Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: UZ09TPA3ZWDk/D9wwpfY2cGwazT9GaVlY70howgm2bQ=
Subject key identifier: 6C:74:4A:62:12:F2:A2:21:B0:93:57:08:35:2C:46:81:2F:6A:E4:8E
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019680FDDBF6C9AA15F580C885ED15EAD3CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1518
Signing time: Tue 29 Apr 2025 10:00:42 +0000
Manifest this update: Tue 29 Apr 2025 10:00:42 +0000
Manifest next update: Wed 30 Apr 2025 10:00:42 +0000
Files and hashes: 1: YZGMIvadW2xPxhoSXpNJb8SDWu8.roa (hash: jQfGmlQO1sTVXZe+wmgboQPBpNBgVW+6jbuLSLsW9ZU=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: PubaItBqTik16j+A+ZYU3eXF20xP3BlS7vcVbnrnM9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:fd:db:f6:c9:aa:15:f5:80:c8:85:ed:15:ea:d3:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Apr 29 10:00:42 2025 GMT
Not After : Apr 30 10:00:42 2025 GMT
Subject: CN=6c744a6212f2a221b0935708352c46812f6ae48e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f1:51:6d:b4:72:de:c3:3a:d9:ff:11:11:d9:
54:81:f9:2f:b5:12:58:1d:9c:b4:c5:ce:4d:13:72:
5a:6c:aa:67:76:73:33:65:ba:e1:6e:f8:f9:ae:22:
e1:92:6d:0a:8a:8b:ee:ce:a2:ec:64:fe:9b:c1:c1:
5b:65:ab:62:42:5a:3a:e8:3e:66:e1:c8:55:f7:96:
bf:9f:bd:ce:a5:18:d9:cf:c1:2e:da:b8:8f:0a:c5:
ce:8b:12:db:6c:24:02:ba:e2:a5:de:62:ad:b4:31:
11:e5:f8:dc:7a:33:71:d3:c7:ea:d4:a5:d5:fc:3f:
3d:38:02:03:08:03:df:02:3b:41:58:c5:ba:90:15:
38:e2:84:ca:8d:c6:d4:5a:3e:b8:6f:00:d9:a2:59:
b9:4d:1e:ee:3d:24:4d:29:f6:cb:a2:83:d3:4d:f1:
e1:9d:b3:6f:8d:2a:bb:88:4e:35:75:81:90:c6:b6:
b7:a2:50:91:6c:d5:68:2d:6f:dc:ff:fd:ca:d3:56:
29:eb:94:39:56:28:9f:7b:93:b0:a1:ba:92:29:c0:
9a:e7:2c:69:22:9a:8b:ee:02:84:1f:22:65:64:e4:
33:48:67:96:83:75:fb:36:ec:20:32:c5:5c:98:25:
75:b2:50:b6:81:b1:32:49:37:99:dc:c4:d4:fa:d4:
0a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:74:4A:62:12:F2:A2:21:B0:93:57:08:35:2C:46:81:2F:6A:E4:8E
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:a9:a2:76:aa:58:1b:10:dd:bf:10:66:81:4f:be:3c:f6:29:
38:27:00:d5:74:1b:bd:95:7c:87:5e:1f:94:e5:a1:f4:e9:d6:
3b:c4:1c:4a:b5:a0:48:a1:a0:9a:90:50:db:0f:bc:4f:9e:75:
38:21:e0:c2:52:d2:45:3d:16:c0:b3:53:59:7f:70:e0:be:d0:
94:d9:9b:64:18:c0:54:ed:be:be:aa:84:0c:b4:c1:01:dd:2e:
3b:99:44:80:14:b3:63:2b:10:47:84:10:ff:f6:a0:04:77:82:
3c:32:59:c9:a7:2c:af:1e:b8:a1:ce:d6:01:fa:eb:bb:32:be:
9c:49:b2:97:03:18:1d:b5:62:de:fb:68:07:73:2f:d5:9d:1c:
c5:9c:34:4a:5f:3a:ae:83:b1:8a:5d:fa:0e:ba:9a:b1:47:01:
de:3b:8d:18:74:17:ec:32:96:e1:87:d1:43:d6:22:52:e5:62:
45:3a:4a:0f:2e:02:68:fe:88:88:ba:ed:e5:99:99:e3:89:60:
90:1d:b3:f1:e7:8a:24:a3:97:24:84:d7:4d:75:29:4b:3e:9e:
cb:4c:84:69:0b:d6:4f:f7:cf:3e:c0:43:42:ff:75:62:4d:b0:
81:bf:04:a4:7f:2f:d1:87:27:8d:c6:fd:0f:89:76:80:65:36:
f7:e9:91:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaA/dv2yaoV9YDIhe0V6tPLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYmZkMDZjZTg1NWI2MmQ5YjY4OGNkOGM1MzVkNWY0OTRj
ZDM5MzIwHhcNMjUwNDI5MTAwMDQyWhcNMjUwNDMwMTAwMDQyWjAzMTEwLwYDVQQD
Eyg2Yzc0NGE2MjEyZjJhMjIxYjA5MzU3MDgzNTJjNDY4MTJmNmFlNDhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/FRbbRy3sM62f8REdlUgfkvtRJY
HZy0xc5NE3JabKpndnMzZbrhbvj5riLhkm0KiovuzqLsZP6bwcFbZatiQlo66D5m
4chV95a/n73OpRjZz8Eu2riPCsXOixLbbCQCuuKl3mKttDER5fjcejNx08fq1KXV
/D89OAIDCAPfAjtBWMW6kBU44oTKjcbUWj64bwDZolm5TR7uPSRNKfbLooPTTfHh
nbNvjSq7iE41dYGQxra3olCRbNVoLW/c//3K01Yp65Q5Viife5OwobqSKcCa5yxp
IpqL7gKEHyJlZOQzSGeWg3X7NuwgMsVcmCV1slC2gbEySTeZ3MTU+tQKqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGx0SmIS8qIhsJNXCDUsRoEvauSOMB8GA1UdIwQY
MBaAFKC/0GzoVbYtm2iM2MU11fSUzTkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2Ut
NjcxODM5MjAwNjA0LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2UtNjcxODM5MjAwNjA0
LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU6midqpY
GxDdvxBmgU++PPYpOCcA1XQbvZV8h14flOWh9OnWO8QcSrWgSKGgmpBQ2w+8T551
OCHgwlLSRT0WwLNTWX9w4L7QlNmbZBjAVO2+vqqEDLTBAd0uO5lEgBSzYysQR4QQ
//agBHeCPDJZyacsrx64oc7WAfrruzK+nEmylwMYHbVi3vtoB3Mv1Z0cxZw0Sl86
roOxil36DrqasUcB3juNGHQX7DKW4YfRQ9YiUuViRTpKDy4CaP6IiLrt5ZmZ44lg
kB2z8eeKJKOXJITXTXUpSz6ey0yEaQvWT/fPPsBDQv91Yk2wgb8EpH8v0Ycnjcb9
D4l2gGU29+mRcg==
-----END CERTIFICATE-----
Generated at Tue Apr 29 14:36:27 2025 by rpki-client