Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
File: oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft (raw, json)
Hash identifier: NNmleuyxbcKRAQK5Su60XmgpKvMzl0Jb5OhrREO/r9g=
Subject key identifier: 38:C7:E7:C4:5C:53:14:A6:E6:17:21:DB:AC:CD:80:94:A6:08:21:5D
Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59
Certificate serial: 0196BEC9B1D5BB62DD3888AF86295225D4A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
Manifest number: 0A94
Signing time: Sun 11 May 2025 10:00:11 +0000
Manifest this update: Sun 11 May 2025 10:00:11 +0000
Manifest next update: Mon 12 May 2025 10:00:11 +0000
Files and hashes: 1: dPS19nUQKZs1pC8qDJfACabYgUU.roa (hash: tV7anFpBs2RsEo4baCa1A4g7pK/gnoVzFue1nUrbvl4=)
2: oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl (hash: 7xAer5WW5jO2B79y/nl9Te2I2mZSTYGadB9sqecOCdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:c9:b1:d5:bb:62:dd:38:88:af:86:29:52:25:d4:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59
Validity
Not Before: May 11 10:00:11 2025 GMT
Not After : May 12 10:00:11 2025 GMT
Subject: CN=38c7e7c45c5314a6e61721dbaccd8094a608215d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:97:54:96:b8:ed:00:4a:8f:3a:71:21:b2:c0:
2a:84:2f:ee:7b:f4:2c:20:8c:ba:af:d1:97:f1:f5:
5d:a5:df:e8:55:3e:42:24:6a:74:83:98:8d:f7:fa:
6e:43:4e:68:17:40:e1:61:ae:65:ba:f3:33:99:8b:
9e:96:67:88:0b:7f:8f:0b:da:3c:e4:80:82:5a:80:
cc:29:a8:55:0f:5a:75:aa:39:0a:e8:de:a6:01:f0:
4b:a0:27:d3:75:13:c6:b5:10:df:04:a7:59:48:03:
da:09:62:05:de:af:79:ef:03:d0:19:ce:80:d3:d2:
43:e2:2b:b3:e4:88:90:e1:3b:8e:6a:d1:4b:69:e7:
0d:25:ba:d2:d9:a2:0b:bd:b6:71:ce:04:96:e2:db:
25:ae:61:98:18:43:92:fc:70:f7:6c:16:c7:2f:da:
01:db:a3:6f:06:6b:32:18:a9:a5:5f:34:89:37:a9:
a5:d8:2f:ee:17:93:57:66:f4:52:3b:b4:34:4a:36:
da:f4:91:26:35:00:1a:b5:6e:f2:99:68:7e:de:7d:
cd:74:e6:6d:b6:7c:1c:4b:64:92:1e:43:69:6f:bd:
b6:94:a8:cf:d1:5d:d1:33:92:ce:7b:2a:c2:0b:42:
40:77:bf:22:fe:75:e4:d5:53:0d:57:93:30:a6:79:
ed:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C7:E7:C4:5C:53:14:A6:E6:17:21:DB:AC:CD:80:94:A6:08:21:5D
X509v3 Authority Key Identifier:
keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:7a:a2:4e:2c:0d:13:0e:70:3a:ea:ad:c8:77:37:cc:01:71:
a6:e2:06:b9:4f:37:0c:0a:67:05:84:7d:b5:bd:12:04:9e:f4:
31:91:ef:9d:12:47:f0:30:a6:ea:82:cb:45:a7:01:38:60:a5:
b9:10:ae:e5:de:87:21:df:11:b3:f9:c0:d0:f6:ed:3d:d2:bf:
f2:27:f7:33:7c:79:1e:10:1f:d9:1b:15:3d:4d:09:69:d0:61:
c1:1f:01:fa:7c:24:9a:f9:33:c5:a4:c9:f1:b0:77:c8:19:6e:
96:34:64:c1:71:6c:28:8b:80:51:da:31:8d:a3:99:47:a2:4c:
57:f3:66:5f:fe:16:44:aa:bc:ce:a7:2a:23:d3:ba:af:6f:6b:
ee:7f:8d:ac:0e:15:01:3a:f7:1b:c3:3d:c9:5f:ff:27:1a:46:
34:74:61:71:91:3f:ff:8e:7b:a9:2e:b1:b4:2f:ae:37:0e:51:
f7:93:c4:ad:15:c3:5a:82:f5:32:77:01:4f:1e:51:7d:7c:ca:
2a:fc:24:1a:88:4e:79:ac:7b:71:cb:9c:88:60:a0:9e:e4:0a:
82:cc:ee:ec:94:8a:cf:a3:28:77:87:33:50:98:6d:74:f7:dc:
a3:34:18:79:83:9b:45:60:63:99:4a:e3:24:9e:a7:da:ee:55:
46:42:a1:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa+ybHVu2LdOIivhilSJdSlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYTY0N2RhYzcyOWY0N2IwNjM2OWM0Yzk3NDFjZjk0Mzk1
M2RjNTkwHhcNMjUwNTExMTAwMDExWhcNMjUwNTEyMTAwMDExWjAzMTEwLwYDVQQD
EygzOGM3ZTdjNDVjNTMxNGE2ZTYxNzIxZGJhY2NkODA5NGE2MDgyMTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpdUlrjtAEqPOnEhssAqhC/ue/Qs
IIy6r9GX8fVdpd/oVT5CJGp0g5iN9/puQ05oF0DhYa5luvMzmYuelmeIC3+PC9o8
5ICCWoDMKahVD1p1qjkK6N6mAfBLoCfTdRPGtRDfBKdZSAPaCWIF3q957wPQGc6A
09JD4iuz5IiQ4TuOatFLaecNJbrS2aILvbZxzgSW4tslrmGYGEOS/HD3bBbHL9oB
26NvBmsyGKmlXzSJN6ml2C/uF5NXZvRSO7Q0Sjba9JEmNQAatW7ymWh+3n3NdOZt
tnwcS2SSHkNpb722lKjP0V3RM5LOeyrCC0JAd78i/nXk1VMNV5MwpnntQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDjH58RcUxSm5hch26zNgJSmCCFdMB8GA1UdIwQY
MBaAFKCmR9rHKfR7BjacTJdBz5Q5U9xZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYTFmODgtNzA3Zi00MWJkLWI5YmQt
ZmI2OTgzY2U5ZGZmLzEvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9iYTFmODgtNzA3Zi00MWJkLWI5YmQtZmI2OTgzY2U5ZGZm
LzEvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjHqiTiwN
Ew5wOuqtyHc3zAFxpuIGuU83DApnBYR9tb0SBJ70MZHvnRJH8DCm6oLLRacBOGCl
uRCu5d6HId8Rs/nA0PbtPdK/8if3M3x5HhAf2RsVPU0JadBhwR8B+nwkmvkzxaTJ
8bB3yBluljRkwXFsKIuAUdoxjaOZR6JMV/NmX/4WRKq8zqcqI9O6r29r7n+NrA4V
ATr3G8M9yV//JxpGNHRhcZE//457qS6xtC+uNw5R95PErRXDWoL1MncBTx5RfXzK
KvwkGohOeax7ccuciGCgnuQKgszu7JSKz6Mod4czUJhtdPfcozQYeYObRWBjmUrj
JJ6n2u5VRkKhdQ==
-----END CERTIFICATE-----
Generated at Sun May 11 15:00:07 2025 by rpki-client