Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
File: oHFXHI4QtBnXo7824Qhf_VzXipg.mft (raw, json)
Hash identifier: Sp6qduSpyv2jRThIHzksn2s2yx1Tfd7GKCa8CY84Nis=
Subject key identifier: 7D:4C:79:63:A1:3B:CC:CA:F4:EB:EB:70:5C:9D:E1:39:F6:03:00:18
Authority key identifier: A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98
Certificate issuer: /CN=a071571c8e10b419d7a3bf36e1085ffd5cd78a98
Certificate serial: 0196B6D956FDADD48B445BA810B1101A52BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
Manifest number: 0EF8
Signing time: Fri 09 May 2025 21:00:18 +0000
Manifest this update: Fri 09 May 2025 21:00:18 +0000
Manifest next update: Sat 10 May 2025 21:00:18 +0000
Files and hashes: 1: _RMv1Q7O2CnoWhcrAcn90ZX5USk.roa (hash: I2FYErDanPUJADaKO92Q6jyRK2EK15cN4Qdxt/bs9vQ=)
2: oHFXHI4QtBnXo7824Qhf_VzXipg.crl (hash: 2cbuc0nFt2QU70AW3OvX8mjg0c6/zlneOaI270XQfnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 21:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:d9:56:fd:ad:d4:8b:44:5b:a8:10:b1:10:1a:52:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a071571c8e10b419d7a3bf36e1085ffd5cd78a98
Validity
Not Before: May 9 21:00:18 2025 GMT
Not After : May 10 21:00:18 2025 GMT
Subject: CN=7d4c7963a13bcccaf4ebeb705c9de139f6030018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3c:b4:c4:d6:66:fc:b2:81:c5:dd:62:bf:11:
96:fb:0d:06:7b:d9:53:ec:86:13:45:c1:d8:3b:a7:
b4:e1:b1:90:25:62:50:9b:14:6d:d9:ed:ca:50:86:
8c:04:26:14:dd:b5:0e:d0:9a:71:30:36:17:51:01:
6e:9e:b7:8e:32:cd:31:e4:cd:62:fa:48:8f:d1:50:
c1:08:34:6a:74:98:c8:81:be:30:8e:b4:6b:2c:dc:
60:71:38:65:c3:89:e8:ac:d8:2f:e9:94:fc:17:c9:
eb:9f:81:2b:f9:9e:96:4a:4f:7e:32:1e:a1:df:4c:
1d:6c:14:0b:f9:e7:f7:79:6e:65:d8:8c:b2:47:5a:
58:0e:74:bb:65:c7:2a:6c:5a:9f:5a:94:e6:b7:2e:
84:20:7d:36:41:0b:e8:02:d3:f2:3f:ae:2d:11:62:
64:7e:ca:6f:f9:dd:42:c2:30:a3:7e:38:a0:41:f7:
68:40:11:06:fb:69:ed:c2:b1:f6:69:c8:9c:ff:02:
df:46:3e:41:90:17:4c:ea:1f:47:5d:f1:9c:fd:12:
d1:b0:cb:9d:5f:de:3c:76:28:16:0d:2a:85:87:35:
7e:51:69:24:08:0f:60:35:ea:58:33:f1:e4:bc:c4:
b7:2a:b1:da:20:54:8d:52:97:35:fc:fe:c6:ba:af:
fe:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4C:79:63:A1:3B:CC:CA:F4:EB:EB:70:5C:9D:E1:39:F6:03:00:18
X509v3 Authority Key Identifier:
keyid:A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:4d:a8:13:f7:22:5a:42:51:5f:41:2c:8a:a8:12:3e:66:53:
37:ef:df:a9:ee:cc:ce:1e:99:59:fb:f4:e7:14:d1:58:dc:70:
3a:6f:16:6d:70:1d:28:fc:b1:df:32:7f:e2:5a:e0:4d:31:58:
49:c5:64:d3:39:65:9f:1d:72:b5:7a:47:87:90:ae:1e:1b:02:
59:cb:0b:a9:8f:b5:bf:85:4d:e6:d6:23:9d:d9:73:49:7f:9d:
10:a1:09:c7:b5:d0:b5:fd:3e:cb:eb:4b:fe:ad:9f:1b:50:49:
e0:dd:c6:e0:c1:27:19:bc:7a:63:b8:95:94:ce:4a:97:30:96:
b3:c0:90:e0:44:cc:d4:6d:79:98:42:46:4c:9a:98:fd:bd:dc:
f1:33:78:55:02:c3:b3:e8:3b:a6:04:20:1c:f7:10:39:0e:08:
95:00:01:74:42:85:92:69:89:93:03:0c:de:e8:78:3b:f1:2d:
56:40:41:6e:4b:a8:80:b6:a4:9d:26:c2:7f:30:97:dd:79:50:
80:d4:be:6a:70:d4:e9:9a:0c:c1:73:ca:69:bb:7b:fd:9f:90:
19:fe:01:cd:c8:f2:78:94:74:53:0f:9e:2a:3d:ce:e8:5b:55:
10:15:ee:24:10:07:2c:6d:7e:65:36:7f:1a:9a:1b:59:c8:55:
ce:ba:21:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa22Vb9rdSLRFuoELEQGlK+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNzE1NzFjOGUxMGI0MTlkN2EzYmYzNmUxMDg1ZmZkNWNk
NzhhOTgwHhcNMjUwNTA5MjEwMDE4WhcNMjUwNTEwMjEwMDE4WjAzMTEwLwYDVQQD
Eyg3ZDRjNzk2M2ExM2JjY2NhZjRlYmViNzA1YzlkZTEzOWY2MDMwMDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDy0xNZm/LKBxd1ivxGW+w0Ge9lT
7IYTRcHYO6e04bGQJWJQmxRt2e3KUIaMBCYU3bUO0JpxMDYXUQFunreOMs0x5M1i
+kiP0VDBCDRqdJjIgb4wjrRrLNxgcThlw4norNgv6ZT8F8nrn4Er+Z6WSk9+Mh6h
30wdbBQL+ef3eW5l2IyyR1pYDnS7ZccqbFqfWpTmty6EIH02QQvoAtPyP64tEWJk
fspv+d1CwjCjfjigQfdoQBEG+2ntwrH2acic/wLfRj5BkBdM6h9HXfGc/RLRsMud
X948digWDSqFhzV+UWkkCA9gNepYM/HkvMS3KrHaIFSNUpc1/P7Guq/+gQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1MeWOhO8zK9OvrcFyd4Tn2AwAYMB8GA1UdIwQY
MBaAFKBxVxyOELQZ16O/NuEIX/1c14qYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0hGWEhJNFF0Qm5Ybzc4MjRRaGZfVnpYaXBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjgyOWYtYjNlZC00NGQzLWE1Y2Yt
MGMxZjY5YjdhZWU3LzEvb0hGWEhJNFF0Qm5Ybzc4MjRRaGZfVnpYaXBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9jMjgyOWYtYjNlZC00NGQzLWE1Y2YtMGMxZjY5YjdhZWU3
LzEvb0hGWEhJNFF0Qm5Ybzc4MjRRaGZfVnpYaXBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPk2oE/ci
WkJRX0EsiqgSPmZTN+/fqe7Mzh6ZWfv05xTRWNxwOm8WbXAdKPyx3zJ/4lrgTTFY
ScVk0zllnx1ytXpHh5CuHhsCWcsLqY+1v4VN5tYjndlzSX+dEKEJx7XQtf0+y+tL
/q2fG1BJ4N3G4MEnGbx6Y7iVlM5KlzCWs8CQ4ETM1G15mEJGTJqY/b3c8TN4VQLD
s+g7pgQgHPcQOQ4IlQABdEKFkmmJkwMM3uh4O/EtVkBBbkuogLaknSbCfzCX3XlQ
gNS+anDU6ZoMwXPKabt7/Z+QGf4BzcjyeJR0Uw+eKj3O6FtVEBXuJBAHLG1+ZTZ/
GpobWchVzrohaQ==
-----END CERTIFICATE-----
Generated at Sat May 10 07:33:20 2025 by rpki-client