Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
File: O5feF1Es-ovrw9-AsntHYk70FpE.mft (raw, json)
Hash identifier: 9sPsuCSBRF8XMxL5lQxyuGm5nrKMqzd/EviODGUosJE=
Subject key identifier: 71:74:69:F4:25:36:06:8E:C1:CB:90:31:B2:DB:62:0D:A6:1B:1A:DA
Authority key identifier: 3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
Certificate issuer: /CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Certificate serial: 01968F94CC3C1FE01DD555EFBA86CC702DBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
Manifest number: 099D
Signing time: Fri 02 May 2025 06:00:15 +0000
Manifest this update: Fri 02 May 2025 06:00:15 +0000
Manifest next update: Sat 03 May 2025 06:00:15 +0000
Files and hashes: 1: 3qIWzYrkrCPP_OpSVUhC7_G6DpI.roa (hash: yygvsOn7SmxlaOZM9baJ/n8umdT0wN2hx2GnupmdeSk=)
2: O5feF1Es-ovrw9-AsntHYk70FpE.crl (hash: QtB/Fy74rQKJsSAN5vcfghhrX9PfcnurEJZuWffgjFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 06:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:94:cc:3c:1f:e0:1d:d5:55:ef:ba:86:cc:70:2d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b97de17512cfa8bebc3df80b27b47624ef41691
Validity
Not Before: May 2 06:00:15 2025 GMT
Not After : May 3 06:00:15 2025 GMT
Subject: CN=717469f42536068ec1cb9031b2db620da61b1ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:18:cc:ea:4e:c7:c1:4a:67:2a:d0:ba:8b:c7:
ab:42:bd:6a:20:f8:50:86:31:05:2f:d6:e2:74:d7:
81:db:aa:f2:87:25:ed:5d:c2:26:20:8c:12:c8:2e:
33:b9:12:5a:eb:91:74:96:a2:39:ab:21:2c:54:83:
dd:7f:f8:63:2c:00:3a:92:44:c3:48:93:6f:c5:de:
5a:03:f1:4b:99:8a:b0:3d:cf:d2:ab:01:f1:8b:50:
15:70:66:39:dc:e8:03:a7:38:66:85:b0:a2:a7:00:
b6:88:e9:cc:d8:6e:9a:cd:8c:09:40:d8:44:8b:f8:
5d:cb:e7:95:4f:ea:6b:03:86:b7:8f:dd:b0:c3:67:
14:91:f3:84:2d:19:78:f0:02:4e:b5:9d:99:fa:bc:
fc:dd:f5:82:56:57:c7:30:3f:d1:1b:4b:3f:17:99:
2e:61:55:fc:63:e4:f7:c1:51:4a:28:a1:75:4d:c7:
56:40:c1:af:98:26:73:d6:fa:31:9b:54:be:13:35:
af:db:62:73:d0:9e:d6:7a:c4:e7:bb:3f:f3:3c:20:
47:b4:19:29:23:5e:74:3e:32:b0:6c:10:84:b8:59:
e1:3b:24:96:ea:11:e2:64:7c:18:41:50:74:8b:f3:
dc:49:67:08:5a:f6:ba:6f:de:a3:0a:86:70:6d:89:
47:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:74:69:F4:25:36:06:8E:C1:CB:90:31:B2:DB:62:0D:A6:1B:1A:DA
X509v3 Authority Key Identifier:
keyid:3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:32:53:27:e0:de:af:e0:eb:bf:25:b2:ba:b2:c4:a1:3b:1c:
37:77:96:15:66:61:0a:28:0a:17:cb:02:d3:03:bf:58:89:cd:
0f:ae:ce:ba:b7:6f:aa:f3:2e:1e:67:5c:31:43:14:1a:c2:ca:
49:e6:a5:54:82:38:3f:e4:ca:d1:86:87:83:bf:6f:2f:87:c8:
dc:ff:23:3e:c9:75:ba:4f:ad:32:27:3f:11:1b:df:d1:24:08:
13:e7:d0:f3:1c:bf:3f:ff:7a:d3:d1:20:95:c8:b0:b2:f4:71:
29:5d:b1:d0:53:76:f8:06:2d:4c:73:27:c8:1f:3c:46:9b:6a:
35:9e:6c:11:11:14:58:77:04:de:8a:19:c1:cb:59:dc:e1:83:
44:fb:05:8e:bc:88:0e:ca:bc:90:9b:eb:7a:ae:c5:26:b1:63:
4b:cb:81:d8:ef:55:6b:f6:d4:c1:e1:a1:81:6b:0a:0c:f7:5d:
05:08:10:6e:99:bf:07:68:1f:84:eb:87:0d:8e:f2:e1:3f:3f:
ec:96:ea:28:bf:81:90:92:79:8c:68:07:30:de:c6:5b:a8:67:
84:26:48:8a:79:71:98:82:ee:9a:eb:7d:3a:d9:79:ab:97:3b:
db:d3:63:a1:cb:a0:d1:35:32:dc:ea:c3:1d:41:15:17:5d:26:
84:79:c3:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaPlMw8H+Ad1VXvuobMcC29MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiOTdkZTE3NTEyY2ZhOGJlYmMzZGY4MGIyN2I0NzYyNGVm
NDE2OTEwHhcNMjUwNTAyMDYwMDE1WhcNMjUwNTAzMDYwMDE1WjAzMTEwLwYDVQQD
Eyg3MTc0NjlmNDI1MzYwNjhlYzFjYjkwMzFiMmRiNjIwZGE2MWIxYWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBjM6k7HwUpnKtC6i8erQr1qIPhQ
hjEFL9bidNeB26ryhyXtXcImIIwSyC4zuRJa65F0lqI5qyEsVIPdf/hjLAA6kkTD
SJNvxd5aA/FLmYqwPc/SqwHxi1AVcGY53OgDpzhmhbCipwC2iOnM2G6azYwJQNhE
i/hdy+eVT+prA4a3j92ww2cUkfOELRl48AJOtZ2Z+rz83fWCVlfHMD/RG0s/F5ku
YVX8Y+T3wVFKKKF1TcdWQMGvmCZz1voxm1S+EzWv22Jz0J7WesTnuz/zPCBHtBkp
I150PjKwbBCEuFnhOySW6hHiZHwYQVB0i/PcSWcIWva6b96jCoZwbYlH3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHF0afQlNgaOwcuQMbLbYg2mGxraMB8GA1UdIwQY
MBaAFDuX3hdRLPqL68PfgLJ7R2JO9BaRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzVmZUYxRXMtb3ZydzktQXNudEhZazcwRnBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy84YTdkYTQtYmExOS00YjI5LTg3ZTAt
OTE1NTEzMmExNzlhLzEvTzVmZUYxRXMtb3ZydzktQXNudEhZazcwRnBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy84YTdkYTQtYmExOS00YjI5LTg3ZTAtOTE1NTEzMmExNzlh
LzEvTzVmZUYxRXMtb3ZydzktQXNudEhZazcwRnBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAATJTJ+De
r+DrvyWyurLEoTscN3eWFWZhCigKF8sC0wO/WInND67OurdvqvMuHmdcMUMUGsLK
SealVII4P+TK0YaHg79vL4fI3P8jPsl1uk+tMic/ERvf0SQIE+fQ8xy/P/9609Eg
lciwsvRxKV2x0FN2+AYtTHMnyB88RptqNZ5sEREUWHcE3ooZwctZ3OGDRPsFjryI
Dsq8kJvreq7FJrFjS8uB2O9Va/bUweGhgWsKDPddBQgQbpm/B2gfhOuHDY7y4T8/
7JbqKL+BkJJ5jGgHMN7GW6hnhCZIinlxmILumut9Otl5q5c729Njocug0TUy3OrD
HUEVF10mhHnD/g==
-----END CERTIFICATE-----
Generated at Fri May 2 13:40:01 2025 by rpki-client