Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: yLaNgkzupkx+FXatcoiugWH8UkXRg0PobjfrfK4x8sc=
Subject key identifier: 44:A5:06:CE:24:C0:35:45:70:A2:4B:73:E4:F8:F5:7D:C6:6A:2D:28
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 019676E7A42BC9452BC8A6CD38DF2BA4FB3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 1500
Signing time: Sun 27 Apr 2025 11:00:14 +0000
Manifest this update: Sun 27 Apr 2025 11:00:14 +0000
Manifest next update: Mon 28 Apr 2025 11:00:14 +0000
Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: m0lho8+toY66EMBR1NloRgZkwNRNN7dbCliKh5I64xM=)
3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=)
4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=)
5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:a4:2b:c9:45:2b:c8:a6:cd:38:df:2b:a4:fb:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Apr 27 11:00:14 2025 GMT
Not After : Apr 28 11:00:14 2025 GMT
Subject: CN=44a506ce24c0354570a24b73e4f8f57dc66a2d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:30:c5:91:58:c6:04:db:86:7b:58:1b:33:da:
c2:5e:81:e6:79:b8:74:c0:c6:0c:65:51:37:8a:53:
ac:15:8a:81:fe:b1:d4:b6:e0:82:4b:a6:e1:c6:68:
26:86:c5:ca:8a:12:a2:bf:d7:55:91:a2:01:b3:a3:
92:a7:ac:6d:2a:50:e4:7b:78:48:03:9b:b7:30:4c:
e3:c8:fa:19:4e:2e:2f:bd:f4:14:24:70:3b:30:bc:
9e:0b:1d:b7:9c:60:24:fb:6c:f6:06:21:06:95:aa:
3b:9b:b9:78:ef:6a:8b:1a:09:5f:50:87:53:c9:ec:
cd:84:47:71:32:8b:5e:b1:35:ab:7a:ed:a9:3d:35:
b7:b5:b1:d5:1d:f7:2a:87:cd:03:ef:76:03:e0:56:
08:28:8b:60:2f:2d:1d:2f:82:9d:a3:bb:be:89:60:
2b:b6:c0:4a:7d:82:f5:42:38:aa:1e:5c:99:9a:42:
2a:6e:1d:4a:15:b7:b2:4a:9e:55:14:4f:b6:72:49:
51:30:41:9d:c4:d7:00:fd:5b:09:ac:ce:a7:f2:41:
b1:cf:3a:d7:d1:95:2f:a2:cd:02:7d:fc:42:ed:38:
7a:38:20:2a:5c:4a:b7:06:25:03:fe:48:fa:35:55:
f0:e9:a3:e1:6d:9e:88:eb:2e:14:37:9c:18:00:13:
65:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A5:06:CE:24:C0:35:45:70:A2:4B:73:E4:F8:F5:7D:C6:6A:2D:28
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:b3:70:a1:e3:4a:c0:4b:cf:50:cd:c5:65:65:f9:74:03:a8:
c0:56:82:e5:99:b2:20:6f:e7:a3:f5:6a:73:d7:8b:b1:25:71:
9c:8d:b4:4a:94:4d:24:b9:28:07:83:c4:db:b1:4e:c7:5d:ad:
c5:30:47:b1:2b:7f:95:56:bd:8e:cd:ef:72:2c:1d:c3:1a:43:
ef:c4:93:78:33:a9:13:2f:21:9a:c3:5d:0b:a5:08:9d:e2:79:
84:42:86:3f:56:a2:a8:e2:ba:3e:07:7c:ee:44:c8:db:7a:83:
0b:55:89:9d:2d:f9:a4:06:84:48:09:dd:9b:ab:d1:84:09:ab:
34:97:c2:0f:0c:0f:27:8b:43:a1:9d:14:a6:b0:6b:f7:aa:6a:
59:93:b3:9f:cb:4e:54:b5:ae:4b:61:93:7c:3f:b2:fa:5a:93:
b5:55:9f:3d:42:58:e9:03:56:50:b6:7a:89:43:1d:50:45:f9:
04:fa:b8:a3:1e:f2:8d:2e:55:cc:10:46:a7:a2:b0:4f:60:e7:
60:75:47:c3:e1:19:21:35:d4:d1:ee:9f:3d:75:d6:0b:2e:6d:
4d:76:64:7b:d2:00:a9:9f:fb:46:7b:d2:e6:d1:42:2f:53:3d:
7a:b2:17:9f:f4:2a:61:62:20:f2:29:4e:28:ff:22:c6:cf:7e:
50:23:a2:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ256QryUUryKbNON8rpPs/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi
ZTg5NTgwHhcNMjUwNDI3MTEwMDE0WhcNMjUwNDI4MTEwMDE0WjAzMTEwLwYDVQQD
Eyg0NGE1MDZjZTI0YzAzNTQ1NzBhMjRiNzNlNGY4ZjU3ZGM2NmEyZDI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjDFkVjGBNuGe1gbM9rCXoHmebh0
wMYMZVE3ilOsFYqB/rHUtuCCS6bhxmgmhsXKihKiv9dVkaIBs6OSp6xtKlDke3hI
A5u3MEzjyPoZTi4vvfQUJHA7MLyeCx23nGAk+2z2BiEGlao7m7l472qLGglfUIdT
yezNhEdxMotesTWreu2pPTW3tbHVHfcqh80D73YD4FYIKItgLy0dL4Kdo7u+iWAr
tsBKfYL1QjiqHlyZmkIqbh1KFbeySp5VFE+2cklRMEGdxNcA/VsJrM6n8kGxzzrX
0ZUvos0CffxC7Th6OCAqXEq3BiUD/kj6NVXw6aPhbZ6I6y4UN5wYABNlNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFESlBs4kwDVFcKJLc+T49X3Gai0oMB8GA1UdIwQY
MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt
ZjYwYWYyYTgyMDYwLzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw
LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfrNwoeNK
wEvPUM3FZWX5dAOowFaC5ZmyIG/no/Vqc9eLsSVxnI20SpRNJLkoB4PE27FOx12t
xTBHsSt/lVa9js3vciwdwxpD78STeDOpEy8hmsNdC6UIneJ5hEKGP1aiqOK6Pgd8
7kTI23qDC1WJnS35pAaESAndm6vRhAmrNJfCDwwPJ4tDoZ0UprBr96pqWZOzn8tO
VLWuS2GTfD+y+lqTtVWfPUJY6QNWULZ6iUMdUEX5BPq4ox7yjS5VzBBGp6KwT2Dn
YHVHw+EZITXU0e6fPXXWCy5tTXZke9IAqZ/7RnvS5tFCL1M9erIXn/QqYWIg8ilO
KP8ixs9+UCOiQQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 12:47:02 2025 by rpki-client