Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
File: oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft (raw, json)
Hash identifier: 0oA7/ETZl0s5aX8sxhpMNlvawZ/BMVdP4Jss19Zlh64=
Subject key identifier: 33:4B:28:D7:FA:C6:E2:BB:14:FB:AF:C1:06:AC:77:E7:29:EC:6C:EC
Authority key identifier: A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
Certificate issuer: /CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Certificate serial: 0196BCA489137C754B722E64DB4E32AC61D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
Manifest number: 06A6
Signing time: Sun 11 May 2025 00:00:21 +0000
Manifest this update: Sun 11 May 2025 00:00:21 +0000
Manifest next update: Mon 12 May 2025 00:00:21 +0000
Files and hashes: 1: RgkGs56a3wBSH0Yhny04eNJEX3I.roa (hash: 1WUdRWIGnTtyys0okmGp0iV2hIZohfzABaDiV/G7uDo=)
2: oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl (hash: aKeLSoImpjinhGkHAaWqBfJGTcB61LMTO+o2+Z/E5fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:a4:89:13:7c:75:4b:72:2e:64:db:4e:32:ac:61:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Validity
Not Before: May 11 00:00:21 2025 GMT
Not After : May 12 00:00:21 2025 GMT
Subject: CN=334b28d7fac6e2bb14fbafc106ac77e729ec6cec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1c:f1:e5:c6:cd:8e:1a:07:76:c4:2f:63:b4:
68:9e:88:5b:01:b6:6d:02:e8:5e:c1:4f:ad:98:20:
31:c6:32:83:6f:62:9e:de:6a:84:fc:09:92:44:fb:
bb:12:9c:b6:25:a2:4f:af:77:8d:1c:2c:bf:7e:3c:
9f:eb:c3:fd:09:b1:6c:42:df:d0:58:54:79:f8:22:
7c:e4:5b:e3:63:68:8b:6b:94:ae:9e:36:6f:9c:62:
3e:d1:3d:d6:61:6f:d0:f1:16:60:a5:74:bd:19:56:
e5:5f:93:c4:5b:c9:f5:2e:8a:f7:ac:e7:45:f2:f6:
23:3a:3e:42:e1:7a:f5:2f:55:a9:31:37:af:8b:8a:
a3:af:75:42:39:03:b2:cd:56:f1:71:e0:c4:9d:13:
75:09:d7:b7:e0:b6:5e:d8:64:d8:05:1b:e6:56:b4:
fe:a8:7d:22:86:7c:4e:88:b9:b7:df:c2:88:bc:0a:
f9:73:2a:a4:c5:bf:d6:b4:fe:a4:76:0f:df:29:03:
1e:0b:0f:bf:f5:c3:b0:96:61:81:53:07:bc:db:31:
17:eb:e0:fb:0c:31:02:aa:0c:c5:00:9c:57:fe:ae:
51:fe:76:3c:ad:71:49:99:ca:4b:38:7e:99:ba:d7:
72:17:85:1f:f6:22:77:cb:43:12:81:ba:29:8a:6a:
ba:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4B:28:D7:FA:C6:E2:BB:14:FB:AF:C1:06:AC:77:E7:29:EC:6C:EC
X509v3 Authority Key Identifier:
keyid:A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:a2:a7:00:5b:c8:f2:4b:e1:5b:f2:74:38:24:e0:37:0a:1a:
f6:26:8b:1c:b5:1c:14:e6:7c:bb:a1:5b:49:e7:0c:10:e2:d6:
e9:f8:03:b5:3d:69:b8:32:b8:44:10:19:59:86:ba:cf:7a:a2:
e0:a3:a1:1f:73:6c:4e:7f:53:f2:45:66:d5:96:4b:85:78:6a:
dc:90:71:2c:18:a7:f9:e7:89:35:8d:b0:85:be:e6:4b:04:a0:
63:f5:12:e2:37:4e:ba:48:bc:3b:23:4c:cd:84:fa:33:a2:19:
0d:d1:af:3f:e7:03:1b:df:44:9e:48:db:3e:1b:9d:5e:62:c2:
36:00:7a:e3:08:6f:f2:a2:e7:4e:88:e4:74:e2:53:a3:82:3d:
70:ee:7e:84:de:66:8b:be:b9:a0:f2:96:90:de:27:c1:3c:0d:
78:3f:b3:b1:7c:c6:76:90:f7:99:21:6e:c8:2d:d6:16:cf:53:
10:50:47:db:bb:50:bd:52:af:88:e4:49:49:ef:06:4f:6e:44:
64:ea:c9:e6:5e:34:5a:84:e5:c4:f9:d5:fe:17:5b:93:24:bd:
dd:71:ef:7d:6f:b9:93:84:75:98:11:74:75:b7:b1:2e:60:03:
36:fb:79:a7:88:fb:df:17:08:e9:4a:4f:0c:da:29:f8:40:1a:
14:55:4d:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa8pIkTfHVLci5k204yrGHXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZTMxMjhmZDA5ZGMxOGU2NmVlNDIxMmE3ZTY0ZjNlNGU3
NGE4MTQwHhcNMjUwNTExMDAwMDIxWhcNMjUwNTEyMDAwMDIxWjAzMTEwLwYDVQQD
EygzMzRiMjhkN2ZhYzZlMmJiMTRmYmFmYzEwNmFjNzdlNzI5ZWM2Y2VjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxzx5cbNjhoHdsQvY7RonohbAbZt
AuhewU+tmCAxxjKDb2Ke3mqE/AmSRPu7Epy2JaJPr3eNHCy/fjyf68P9CbFsQt/Q
WFR5+CJ85FvjY2iLa5SunjZvnGI+0T3WYW/Q8RZgpXS9GVblX5PEW8n1Lor3rOdF
8vYjOj5C4Xr1L1WpMTevi4qjr3VCOQOyzVbxceDEnRN1Cde34LZe2GTYBRvmVrT+
qH0ihnxOiLm338KIvAr5cyqkxb/WtP6kdg/fKQMeCw+/9cOwlmGBUwe82zEX6+D7
DDECqgzFAJxX/q5R/nY8rXFJmcpLOH6ZutdyF4Uf9iJ3y0MSgbopimq6YwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDNLKNf6xuK7FPuvwQasd+cp7GzsMB8GA1UdIwQY
MBaAFKDjEo/QncGOZu5CEqfmTz5OdKgUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wYjRlNzMtYTE1NC00MDU5LWI2MjIt
OGZkNWNhYmE1NGU5LzEvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8wYjRlNzMtYTE1NC00MDU5LWI2MjItOGZkNWNhYmE1NGU5
LzEvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoaKnAFvI
8kvhW/J0OCTgNwoa9iaLHLUcFOZ8u6FbSecMEOLW6fgDtT1puDK4RBAZWYa6z3qi
4KOhH3NsTn9T8kVm1ZZLhXhq3JBxLBin+eeJNY2whb7mSwSgY/US4jdOuki8OyNM
zYT6M6IZDdGvP+cDG99EnkjbPhudXmLCNgB64whv8qLnTojkdOJTo4I9cO5+hN5m
i765oPKWkN4nwTwNeD+zsXzGdpD3mSFuyC3WFs9TEFBH27tQvVKviORJSe8GT25E
ZOrJ5l40WoTlxPnV/hdbkyS93XHvfW+5k4R1mBF0dbexLmADNvt5p4j73xcI6UpP
DNop+EAaFFVNQA==
-----END CERTIFICATE-----
Generated at Sun May 11 09:14:48 2025 by rpki-client