Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
File: 0KHbRmz4CCBik9B-ZfISH-tJoz4.mft (raw, json)
Hash identifier: D44yH90IAvoA/OcqYpoTzc+DGL7J28bTly7BEyC51dY=
Subject key identifier: 91:E9:41:52:73:28:40:4B:E8:54:92:72:FD:00:F9:D3:4A:12:22:CF
Authority key identifier: D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
Certificate issuer: /CN=d0a1db466cf808206293d07e65f2121feb49a33e
Certificate serial: 0196C495535BA1971EC0B7D2827FF64AF7CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
Manifest number: 1326
Signing time: Mon 12 May 2025 13:00:42 +0000
Manifest this update: Mon 12 May 2025 13:00:42 +0000
Manifest next update: Tue 13 May 2025 13:00:42 +0000
Files and hashes: 1: 0KHbRmz4CCBik9B-ZfISH-tJoz4.crl (hash: kLqNbIQFXB+Th6ST8BC4EiMFy9a/hlGwK4lmSmfoink=)
2: wC7Ohmh2aveKOZ7_Cl4a1vLomLo.roa (hash: hPiN8yhRbkkwhBqX7IPJBoamojlDhfcUtcDIIbpri30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 13:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:95:53:5b:a1:97:1e:c0:b7:d2:82:7f:f6:4a:f7:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a1db466cf808206293d07e65f2121feb49a33e
Validity
Not Before: May 12 13:00:42 2025 GMT
Not After : May 13 13:00:42 2025 GMT
Subject: CN=91e941527328404be8549272fd00f9d34a1222cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b9:06:b1:cb:f1:f4:d1:58:8a:f0:a9:a4:ab:
b7:dd:94:7e:f2:52:d1:0a:1a:ca:66:23:97:e3:1a:
52:b9:52:d8:ed:b1:11:7f:7d:50:8e:99:8d:73:15:
9b:0a:85:fe:aa:b2:c1:d7:ff:9e:1c:a2:11:12:66:
ca:e2:7f:4f:2c:cd:0f:2a:c9:40:d2:a6:e8:a9:79:
57:a7:d5:d8:2d:96:2d:76:e4:33:e4:f8:51:f4:81:
d7:80:30:1d:ec:9e:8c:fb:18:56:f0:de:4a:05:dc:
01:d9:0e:e7:95:fa:6e:19:f2:fa:4b:a5:1f:df:12:
aa:69:64:82:7f:1f:3f:e8:62:d3:da:04:aa:85:87:
3a:78:7c:ff:e1:22:29:86:3f:cc:c2:59:01:10:e1:
a4:37:25:f0:a7:9e:9c:10:11:11:ae:c2:e8:34:76:
5e:19:20:6e:86:22:0c:84:46:43:f1:00:f1:44:46:
1f:ed:bb:09:dd:fd:49:16:09:8e:f4:e6:95:50:d8:
03:95:b6:52:b6:bd:6b:18:ad:5f:df:88:40:ee:ae:
04:03:d3:d0:2c:34:d8:6b:e8:fe:e6:73:08:20:d7:
28:db:4b:ac:1f:89:c1:07:0f:88:61:9b:5e:9c:a6:
48:9c:82:9a:5d:5f:53:cb:37:11:d2:56:4d:ac:0c:
bc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E9:41:52:73:28:40:4B:E8:54:92:72:FD:00:F9:D3:4A:12:22:CF
X509v3 Authority Key Identifier:
keyid:D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:d7:b4:5e:40:a5:10:e4:92:f3:0e:91:d0:f5:38:91:6c:00:
68:2d:d0:8a:01:31:a0:79:02:c2:5a:df:61:8f:64:c7:05:e8:
90:0c:dc:ba:37:db:da:c9:f0:b8:94:74:ed:93:f4:1c:0b:78:
2a:42:ed:4f:85:5d:c9:4b:25:41:a2:8e:f1:ff:79:c1:54:1f:
f2:aa:a3:26:a6:4e:d7:c2:7b:6e:11:c0:b0:78:19:1f:7c:83:
f8:88:9d:b3:8f:2e:d3:3b:39:65:60:22:64:03:b3:5e:e7:a3:
7e:08:e9:a4:f8:3f:cf:88:a1:07:96:77:eb:27:3b:a7:b7:f9:
2f:f4:4a:a5:34:0a:5c:59:65:78:0d:21:6f:f8:22:a7:eb:ce:
bf:9f:89:28:1b:a1:57:ea:24:e7:6b:73:32:15:f1:2e:64:7d:
b5:5d:0c:cf:fc:c8:55:29:24:59:5a:c5:50:82:db:d6:30:58:
bb:56:02:76:90:78:6d:f9:2a:ff:e5:20:a9:cd:07:00:d4:72:
a1:86:8f:6a:00:f3:a7:c7:86:26:41:ca:ba:c2:ab:7a:45:f1:
66:33:f3:eb:a2:1a:5f:32:bd:2c:36:a2:af:5c:db:ad:21:cd:
3d:b7:8b:95:c9:3c:e2:d3:21:6d:94:b3:b0:6a:70:4d:35:5d:
0a:b4:00:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbElVNboZcewLfSgn/2SvfMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYTFkYjQ2NmNmODA4MjA2MjkzZDA3ZTY1ZjIxMjFmZWI0
OWEzM2UwHhcNMjUwNTEyMTMwMDQyWhcNMjUwNTEzMTMwMDQyWjAzMTEwLwYDVQQD
Eyg5MWU5NDE1MjczMjg0MDRiZTg1NDkyNzJmZDAwZjlkMzRhMTIyMmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbkGscvx9NFYivCppKu33ZR+8lLR
ChrKZiOX4xpSuVLY7bERf31QjpmNcxWbCoX+qrLB1/+eHKIREmbK4n9PLM0PKslA
0qboqXlXp9XYLZYtduQz5PhR9IHXgDAd7J6M+xhW8N5KBdwB2Q7nlfpuGfL6S6Uf
3xKqaWSCfx8/6GLT2gSqhYc6eHz/4SIphj/MwlkBEOGkNyXwp56cEBERrsLoNHZe
GSBuhiIMhEZD8QDxREYf7bsJ3f1JFgmO9OaVUNgDlbZStr1rGK1f34hA7q4EA9PQ
LDTYa+j+5nMIINco20usH4nBBw+IYZtenKZInIKaXV9TyzcR0lZNrAy8pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJHpQVJzKEBL6FSScv0A+dNKEiLPMB8GA1UdIwQY
MBaAFNCh20Zs+AggYpPQfmXyEh/rSaM+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMt
NDc2MmIwMTBlZjFlLzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMtNDc2MmIwMTBlZjFl
LzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABde0XkCl
EOSS8w6R0PU4kWwAaC3QigExoHkCwlrfYY9kxwXokAzcujfb2snwuJR07ZP0HAt4
KkLtT4VdyUslQaKO8f95wVQf8qqjJqZO18J7bhHAsHgZH3yD+Iids48u0zs5ZWAi
ZAOzXuejfgjppPg/z4ihB5Z36yc7p7f5L/RKpTQKXFlleA0hb/gip+vOv5+JKBuh
V+ok52tzMhXxLmR9tV0Mz/zIVSkkWVrFUILb1jBYu1YCdpB4bfkq/+Ugqc0HANRy
oYaPagDzp8eGJkHKusKrekXxZjPz66IaXzK9LDair1zbrSHNPbeLlck84tMhbZSz
sGpwTTVdCrQAPA==
-----END CERTIFICATE-----
Generated at Mon May 12 15:36:33 2025 by rpki-client