Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
File: o4v4pSbaAFbVPHKfvP7bivH0hJs.mft (raw, json)
Hash identifier: kNbuE2oatwSwPMNc0ja5A7g8QBGSjk/LHyqpaamfwTk=
Subject key identifier: 47:CA:97:8C:04:E4:3E:0F:67:F5:54:81:D6:24:F9:15:67:82:76:D3
Authority key identifier: A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
Certificate issuer: /CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Certificate serial: 0196BD811CED94F59D9035AFDD2163CAD2B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
Manifest number: 02FC
Signing time: Sun 11 May 2025 04:01:17 +0000
Manifest this update: Sun 11 May 2025 04:01:17 +0000
Manifest next update: Mon 12 May 2025 04:01:17 +0000
Files and hashes: 1: o4v4pSbaAFbVPHKfvP7bivH0hJs.crl (hash: BZgLhVNpLwujMFPI6Cc+1tlBekw0Tw1jfGyBO+hIM+I=)
2: p2sBhjkKrSOlFMpQrw-wv6_TqKg.roa (hash: ldQS4P3nrNFNOkVsta5Vmi47wIthwLabohDFSWJ5xpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 04:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:81:1c:ed:94:f5:9d:90:35:af:dd:21:63:ca:d2:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Validity
Not Before: May 11 04:01:17 2025 GMT
Not After : May 12 04:01:17 2025 GMT
Subject: CN=47ca978c04e43e0f67f55481d624f915678276d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:44:df:66:58:dd:9c:99:3b:e5:b9:6d:51:2d:
63:5e:73:fc:e4:9c:8a:e4:5b:d6:10:d1:b4:6d:9e:
86:5d:71:b9:77:26:58:07:9e:85:6b:72:d7:60:5f:
d8:66:26:33:d3:e2:bd:2d:a2:74:1e:e5:56:19:c6:
90:5e:46:71:3d:7e:76:e5:2b:11:ab:50:79:47:84:
0c:03:4e:dc:8d:e7:a7:1f:bc:97:c8:0f:53:ce:c6:
71:ce:34:c9:84:c0:b3:ca:c8:34:93:c1:92:eb:1b:
d7:2c:e9:80:ef:54:70:7d:61:c9:9a:c8:ad:b7:02:
de:ad:e8:68:3a:45:3d:b2:5f:9c:c2:8f:df:18:12:
2b:2a:89:12:9c:dc:f7:03:cd:bf:3d:60:0b:f5:5a:
96:6a:8a:c3:eb:57:fb:50:68:ec:43:30:dd:35:86:
b4:68:c4:f1:7f:9e:65:00:4b:15:3f:45:77:bc:0e:
dd:83:8b:38:7a:72:4f:ab:d8:95:cc:ab:b4:c7:5c:
46:7c:ce:b2:84:03:0f:5a:da:bd:b4:d7:75:69:28:
b0:9b:ff:c7:8f:41:17:fa:df:dc:a1:41:ae:b6:6d:
fd:6d:9d:e1:70:77:9b:d2:43:78:ef:60:aa:7b:63:
c0:a3:82:1e:0c:6a:8a:38:3d:51:f4:ca:1e:65:31:
86:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CA:97:8C:04:E4:3E:0F:67:F5:54:81:D6:24:F9:15:67:82:76:D3
X509v3 Authority Key Identifier:
keyid:A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:c2:4e:5e:df:c7:9d:08:a3:d9:34:53:8f:a2:f1:09:b1:2a:
ca:9b:67:f4:cc:c4:3a:11:a9:c0:3e:2f:f1:d0:f8:7b:5b:5f:
86:65:a3:5f:29:96:17:93:31:69:41:98:34:5a:42:6b:c5:d6:
42:fb:ef:00:1c:6c:32:93:63:bc:ed:f0:55:aa:8f:85:a8:39:
e8:f3:5d:f4:6d:b4:bc:65:d7:7e:38:1f:4e:93:3c:31:d1:36:
b1:75:ca:1a:a3:a3:96:0c:7f:2c:1f:47:92:96:61:02:e6:61:
25:f3:7a:7e:08:d8:31:26:52:5e:99:ef:fd:67:66:72:bf:60:
55:7c:7c:b0:c3:e7:c2:20:b5:15:b7:97:a4:82:a8:d4:12:76:
20:21:b4:b4:18:f8:92:76:38:95:1d:e6:8c:8c:13:23:2d:ed:
7c:86:77:6f:85:60:1f:ac:0e:b1:e2:9d:8c:d0:d2:37:be:31:
10:e6:70:ce:b4:4e:42:22:c1:e7:f7:13:26:6d:78:f7:3a:ad:
f5:4d:f9:25:7f:93:16:95:22:74:64:f9:59:70:04:6c:7d:c4:
c6:8b:54:c4:a9:3c:53:1d:a6:e6:8c:69:bd:2a:61:bc:49:f4:
8a:f2:8d:ad:22:5d:ac:82:25:e6:ac:52:97:e2:a7:3a:91:48:
ae:66:65:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa9gRztlPWdkDWv3SFjytK5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzOGJmOGE1MjZkYTAwNTZkNTNjNzI5ZmJjZmVkYjhhZjFm
NDg0OWIwHhcNMjUwNTExMDQwMTE3WhcNMjUwNTEyMDQwMTE3WjAzMTEwLwYDVQQD
Eyg0N2NhOTc4YzA0ZTQzZTBmNjdmNTU0ODFkNjI0ZjkxNTY3ODI3NmQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UTfZljdnJk75bltUS1jXnP85JyK
5FvWENG0bZ6GXXG5dyZYB56Fa3LXYF/YZiYz0+K9LaJ0HuVWGcaQXkZxPX525SsR
q1B5R4QMA07cjeenH7yXyA9TzsZxzjTJhMCzysg0k8GS6xvXLOmA71RwfWHJmsit
twLerehoOkU9sl+cwo/fGBIrKokSnNz3A82/PWAL9VqWaorD61f7UGjsQzDdNYa0
aMTxf55lAEsVP0V3vA7dg4s4enJPq9iVzKu0x1xGfM6yhAMPWtq9tNd1aSiwm//H
j0EX+t/coUGutm39bZ3hcHeb0kN472Cqe2PAo4IeDGqKOD1R9MoeZTGGCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEfKl4wE5D4PZ/VUgdYk+RVngnbTMB8GA1UdIwQY
MBaAFKOL+KUm2gBW1Txyn7z+24rx9ISbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzR2NHBTYmFBRmJWUEhLZnZQN2JpdkgwaEpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZWYxMGEtYmQ1My00NzkzLWIxYTgt
NjA0YjQ3MjYxNDc2LzEvbzR2NHBTYmFBRmJWUEhLZnZQN2JpdkgwaEpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC9kZWYxMGEtYmQ1My00NzkzLWIxYTgtNjA0YjQ3MjYxNDc2
LzEvbzR2NHBTYmFBRmJWUEhLZnZQN2JpdkgwaEpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApMJOXt/H
nQij2TRTj6LxCbEqyptn9MzEOhGpwD4v8dD4e1tfhmWjXymWF5MxaUGYNFpCa8XW
QvvvABxsMpNjvO3wVaqPhag56PNd9G20vGXXfjgfTpM8MdE2sXXKGqOjlgx/LB9H
kpZhAuZhJfN6fgjYMSZSXpnv/Wdmcr9gVXx8sMPnwiC1FbeXpIKo1BJ2ICG0tBj4
knY4lR3mjIwTIy3tfIZ3b4VgH6wOseKdjNDSN74xEOZwzrROQiLB5/cTJm149zqt
9U35JX+TFpUidGT5WXAEbH3ExotUxKk8Ux2m5oxpvSphvEn0ivKNrSJdrIIl5qxS
l+KnOpFIrmZlaA==
-----END CERTIFICATE-----
Generated at Sun May 11 10:57:58 2025 by rpki-client