Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json)
Hash identifier: Y+CG6Nm5L0jJVPXzayfpcF2opP0V7un78ekFU/sErmY=
Subject key identifier: 65:FA:7E:29:79:69:DE:A6:A9:D4:5C:05:38:25:E0:19:F6:BD:4F:97
Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Certificate serial: 0196BB241BF227898B6C76F5E6E774EB1F68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
Manifest number: 0829
Signing time: Sat 10 May 2025 17:00:27 +0000
Manifest this update: Sat 10 May 2025 17:00:27 +0000
Manifest next update: Sun 11 May 2025 17:00:27 +0000
Files and hashes: 1: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: cP6HoDIX0HN2xQA5xF/U0rr8jfLXC3R42II1eanQD3U=)
2: vPivcilO-E_vThnuw1Jbeo7vl7Q.roa (hash: ue62obgrVIotq1vJM56av/nq50vzkGkDbEL5zd0kvpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 17:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:24:1b:f2:27:89:8b:6c:76:f5:e6:e7:74:eb:1f:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Validity
Not Before: May 10 17:00:27 2025 GMT
Not After : May 11 17:00:27 2025 GMT
Subject: CN=65fa7e297969dea6a9d45c053825e019f6bd4f97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cb:2a:ae:fd:e4:a4:b9:b4:df:d2:c7:d9:0d:
bc:ec:c5:67:92:74:98:94:9e:05:3f:fe:d7:cc:47:
3e:08:9d:d2:bc:27:f6:c5:e7:25:46:cd:ab:af:02:
12:84:1c:a6:e3:36:10:7b:8a:5f:18:05:89:d9:8f:
e4:bd:86:f3:98:cb:fb:2b:a1:ed:dc:bb:43:be:ef:
12:27:3c:ff:5d:37:72:fd:5c:e4:76:c5:3b:f9:85:
d6:26:79:fd:cc:cf:7d:62:32:c9:7f:3e:1c:f6:88:
39:4e:88:42:ae:67:20:57:8f:d7:f0:1a:2e:3e:46:
68:91:3c:1d:90:4c:c4:e9:24:06:b3:7e:70:03:4b:
61:c7:11:b8:48:96:1f:74:a0:cd:7f:80:15:91:90:
4a:7b:9f:5e:2e:51:8d:97:ef:49:a8:bb:94:83:40:
61:24:8f:ce:8b:d4:5a:a3:b6:83:18:d3:58:d9:de:
0d:60:36:c8:b4:89:86:0f:8a:03:1c:dd:48:f7:1a:
cf:76:d1:a6:48:16:01:b6:c4:eb:23:0a:7b:16:cd:
73:2c:08:30:a1:70:7c:3d:b3:9c:7e:0a:c1:db:23:
07:cc:03:3f:a6:b0:41:f9:93:31:e2:75:57:2f:f3:
92:0d:2f:40:69:67:e5:6b:ac:f5:7e:ef:d9:95:b4:
34:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:FA:7E:29:79:69:DE:A6:A9:D4:5C:05:38:25:E0:19:F6:BD:4F:97
X509v3 Authority Key Identifier:
keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:7d:7c:5e:40:b0:46:8c:ca:7f:74:63:6c:4b:d6:16:76:a3:
1e:b9:87:c9:52:9b:60:d1:83:3d:b7:46:d9:6d:06:7c:d3:ef:
22:41:fe:20:85:d3:c7:6f:20:1f:72:14:06:93:c7:60:da:96:
32:a2:f4:6f:20:fa:ab:11:54:93:3a:52:61:c9:7d:51:2e:ef:
7b:18:75:05:f4:fd:27:73:e3:ef:53:99:ed:43:90:61:92:a1:
8d:ca:e4:bc:aa:4f:d2:ec:b0:f7:5f:79:cb:a1:a5:5f:30:fa:
1c:b5:39:ff:2a:2d:fa:75:46:14:fe:0a:8e:6a:42:ce:ad:ba:
4d:67:4c:7e:ad:9c:f5:f1:a6:a9:f0:ea:5f:d1:31:46:37:44:
a2:a2:21:68:53:9e:e1:28:92:8d:05:e8:b4:c5:dd:c3:be:a8:
d1:9e:5e:19:48:f8:86:70:e1:a3:b4:1d:ce:27:25:1d:3d:6e:
96:f2:2e:f8:ab:d8:23:76:0c:c5:b6:f1:89:3b:70:5e:63:2d:
20:2e:f6:8e:83:f8:4a:40:ab:01:44:3d:a5:3a:1f:c6:ad:2d:
34:1c:1c:eb:d8:6e:04:d9:33:16:ed:a0:67:01:a1:a3:d1:5d:
ef:a7:13:9e:ea:2d:ab:03:9f:34:f5:7d:62:98:01:ee:15:70:
e9:9f:f3:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa7JBvyJ4mLbHb15ud06x9oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYWFlNTg1MGEzNmRiMjg4MjJhNmMxYWZjNWZmYWNmZjAw
N2VlZjIwHhcNMjUwNTEwMTcwMDI3WhcNMjUwNTExMTcwMDI3WjAzMTEwLwYDVQQD
Eyg2NWZhN2UyOTc5NjlkZWE2YTlkNDVjMDUzODI1ZTAxOWY2YmQ0Zjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8sqrv3kpLm039LH2Q287MVnknSY
lJ4FP/7XzEc+CJ3SvCf2xeclRs2rrwIShBym4zYQe4pfGAWJ2Y/kvYbzmMv7K6Ht
3LtDvu8SJzz/XTdy/VzkdsU7+YXWJnn9zM99YjLJfz4c9og5TohCrmcgV4/X8Bou
PkZokTwdkEzE6SQGs35wA0thxxG4SJYfdKDNf4AVkZBKe59eLlGNl+9JqLuUg0Bh
JI/Oi9Rao7aDGNNY2d4NYDbItImGD4oDHN1I9xrPdtGmSBYBtsTrIwp7Fs1zLAgw
oXB8PbOcfgrB2yMHzAM/prBB+ZMx4nVXL/OSDS9AaWfla6z1fu/ZlbQ0ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGX6fil5ad6mqdRcBTgl4Bn2vU+XMB8GA1UdIwQY
MBaAFKCq5YUKNtsogipsGvxf+s/wB+7yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0tybGhRbzIyeWlDS213YV9GXzZ6X0FIN3ZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS83MjBlNjctZDk0Yy00ZmY5LWJhODIt
MjgxOWU0YzVmMTIzLzEvb0tybGhRbzIyeWlDS213YV9GXzZ6X0FIN3ZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS83MjBlNjctZDk0Yy00ZmY5LWJhODItMjgxOWU0YzVmMTIz
LzEvb0tybGhRbzIyeWlDS213YV9GXzZ6X0FIN3ZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApX18XkCw
RozKf3RjbEvWFnajHrmHyVKbYNGDPbdG2W0GfNPvIkH+IIXTx28gH3IUBpPHYNqW
MqL0byD6qxFUkzpSYcl9US7vexh1BfT9J3Pj71OZ7UOQYZKhjcrkvKpP0uyw9195
y6GlXzD6HLU5/yot+nVGFP4KjmpCzq26TWdMfq2c9fGmqfDqX9ExRjdEoqIhaFOe
4SiSjQXotMXdw76o0Z5eGUj4hnDho7QdziclHT1ulvIu+KvYI3YMxbbxiTtwXmMt
IC72joP4SkCrAUQ9pTofxq0tNBwc69huBNkzFu2gZwGho9Fd76cTnuotqwOfNPV9
YpgB7hVw6Z/zNA==
-----END CERTIFICATE-----
Generated at Sun May 11 00:48:13 2025 by rpki-client