Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
File: dOEz6h5A_BPgdOMncQpTRKlgtcA.mft (raw, json)
Hash identifier: DkjqieUZILA/vAOCh+mNhQrmP53OaRQdiS2uK1qcl3s=
Subject key identifier: 52:D5:9A:0A:01:78:0D:F0:39:8C:2C:47:F0:E9:ED:BA:09:12:C2:C7
Authority key identifier: 74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
Certificate issuer: /CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Certificate serial: 0196C796B6824D0B6C4A5A811900635D4FA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
Manifest number: 0BE8
Signing time: Tue 13 May 2025 03:01:05 +0000
Manifest this update: Tue 13 May 2025 03:01:05 +0000
Manifest next update: Wed 14 May 2025 03:01:05 +0000
Files and hashes: 1: XXhZSJTw-3dSmsRY9bvXQqHBaIs.roa (hash: mmW0AxSNYmhmTbAA4XApc0Tjpzzlw3yy/NM/Jy4hxuI=)
2: dOEz6h5A_BPgdOMncQpTRKlgtcA.crl (hash: 3d8SbNQoAlIYdB6epWWAquXHpvNb2nEzIkHNMS6/Cdk=)
3: lQpPjj9gpOYnRRV52S0ec3Spick.roa (hash: 2/R15nQqw+pyTSeVtt80lTdeScEa1kOW3xe+Ueb0Hdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:96:b6:82:4d:0b:6c:4a:5a:81:19:00:63:5d:4f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Validity
Not Before: May 13 03:01:05 2025 GMT
Not After : May 14 03:01:05 2025 GMT
Subject: CN=52d59a0a01780df0398c2c47f0e9edba0912c2c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2c:c5:18:4b:7c:f9:73:c0:ad:55:6e:6f:64:
4c:33:3c:6f:c6:0d:7a:7b:d4:0d:4b:eb:7d:46:d1:
e5:c1:e6:6b:06:fd:b5:f0:e2:52:d4:db:88:96:ac:
8d:85:fe:b4:87:35:11:03:70:49:e7:e5:7f:c7:a7:
67:36:21:09:7a:22:49:3d:f7:c6:dc:6b:ae:45:a4:
f4:c7:cc:e0:31:69:47:55:ce:db:a2:55:4e:0c:b0:
1c:46:94:e9:a5:30:a5:e3:5c:e7:1e:05:24:ab:42:
ce:a6:65:41:44:93:3d:c6:09:11:0e:02:f0:66:06:
1e:ba:da:93:de:cb:f7:d5:5e:df:b3:06:af:42:5e:
9e:bf:81:2e:cf:d7:4d:fa:09:37:1c:38:f1:d6:fd:
49:2d:d2:61:2d:a1:85:f5:8b:17:72:4f:a4:bc:05:
46:c9:a7:b6:7c:35:c6:a9:ad:31:53:72:7b:3a:f9:
76:cb:6c:fa:f4:08:9f:4c:75:be:5b:21:42:84:1e:
07:de:3d:dc:45:d0:ad:a7:c1:ac:9f:19:5e:9d:9a:
ca:38:88:7d:dd:d1:04:ad:82:21:59:b2:6c:ca:ec:
cf:e1:6e:74:fd:fc:54:1b:fa:e6:fe:88:2d:36:47:
54:48:f5:28:0a:40:9e:e9:5a:0c:3b:28:ce:22:4c:
e5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D5:9A:0A:01:78:0D:F0:39:8C:2C:47:F0:E9:ED:BA:09:12:C2:C7
X509v3 Authority Key Identifier:
keyid:74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:19:87:15:ee:2f:eb:f4:78:04:f9:9b:05:34:e9:e5:1c:37:
ff:7c:4e:49:9c:84:60:8c:f8:42:8a:ca:c8:65:2f:84:7e:80:
b5:cd:86:3c:76:22:d7:51:d8:53:f2:3b:c7:f5:5e:ea:ac:8b:
ae:67:bf:11:22:f1:a3:1d:9c:73:b8:87:99:b4:08:3e:ee:15:
9e:e1:eb:c3:22:fe:79:1a:84:a0:04:f4:59:fe:23:a5:1b:c2:
e1:16:bc:a8:4b:15:08:6d:53:41:dc:86:42:a8:2b:ed:43:80:
f3:aa:52:df:c8:0f:08:b2:6e:ea:01:e5:8b:7f:c1:31:c4:5f:
57:d0:d8:45:76:2e:17:be:cf:7c:bc:df:1d:40:82:5d:a7:b1:
91:ee:42:b7:f3:44:c9:9a:a6:0d:08:63:40:0a:ed:79:22:57:
df:2a:cf:42:ca:63:17:dc:75:ac:de:17:34:5f:c4:97:b1:76:
8a:b8:f2:c5:20:22:98:7a:63:ee:65:46:01:98:9a:d6:0e:34:
1a:2b:64:22:80:c7:48:1f:fe:55:63:dc:60:d4:f4:a5:6b:4e:
47:4f:2a:05:52:23:5d:39:32:8f:19:1f:9d:41:40:b4:e2:c2:
c5:da:d0:9c:b0:da:f1:61:5d:44:15:0f:64:58:5c:0d:58:15:
e8:47:de:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbHlraCTQtsSlqBGQBjXU+mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0ZTEzM2VhMWU0MGZjMTNlMDc0ZTMyNzcxMGE1MzQ0YTk2
MGI1YzAwHhcNMjUwNTEzMDMwMTA1WhcNMjUwNTE0MDMwMTA1WjAzMTEwLwYDVQQD
Eyg1MmQ1OWEwYTAxNzgwZGYwMzk4YzJjNDdmMGU5ZWRiYTA5MTJjMmM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSzFGEt8+XPArVVub2RMMzxvxg16
e9QNS+t9RtHlweZrBv218OJS1NuIlqyNhf60hzURA3BJ5+V/x6dnNiEJeiJJPffG
3GuuRaT0x8zgMWlHVc7bolVODLAcRpTppTCl41znHgUkq0LOpmVBRJM9xgkRDgLw
ZgYeutqT3sv31V7fswavQl6ev4Euz9dN+gk3HDjx1v1JLdJhLaGF9YsXck+kvAVG
yae2fDXGqa0xU3J7Ovl2y2z69AifTHW+WyFChB4H3j3cRdCtp8GsnxlenZrKOIh9
3dEErYIhWbJsyuzP4W50/fxUG/rm/ogtNkdUSPUoCkCe6VoMOyjOIkzlKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFLVmgoBeA3wOYwsR/Dp7boJEsLHMB8GA1UdIwQY
MBaAFHThM+oeQPwT4HTjJ3EKU0SpYLXAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZE9FejZoNUFfQlBnZE9NbmNRcFRSS2xndGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8xZjU1ODctY2I5Mi00OTE3LThjZjMt
MmNiOWUyMTcyZjk3LzEvZE9FejZoNUFfQlBnZE9NbmNRcFRSS2xndGNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8xZjU1ODctY2I5Mi00OTE3LThjZjMtMmNiOWUyMTcyZjk3
LzEvZE9FejZoNUFfQlBnZE9NbmNRcFRSS2xndGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVhmHFe4v
6/R4BPmbBTTp5Rw3/3xOSZyEYIz4QorKyGUvhH6Atc2GPHYi11HYU/I7x/Ve6qyL
rme/ESLxox2cc7iHmbQIPu4VnuHrwyL+eRqEoAT0Wf4jpRvC4Ra8qEsVCG1TQdyG
Qqgr7UOA86pS38gPCLJu6gHli3/BMcRfV9DYRXYuF77PfLzfHUCCXaexke5Ct/NE
yZqmDQhjQArteSJX3yrPQspjF9x1rN4XNF/El7F2irjyxSAimHpj7mVGAZia1g40
GitkIoDHSB/+VWPcYNT0pWtOR08qBVIjXTkyjxkfnUFAtOLCxdrQnLDa8WFdRBUP
ZFhcDVgV6EfeUg==
-----END CERTIFICATE-----
Generated at Tue May 13 08:29:29 2025 by rpki-client