Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
File: os1DAbKJXx2YqFDlic58BjxTn00.mft (raw, json)
Hash identifier: WwbCiGVUK2fQL8f/sZl+znbD7WBJwddSTe2h/IVMK/s=
Subject key identifier: 32:46:C6:82:01:8E:A0:0F:7D:3F:EE:98:08:6E:43:9D:5C:58:40:23
Authority key identifier: A2:CD:43:01:B2:89:5F:1D:98:A8:50:E5:89:CE:7C:06:3C:53:9F:4D
Certificate issuer: /CN=a2cd4301b2895f1d98a850e589ce7c063c539f4d
Certificate serial: 0196B7EC452501A2C53FAC95D7486E97B945
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
Manifest number: 1096
Signing time: Sat 10 May 2025 02:00:36 +0000
Manifest this update: Sat 10 May 2025 02:00:36 +0000
Manifest next update: Sun 11 May 2025 02:00:36 +0000
Files and hashes: 1: KAKz0xo2XXEBIDI7U4s2tUakP98.roa (hash: nzwZHLIuL4E1A+Jcxn7qeWA8mqGxoFVori2v9JbkLPE=)
2: os1DAbKJXx2YqFDlic58BjxTn00.crl (hash: atwnLR6leBGu3iVZx46p5MD3CfcVGp2Iq8THjE5Klzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:ec:45:25:01:a2:c5:3f:ac:95:d7:48:6e:97:b9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2cd4301b2895f1d98a850e589ce7c063c539f4d
Validity
Not Before: May 10 02:00:36 2025 GMT
Not After : May 11 02:00:36 2025 GMT
Subject: CN=3246c682018ea00f7d3fee98086e439d5c584023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c1:59:d4:aa:d2:43:78:a8:55:e5:05:78:85:
43:04:80:4a:1b:35:43:b3:47:40:71:f2:63:2b:58:
fc:41:04:78:90:f0:d1:5a:a3:33:37:ed:8a:92:5e:
63:db:61:a4:df:fe:ec:64:c8:b5:b7:0c:39:55:63:
9d:7d:54:a8:96:23:e3:8c:4c:36:f1:4a:e5:c0:36:
03:74:f3:c3:6e:b7:2b:51:63:88:9e:6f:10:b5:f2:
ae:5c:61:7b:ec:46:6b:40:3a:02:d7:f1:ca:8e:2d:
df:3a:4f:6c:80:b2:a4:29:82:0b:62:83:c3:91:a9:
e2:d0:98:52:87:14:40:c1:f1:34:c9:42:c6:21:a2:
a2:34:3c:0c:44:ca:95:e9:08:4c:91:0e:a3:66:a1:
a6:1e:71:86:81:a7:e6:9d:0e:7e:00:73:16:45:c0:
1b:64:68:f9:e1:95:f1:10:c7:15:44:92:0b:8b:94:
a8:b7:dc:a3:0d:0e:7d:ed:6c:32:3f:e3:ba:50:6e:
31:6c:57:c1:c2:fd:56:06:70:19:1d:51:a5:51:fa:
5f:02:c3:08:23:bd:87:84:9b:0c:09:86:e7:b1:51:
72:6f:45:1d:1d:b0:85:16:4c:2d:d6:3f:d8:4f:82:
9a:78:c0:de:fa:5e:de:df:d2:55:16:28:61:a8:cd:
44:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:46:C6:82:01:8E:A0:0F:7D:3F:EE:98:08:6E:43:9D:5C:58:40:23
X509v3 Authority Key Identifier:
keyid:A2:CD:43:01:B2:89:5F:1D:98:A8:50:E5:89:CE:7C:06:3C:53:9F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:a6:74:e2:c9:7c:88:87:db:19:c4:7c:a1:6a:47:6e:ad:ed:
ed:ea:90:71:87:2a:5e:b4:9d:21:10:3b:47:f1:48:10:14:b2:
89:df:cf:52:ba:98:9a:76:c9:61:ce:e7:6e:5b:c7:fb:86:bf:
93:53:9f:02:64:5a:6c:58:2c:a7:cc:d5:ec:fe:23:d8:7d:79:
d8:fb:92:24:5c:a4:3f:e3:c1:18:99:9d:01:15:41:7b:bb:4c:
52:c1:2b:c5:eb:dd:c0:b5:6c:3e:76:05:cd:97:28:64:11:ec:
b7:2b:f3:b2:f3:2e:8a:a7:2a:14:1f:d4:1c:22:11:0d:2f:26:
48:45:df:d3:0a:03:2f:15:69:77:0d:31:7d:02:2e:4e:06:50:
c7:bb:6a:d3:23:54:5b:78:01:4c:a0:77:0a:bf:92:d3:81:c6:
5a:7c:8a:cc:09:47:90:57:f0:d4:23:c7:7f:11:59:cc:64:7d:
08:ed:fc:32:12:cb:de:f7:3e:fb:e3:b0:d5:6f:3c:25:b4:4d:
67:4c:9d:c2:c7:86:f5:67:3a:dc:3a:89:e5:33:14:f3:a8:3e:
21:3b:ba:7d:87:51:f3:01:8d:9e:99:f3:23:f2:fa:25:a8:da:
ac:72:44:1a:b2:36:3d:16:fd:22:98:b2:b8:a3:a7:79:be:4f:
0c:8e:f9:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa37EUlAaLFP6yV10hul7lFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyY2Q0MzAxYjI4OTVmMWQ5OGE4NTBlNTg5Y2U3YzA2M2M1
MzlmNGQwHhcNMjUwNTEwMDIwMDM2WhcNMjUwNTExMDIwMDM2WjAzMTEwLwYDVQQD
EygzMjQ2YzY4MjAxOGVhMDBmN2QzZmVlOTgwODZlNDM5ZDVjNTg0MDIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscFZ1KrSQ3ioVeUFeIVDBIBKGzVD
s0dAcfJjK1j8QQR4kPDRWqMzN+2Kkl5j22Gk3/7sZMi1tww5VWOdfVSoliPjjEw2
8UrlwDYDdPPDbrcrUWOInm8QtfKuXGF77EZrQDoC1/HKji3fOk9sgLKkKYILYoPD
kani0JhShxRAwfE0yULGIaKiNDwMRMqV6QhMkQ6jZqGmHnGGgafmnQ5+AHMWRcAb
ZGj54ZXxEMcVRJILi5Sot9yjDQ597WwyP+O6UG4xbFfBwv1WBnAZHVGlUfpfAsMI
I72HhJsMCYbnsVFyb0UdHbCFFkwt1j/YT4KaeMDe+l7e39JVFihhqM1E+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDJGxoIBjqAPfT/umAhuQ51cWEAjMB8GA1UdIwQY
MBaAFKLNQwGyiV8dmKhQ5YnOfAY8U59NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3MxREFiS0pYeDJZcUZEbGljNThCanhUbjAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zODQ4NmMtOWRlMy00NGVmLWFiMjkt
NThmM2YzN2NjZGQ5LzEvb3MxREFiS0pYeDJZcUZEbGljNThCanhUbjAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8zODQ4NmMtOWRlMy00NGVmLWFiMjktNThmM2YzN2NjZGQ5
LzEvb3MxREFiS0pYeDJZcUZEbGljNThCanhUbjAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC6Z04sl8
iIfbGcR8oWpHbq3t7eqQcYcqXrSdIRA7R/FIEBSyid/PUrqYmnbJYc7nblvH+4a/
k1OfAmRabFgsp8zV7P4j2H152PuSJFykP+PBGJmdARVBe7tMUsErxevdwLVsPnYF
zZcoZBHstyvzsvMuiqcqFB/UHCIRDS8mSEXf0woDLxVpdw0xfQIuTgZQx7tq0yNU
W3gBTKB3Cr+S04HGWnyKzAlHkFfw1CPHfxFZzGR9CO38MhLL3vc+++Ow1W88JbRN
Z0ydwseG9Wc63DqJ5TMU86g+ITu6fYdR8wGNnpnzI/L6JajarHJEGrI2PRb9Ipiy
uKOneb5PDI75mA==
-----END CERTIFICATE-----
Generated at Sat May 10 12:32:40 2025 by rpki-client