Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: FGcOixS8KAYUq2BkK5zb6Z0ETkegEY8b/cVEP8prEYk=
Subject key identifier: 83:9E:B6:C1:64:49:69:D5:D1:7B:91:FE:3A:58:51:AA:85:A3:E3:E0
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 0196C495658588B2A7EB96C1BA37C56FD722
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 1535
Signing time: Mon 12 May 2025 13:00:47 +0000
Manifest this update: Mon 12 May 2025 13:00:47 +0000
Manifest next update: Tue 13 May 2025 13:00:47 +0000
Files and hashes: 1: RW4un6mRBfPzHloV5RnOReMxV4M.roa (hash: 6KtCB53EZaTt4rkvk3WW5xLU60zG4n/pYxl9BtxsfPs=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: t+XELuiLPBlCXWz9cBAiQlABhK2nCDtgClSqqfRYpu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 13:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:95:65:85:88:b2:a7:eb:96:c1:ba:37:c5:6f:d7:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: May 12 13:00:47 2025 GMT
Not After : May 13 13:00:47 2025 GMT
Subject: CN=839eb6c1644969d5d17b91fe3a5851aa85a3e3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b0:dd:56:6a:51:76:7e:7a:2a:ba:c6:98:d1:
50:03:54:83:04:0a:03:48:b4:8a:11:9a:52:7e:4f:
7b:9e:95:76:ef:28:2f:cb:e7:9f:52:f1:f5:6f:f7:
db:88:a0:7a:ee:6e:25:95:de:c2:06:f8:42:2a:fa:
9e:07:d2:d7:71:29:72:f7:86:62:66:a0:79:ec:1d:
db:b2:f4:1f:49:3f:16:27:f5:8a:83:e7:d9:0b:45:
07:44:f5:cd:fb:54:eb:18:81:ac:39:61:a0:c2:95:
05:4d:b4:21:ac:53:bd:6a:bb:54:71:47:09:63:76:
c8:bf:7a:9b:d3:72:6c:8f:67:d1:07:d0:66:13:4b:
ef:45:10:98:be:91:f1:1c:bc:2a:a7:ff:22:5b:cd:
bc:94:ca:64:63:98:54:6d:a2:c9:f3:b7:b9:f0:fa:
19:1a:9e:cc:1f:c8:84:82:1a:12:94:b0:81:1e:d0:
56:5a:ac:34:83:0c:d5:c0:45:5a:53:8c:36:c4:e1:
b1:3d:85:e1:45:07:8d:23:8c:dc:c8:ce:9c:e7:dc:
47:44:03:06:91:20:5a:f5:84:01:d5:bd:56:e1:54:
36:b5:7d:d9:1f:10:e0:7e:e5:c1:1f:81:69:a9:7a:
cf:8a:e9:a3:45:c7:4a:12:56:39:26:b6:41:10:8c:
73:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9E:B6:C1:64:49:69:D5:D1:7B:91:FE:3A:58:51:AA:85:A3:E3:E0
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:d2:a7:1e:64:1a:8c:c6:72:0f:9c:47:3e:42:a4:4e:97:80:
62:ac:03:0e:7d:c6:85:18:2d:e4:1f:1b:72:a0:cb:62:94:1e:
17:7b:a1:9c:71:a1:91:5a:0f:d8:32:70:b7:26:52:f2:00:28:
78:8f:80:e7:7d:92:3d:39:47:74:da:44:28:26:cc:22:7a:2a:
c7:1d:43:a3:05:80:a9:f1:94:3c:68:d6:50:40:a1:b4:f0:af:
e3:4b:e5:0b:93:4a:c9:d0:ea:9d:a2:7d:a1:1f:3a:36:d3:aa:
b2:85:91:17:1f:7c:1b:0a:a6:aa:74:f8:8a:ce:8b:62:e6:94:
de:e2:3b:ad:d6:26:90:92:51:40:83:92:d1:38:50:91:ec:e7:
07:fd:d7:4e:78:c9:8b:5b:5c:f5:74:07:e7:8f:f8:f1:12:57:
d0:06:cb:1c:1a:7e:aa:91:96:5a:f8:25:eb:c1:ce:2c:6f:0d:
c8:60:9b:21:39:65:c9:d5:8b:a0:71:c9:62:34:17:83:ec:1d:
3b:db:ec:b7:5b:21:40:c9:92:4f:3e:e6:e7:ba:14:e3:b2:58:
43:81:b1:d5:67:43:01:13:0d:6f:25:8b:77:a3:5d:3b:87:9a:
90:85:45:e7:97:9c:53:1d:26:d2:63:45:09:9b:2c:19:27:0a:
94:c3:59:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbElWWFiLKn65bBujfFb9ciMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYzhjZGE4MTRlNzc3ZDlmZTE1NGI5MmU5OTU5Y2UxMjBi
MGFkNTgwHhcNMjUwNTEyMTMwMDQ3WhcNMjUwNTEzMTMwMDQ3WjAzMTEwLwYDVQQD
Eyg4MzllYjZjMTY0NDk2OWQ1ZDE3YjkxZmUzYTU4NTFhYTg1YTNlM2UwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLDdVmpRdn56KrrGmNFQA1SDBAoD
SLSKEZpSfk97npV27ygvy+efUvH1b/fbiKB67m4lld7CBvhCKvqeB9LXcSly94Zi
ZqB57B3bsvQfST8WJ/WKg+fZC0UHRPXN+1TrGIGsOWGgwpUFTbQhrFO9artUcUcJ
Y3bIv3qb03Jsj2fRB9BmE0vvRRCYvpHxHLwqp/8iW828lMpkY5hUbaLJ87e58PoZ
Gp7MH8iEghoSlLCBHtBWWqw0gwzVwEVaU4w2xOGxPYXhRQeNI4zcyM6c59xHRAMG
kSBa9YQB1b1W4VQ2tX3ZHxDgfuXBH4FpqXrPiumjRcdKElY5JrZBEIxz6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIOetsFkSWnV0XuR/jpYUaqFo+PgMB8GA1UdIwQY
MBaAFKDIzagU53fZ/hVLkumVnOEgsK1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9hYTI3MGEtYzA4OS00Nzc4LTkzNDMt
YjczNjJlZGJkOGFjLzEvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9hYTI3MGEtYzA4OS00Nzc4LTkzNDMtYjczNjJlZGJkOGFj
LzEvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkNKnHmQa
jMZyD5xHPkKkTpeAYqwDDn3GhRgt5B8bcqDLYpQeF3uhnHGhkVoP2DJwtyZS8gAo
eI+A532SPTlHdNpEKCbMInoqxx1DowWAqfGUPGjWUEChtPCv40vlC5NKydDqnaJ9
oR86NtOqsoWRFx98GwqmqnT4is6LYuaU3uI7rdYmkJJRQIOS0ThQkeznB/3XTnjJ
i1tc9XQH54/48RJX0AbLHBp+qpGWWvgl68HOLG8NyGCbITllydWLoHHJYjQXg+wd
O9vst1shQMmSTz7m57oU47JYQ4Gx1WdDARMNbyWLd6NdO4eakIVF55ecUx0m0mNF
CZssGScKlMNZog==
-----END CERTIFICATE-----
Generated at Mon May 12 18:57:34 2025 by rpki-client