Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: GzwhLlaDAq1TSt4tEvwyicl0hvxiq6A/brGl+x5FIfc=
Subject key identifier: F0:FA:A3:28:8B:B0:7C:DE:A9:0A:24:18:58:DB:72:BE:CA:51:59:B3
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 019673B031E3BD6B8BE9F9950E8EE575D97E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 09B5
Signing time: Sat 26 Apr 2025 20:00:48 +0000
Manifest this update: Sat 26 Apr 2025 20:00:48 +0000
Manifest next update: Sun 27 Apr 2025 20:00:48 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: 5B4c7p1jDAwzSGmpd636SHvY5FuEp7HGPKXihj2G8pQ=)
2: tKwKl17jXwIeAtAZEyALLLwTexA.roa (hash: E9CmZ9NzF2HrbXjpDzFF0Gs0klh/PHaYx1PKsYvWrwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:b0:31:e3:bd:6b:8b:e9:f9:95:0e:8e:e5:75:d9:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Apr 26 20:00:48 2025 GMT
Not After : Apr 27 20:00:48 2025 GMT
Subject: CN=f0faa3288bb07cdea90a241858db72beca5159b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c4:fb:fb:8a:8d:df:1d:2f:84:77:6b:50:34:
95:da:12:67:ff:f0:7c:c1:e1:7d:03:79:12:a5:c6:
fa:68:79:6f:3a:52:4e:a4:0e:f7:d2:05:2b:e4:00:
ab:f3:f6:db:9e:d2:0e:ab:3f:1c:e4:a3:d4:53:c0:
92:65:c2:20:15:22:51:05:f9:3e:b2:ce:bd:6c:52:
64:1a:75:b0:3b:15:fc:3f:7a:7f:b3:65:6c:90:11:
35:19:0a:b8:00:94:67:94:1c:8f:94:46:d4:ec:a6:
ea:e2:53:5f:88:19:10:0e:aa:b8:23:40:14:6e:9f:
9e:8c:40:e9:7e:ab:ce:ec:78:8d:22:7e:9e:0e:68:
c4:63:0a:74:07:9b:c6:89:5e:7c:0e:eb:d0:bd:75:
2a:5e:ac:23:ea:07:a8:1d:08:4b:fb:e3:f5:14:19:
41:cc:0a:1f:56:b9:0e:a1:dd:13:0d:e4:a7:b4:e5:
73:b9:6f:41:7a:cd:a7:6a:9d:0a:cc:19:61:81:83:
e5:bb:8a:7c:7c:92:22:d1:02:51:9e:69:88:7a:07:
bc:4d:de:04:ac:cd:34:b1:fa:d7:40:8e:f3:1e:e9:
e2:d7:e2:1e:35:c5:ec:a4:73:8a:d7:ff:e2:b3:e4:
df:c8:c8:3e:4b:45:8e:de:33:5a:f0:2c:d5:69:d9:
05:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:FA:A3:28:8B:B0:7C:DE:A9:0A:24:18:58:DB:72:BE:CA:51:59:B3
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:01:48:d0:9e:22:90:a1:fa:27:26:c1:53:45:de:e7:c4:b1:
72:a2:e9:09:ea:90:23:32:0e:67:cf:7b:61:3e:fc:19:de:ac:
58:b1:c7:43:6d:8e:c1:cb:8e:c7:b9:f0:4f:41:05:d8:ad:d1:
a8:b2:78:f7:c4:da:fe:89:1f:ae:35:ac:bd:95:45:90:99:31:
3f:2c:d6:3e:e6:38:67:63:45:f3:a3:e4:26:cf:80:22:8e:7f:
40:39:18:a6:a4:80:44:f8:6b:a8:93:f8:ba:cb:73:51:35:e2:
7b:f5:dc:36:7b:0c:a0:b5:eb:6e:ea:0f:52:86:51:cf:95:ae:
c2:fb:25:be:77:3c:8b:ef:89:bb:94:bd:54:3e:16:b7:08:2d:
c4:39:05:02:99:fd:9c:e3:18:8e:65:d8:70:f4:35:03:af:88:
64:9b:f8:ac:72:fb:11:29:a6:70:1c:a5:1e:d9:e8:40:84:4e:
0f:30:06:ca:e9:db:d3:9d:bf:12:cb:cd:f5:c8:1b:70:d4:dc:
e3:3a:61:94:2d:fe:36:17:3f:eb:97:9f:2e:e9:ae:e8:98:00:
5f:da:30:10:77:85:ba:cf:bd:dd:e3:ce:d6:17:61:a0:9a:a8:
fe:d9:ce:43:ea:12:22:88:8b:69:c7:05:07:4b:07:e1:2b:1c:
85:39:68:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZzsDHjvWuL6fmVDo7lddl+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmIwZTIxN2EzNTE2ODM5MjIwNmJkYTczY2U2MTk1MzVh
MDJmMzUwHhcNMjUwNDI2MjAwMDQ4WhcNMjUwNDI3MjAwMDQ4WjAzMTEwLwYDVQQD
EyhmMGZhYTMyODhiYjA3Y2RlYTkwYTI0MTg1OGRiNzJiZWNhNTE1OWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8T7+4qN3x0vhHdrUDSV2hJn//B8
weF9A3kSpcb6aHlvOlJOpA730gUr5ACr8/bbntIOqz8c5KPUU8CSZcIgFSJRBfk+
ss69bFJkGnWwOxX8P3p/s2VskBE1GQq4AJRnlByPlEbU7Kbq4lNfiBkQDqq4I0AU
bp+ejEDpfqvO7HiNIn6eDmjEYwp0B5vGiV58DuvQvXUqXqwj6geoHQhL++P1FBlB
zAofVrkOod0TDeSntOVzuW9Bes2nap0KzBlhgYPlu4p8fJIi0QJRnmmIege8Td4E
rM00sfrXQI7zHuni1+IeNcXspHOK1//is+TfyMg+S0WO3jNa8CzVadkFTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPD6oyiLsHzeqQokGFjbcr7KUVmzMB8GA1UdIwQY
MBaAFK8rDiF6NRaDkiBr2nPOYZU1oC81MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnlzT0lYbzFGb09TSUd2YWM4NWhsVFdnTHpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9kMjU0MWUtNzU5Ny00ODIwLWJlZDct
ZjBkMTk4MDk4NzRhLzEvcnlzT0lYbzFGb09TSUd2YWM4NWhsVFdnTHpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9kMjU0MWUtNzU5Ny00ODIwLWJlZDctZjBkMTk4MDk4NzRh
LzEvcnlzT0lYbzFGb09TSUd2YWM4NWhsVFdnTHpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFwFI0J4i
kKH6JybBU0Xe58SxcqLpCeqQIzIOZ897YT78Gd6sWLHHQ22OwcuOx7nwT0EF2K3R
qLJ498Ta/okfrjWsvZVFkJkxPyzWPuY4Z2NF86PkJs+AIo5/QDkYpqSARPhrqJP4
ustzUTXie/XcNnsMoLXrbuoPUoZRz5Wuwvslvnc8i++Ju5S9VD4WtwgtxDkFApn9
nOMYjmXYcPQ1A6+IZJv4rHL7ESmmcBylHtnoQIRODzAGyunb052/EsvN9cgbcNTc
4zphlC3+Nhc/65efLumu6JgAX9owEHeFus+93ePO1hdhoJqo/tnOQ+oSIoiLaccF
B0sH4SschTlorA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:51:28 2025 by rpki-client