b:80:7f:e2:c2:cf:a5:ac:62:60:
61:1a:ed:32:69:25:0d:c3:85:f1:5b:59:f1:3f:22:
54:73:ef:85:c9:87:a5:b7:1e:75:8c:d8:ac:25:92:
34:4b:cd:a2:af:fc:8a:24:4f:30:86:e6:c5:12:3c:
9e:95:60:09:0b:10:55:c2:59:73:22:51:73:35:a3:
d1:f4:c4:49:94:3b:a1:72:45:53:9b:e7:4c:3d:20:
1b:6a:25:34:6e:51:63:e2:83:0e:0f:67:84:8e:fd:
35:f3:1d:83:2e:38:37:59:31:a1:cb:25:1d:b5:8e:
19:13:15:cf:67:33:8a:1e:a0:d4:24:61:93:56:d6:
0a:77:39:8e:be:77:80:ff:26:1e:99:18:ab:31:b0:
69:e3:10:49:c3:b6:ff:41:fa:2d:21:e3:a0:88:db:
90:b8:89:94:f5:c3:33:fc:f3:5a:1b:00:a1:12:cd:
25:af:e6:15:ef:b5:0a:db:bf:6e:37:71:d1:b0:93:
a2:6e:40:4b:30:0d:0c:c8:50:af:4f:9d:6f:bd:61:
04:1b:9e:76:1f:42:f5:61:38:ce:09:65:cc:2f:1f:
14:5a:1a:46:87:ed:95:0d:e8:37:19:f1:4e:b1:30:
00:b7:ca:60:68:31:17:75:5a:76:2e:2d:93:99:19:
b5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E5:A4:5A:85:51:AF:CB:E3:E4:46:53:6A:C4:D9:D9:EB:39:D5:97
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:bb:14:e0:63:1f:f2:33:59:1d:e5:b5:92:b8:a6:73:a8:a0:
44:9a:85:ae:ff:f0:84:70:38:35:8f:4b:d9:c0:de:12:c3:2d:
46:c1:b0:3e:59:79:7c:3b:5a:c6:74:79:2f:aa:a8:7a:a9:8f:
5b:15:d0:1c:02:83:62:85:08:88:f0:58:27:32:5f:b6:63:cb:
c7:af:d5:00:4d:2f:6d:f6:ba:30:dd:d5:c1:52:89:ac:e3:7c:
66:93:7f:72:b9:42:ef:95:24:1f:03:db:27:1e:a2:01:5b:88:
e3:18:d2:91:21:ef:1b:bb:ce:f7:a9:65:6c:f9:bf:94:78:d8:
d0:73:13:1b:42:37:28:5a:0e:c3:e7:a9:73:26:6d:63:0b:e2:
b9:ee:86:42:92:03:a0:87:6f:cc:cd:94:10:85:4f:cc:f2:b6:
86:d0:65:97:4e:be:05:ad:eb:42:7f:43:d7:2f:e9:32:a4:e2:
b2:fe:47:75:70:fc:e0:9f:7c:fa:cd:32:bd:54:03:52:f4:64:
58:ce:33:44:99:93:51:db:4b:f5:79:af:f3:74:5c:2f:4e:99:
26:a2:c5:84:be:f8:4d:10:41:41:ff:48:28:9c:bb:3d:89:43:
9c:7d:90:8d:cf:58:7b:ca:6b:02:ed:33:41:62:6e:8b:d4:02:
36:dd:ea:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2DNDrMQmSm9DFza/QLSyiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OGI0ZTJlYWVmZGNiZWMxNWJhOTllOGE3YTIxYzg5ZTRi
MmNjYmQwHhcNMjUwNDI3MDcwMTEzWhcNMjUwNDI4MDcwMTEzWjAzMTEwLwYDVQQD
EyhiMWU1YTQ1YTg1NTFhZmNiZTNlNDQ2NTM2YWM0ZDlkOWViMzlkNTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySIYWZuAf+LCz6WsYmBhGu0yaSUN
w4XxW1nxPyJUc++FyYeltx51jNisJZI0S82ir/yKJE8whubFEjyelWAJCxBVwllz
IlFzNaPR9MRJlDuhckVTm+dMPSAbaiU0blFj4oMOD2eEjv018x2DLjg3WTGhyyUd
tY4ZExXPZzOKHqDUJGGTVtYKdzmOvneA/yYemRirMbBp4xBJw7b/QfotIeOgiNuQ
uImU9cMz/PNaGwChEs0lr+YV77UK279uN3HRsJOibkBLMA0MyFCvT51vvWEEG552
H0L1YTjOCWXMLx8UWhpGh+2VDeg3GfFOsTAAt8pgaDEXdVp2Li2TmRm1MwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLHlpFqFUa/L4+RGU2rE2dnrOdWXMB8GA1UdIwQY
MBaAFHaLTi6u/cvsFbqZ6KeiHInkssy9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG90T0xxNzl5LXdWdXBub3A2SWNpZVN5ekwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9iNTc4OTItY2QzZC00ZjA2LTkxZjct
NTUzODdiZmI1ZTY2LzEvZG90T0xxNzl5LXdWdXBub3A2SWNpZVN5ekwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9iNTc4OTItY2QzZC00ZjA2LTkxZjctNTUzODdiZmI1ZTY2
LzEvZG90T0xxNzl5LXdWdXBub3A2SWNpZVN5ekwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXLsU4GMf
8jNZHeW1krimc6igRJqFrv/whHA4NY9L2cDeEsMtRsGwPll5fDtaxnR5L6qoeqmP
WxXQHAKDYoUIiPBYJzJftmPLx6/VAE0vbfa6MN3VwVKJrON8ZpN/crlC75UkHwPb
Jx6iAVuI4xjSkSHvG7vO96llbPm/lHjY0HMTG0I3KFoOw+epcyZtYwviue6GQpID
oIdvzM2UEIVPzPK2htBll06+Ba3rQn9D1y/pMqTisv5HdXD84J98+s0yvVQDUvRk
WM4zRJmTUdtL9Xmv83RcL06ZJqLFhL74TRBBQf9IKJy7PYlDnH2Qjc9Ye8prAu0z
QWJui9QCNt3qGg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 17:44:08 2025 by rpki-client