Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/240165-d974-429b-a1c1-a3ef0a4a3119/1/1oH6Zr4s6jS1iDwhxvg_NGTi7uE.mft
File: 1oH6Zr4s6jS1iDwhxvg_NGTi7uE.mft (raw, json)
Hash identifier: wmdAQ4idp5AKFJOOS/AW9L2hfh/MLUXuQNbQN0Iakpo=
Subject key identifier: 3B:77:C3:6D:5F:2F:30:74:B3:C7:48:5A:A6:1B:24:D8:8F:63:0A:AD
Authority key identifier: D6:81:FA:66:BE:2C:EA:34:B5:88:3C:21:C6:F8:3F:34:64:E2:EE:E1
Certificate issuer: /CN=d681fa66be2cea34b5883c21c6f83f3464e2eee1
Certificate serial: 0196BD499F4C76E687D0094776657C28E20F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1oH6Zr4s6jS1iDwhxvg_NGTi7uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/240165-d974-429b-a1c1-a3ef0a4a3119/1/1oH6Zr4s6jS1iDwhxvg_NGTi7uE.mft
Manifest number: 19
Signing time: Sun 11 May 2025 03:00:40 +0000
Manifest this update: Sun 11 May 2025 03:00:40 +0000
Manifest next update: Mon 12 May 2025 03:00:40 +0000
Files and hashes: 1: 1oH6Zr4s6jS1iDwhxvg_NGTi7uE.crl (hash: vQXrg1QWmbmq7RXcNtg4o9e5VB6tRJPp1/SLiEMcvTU=)
2: 5S2zrcgN0zQdJ3QFaE7FBSw-HeM.roa (hash: 7N2IUSxTtbeaCv9JQjKs/+AdqXjpbHadcRJYtmTUOLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/240165-d974-429b-a1c1-a3ef0a4a3119/1/1oH6Zr4s6jS1iDwhxvg_NGTi7uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/240165-d974-429b-a1c1-a3ef0a4a3119/1/1oH6Zr4s6jS1iDwhxvg_NGTi7uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1oH6Zr4s6jS1iDwhxvg_NGTi7uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:49:9f:4c:76:e6:87:d0:09:47:76:65:7c:28:e2:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d681fa66be2cea34b5883c21c6f83f3464e2eee1
Validity
Not Before: May 11 03:00:40 2025 GMT
Not After : May 12 03:00:40 2025 GMT
Subject: CN=3b77c36d5f2f3074b3c7485aa61b24d88f630aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dc:03:16:0e:af:ff:37:57:1c:e9:a0:a2:8f:
42:b0:fb:ab:23:ea:bb:bb:19:b4:ef:cf:e2:e0:d1:
ae:28:d5:10:d6:b7:f8:e9:71:af:48:dd:9c:2d:09:
77:43:71:24:7f:33:c0:fa:5d:42:00:62:e7:47:17:
fd:90:5b:d3:4f:9b:49:07:2f:a3:0f:5b:0c:c2:d3:
df:89:48:97:8c:ed:88:c4:1f:c9:35:25:4c:73:8e:
f1:02:1c:c2:91:00:73:35:5f:d7:fc:de:16:bd:4b:
bb:f4:54:4e:c2:4a:56:39:78:1b:41:de:ed:d2:c1:
44:c7:99:a1:ce:a2:2d:a2:a4:b5:3f:9d:fe:21:45:
69:72:8c:a7:df:ca:53:5e:2e:4e:3f:41:e2:33:13:
11:12:99:00:95:d8:4a:dc:f3:4c:71:a7:9a:d5:75:
f6:f9:3d:76:c7:ee:7e:7d:03:aa:59:a8:e7:b4:9d:
80:c5:55:bf:0a:3b:db:df:45:9d:f7:79:0a:e8:d8:
46:69:62:a9:cc:85:f6:93:04:bb:60:5b:1b:36:3a:
b2:7e:b9:ec:fd:d2:eb:35:bc:90:a9:b9:f3:09:cd:
41:00:0a:ba:fd:ff:83:b1:d3:c3:f6:37:67:69:95:
de:04:f7:a1:c9:31:a3:fd:f4:65:a0:45:84:06:25:
6d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:77:C3:6D:5F:2F:30:74:B3:C7:48:5A:A6:1B:24:D8:8F:63:0A:AD
X509v3 Authority Key Identifier:
keyid:D6:81:FA:66:BE:2C:EA:34:B5:88:3C:21:C6:F8:3F:34:64:E2:EE:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1oH6Zr4s6jS1iDwhxvg_NGTi7uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/240165-d974-429b-a1c1-a3ef0a4a3119/1/1oH6Zr4s6jS1iDwhxvg_NGTi7uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/240165-d974-429b-a1c1-a3ef0a4a3119/1/1oH6Zr4s6jS1iDwhxvg_NGTi7uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:a0:41:26:02:fb:8f:28:f5:e9:25:47:c4:30:c2:f5:91:cc:
c2:3a:d7:5a:d2:7e:d6:4f:e9:6c:0a:47:50:d4:f8:92:b5:5c:
cd:45:c1:aa:21:b0:9f:d1:43:2a:23:35:fe:4f:49:8d:3a:a8:
4a:c7:2b:65:0d:26:e8:bc:24:22:dd:bb:60:5f:3d:78:0f:5c:
37:69:5a:bf:32:cd:c8:be:81:93:59:bd:ed:1b:44:b4:34:8b:
49:c7:db:e0:66:73:c1:b2:4d:26:42:9e:a0:70:cc:2f:e6:b5:
d1:df:f3:a4:a8:bd:eb:c3:4a:fb:6c:a6:7d:c7:97:d9:33:6f:
e6:ff:17:16:10:93:0f:35:ee:5c:68:c0:b2:f5:f8:1a:c6:83:
fe:0f:f5:f4:af:ed:f4:71:b8:d4:5a:95:0a:5b:2e:21:0e:73:
c1:6d:09:9d:4f:fb:9a:23:01:09:3f:69:15:12:8c:97:39:3e:
56:bc:fb:58:01:17:1a:3f:1d:bb:65:e2:59:00:c2:75:39:0c:
6c:50:67:60:c8:be:d0:49:9a:c9:5f:3c:22:c6:d0:69:66:2f:
74:8c:a5:1b:ed:a9:7f:41:b8:bd:de:1d:cc:44:cc:95:ab:1c:
46:f6:9c:02:10:38:31:6e:74:c6:24:1a:b7:48:c2:09:23:36:
15:13:9a:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa9SZ9MduaH0AlHdmV8KOIPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2ODFmYTY2YmUyY2VhMzRiNTg4M2MyMWM2ZjgzZjM0NjRl
MmVlZTEwHhcNMjUwNTExMDMwMDQwWhcNMjUwNTEyMDMwMDQwWjAzMTEwLwYDVQQD
EygzYjc3YzM2ZDVmMmYzMDc0YjNjNzQ4NWFhNjFiMjRkODhmNjMwYWFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdwDFg6v/zdXHOmgoo9CsPurI+q7
uxm078/i4NGuKNUQ1rf46XGvSN2cLQl3Q3EkfzPA+l1CAGLnRxf9kFvTT5tJBy+j
D1sMwtPfiUiXjO2IxB/JNSVMc47xAhzCkQBzNV/X/N4WvUu79FROwkpWOXgbQd7t
0sFEx5mhzqItoqS1P53+IUVpcoyn38pTXi5OP0HiMxMREpkAldhK3PNMcaea1XX2
+T12x+5+fQOqWajntJ2AxVW/Cjvb30Wd93kK6NhGaWKpzIX2kwS7YFsbNjqyfrns
/dLrNbyQqbnzCc1BAAq6/f+DsdPD9jdnaZXeBPehyTGj/fRloEWEBiVtRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDt3w21fLzB0s8dIWqYbJNiPYwqtMB8GA1UdIwQY
MBaAFNaB+ma+LOo0tYg8Icb4PzRk4u7hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMW9INlpyNHM2alMxaUR3aHh2Z19OR1RpN3VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yNDAxNjUtZDk3NC00MjliLWExYzEt
YTNlZjBhNGEzMTE5LzEvMW9INlpyNHM2alMxaUR3aHh2Z19OR1RpN3VFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy8yNDAxNjUtZDk3NC00MjliLWExYzEtYTNlZjBhNGEzMTE5
LzEvMW9INlpyNHM2alMxaUR3aHh2Z19OR1RpN3VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO6BBJgL7
jyj16SVHxDDC9ZHMwjrXWtJ+1k/pbApHUNT4krVczUXBqiGwn9FDKiM1/k9JjTqo
SscrZQ0m6LwkIt27YF89eA9cN2lavzLNyL6Bk1m97RtEtDSLScfb4GZzwbJNJkKe
oHDML+a10d/zpKi968NK+2ymfceX2TNv5v8XFhCTDzXuXGjAsvX4GsaD/g/19K/t
9HG41FqVClsuIQ5zwW0JnU/7miMBCT9pFRKMlzk+Vrz7WAEXGj8du2XiWQDCdTkM
bFBnYMi+0EmayV88IsbQaWYvdIylG+2pf0G4vd4dzETMlascRvacAhA4MW50xiQa
t0jCCSM2FROaJA==
-----END CERTIFICATE-----
Generated at Sun May 11 05:32:01 2025 by rpki-client