Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: z3Kenw7VNmyg/DqDjQaz9avhx4D+oEtGiVneWo6ZRgU=
Subject key identifier: 41:3D:6B:3F:80:4A:FA:F8:1E:92:74:E5:6F:3D:CC:26:64:B0:7F:00
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 0196C34BAB37CD22C9918B23D9EB27DBCE89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 148F
Signing time: Mon 12 May 2025 07:00:38 +0000
Manifest this update: Mon 12 May 2025 07:00:38 +0000
Manifest next update: Tue 13 May 2025 07:00:38 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: 9b4SAmkHqbgWjz7bl/A7UZItxC0UoU1QXvLH+q4w0fk=)
2: I8hH4YeV3HM0yWrc52lfIOhYTt8.roa (hash: colmP8j9TQydvYGFc1+glmJgVJjDM5AxsV+6TerMW6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:ab:37:cd:22:c9:91:8b:23:d9:eb:27:db:ce:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: May 12 07:00:38 2025 GMT
Not After : May 13 07:00:38 2025 GMT
Subject: CN=413d6b3f804afaf81e9274e56f3dcc2664b07f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0f:78:26:5f:65:b8:d4:c5:71:3c:18:ef:36:
ee:cb:da:9f:22:6c:49:2d:59:5c:4b:23:8e:48:88:
6b:c4:e6:82:0d:45:da:53:11:ac:2d:37:1b:72:1a:
f8:b9:39:70:09:12:2b:6f:df:92:09:ac:cc:bc:c4:
ef:ea:24:5a:f6:a2:0a:33:62:a5:91:c1:85:73:f0:
6c:b1:f9:8d:bd:8b:25:75:5d:ba:6c:fa:4a:99:10:
1f:e2:d7:f9:8d:36:03:90:2b:73:89:00:bd:ed:20:
f7:13:ad:f3:a0:ef:8d:2d:e1:09:32:33:b4:cd:49:
0a:b7:47:70:1f:5e:9a:ce:f7:83:02:92:21:5c:ea:
5a:99:3f:a1:ea:45:1b:14:50:13:e5:16:c3:24:92:
d9:e8:d7:9d:4c:11:f4:16:1c:07:14:35:40:46:4b:
f8:ee:df:18:f9:fc:ed:2e:ca:6e:4f:bf:31:cb:69:
fd:9d:fb:06:f7:c9:7e:7c:01:f1:88:25:d8:c1:83:
a7:70:6d:19:9e:4e:73:4f:ba:2b:1c:a0:81:6c:bc:
c9:33:2a:c2:3c:92:49:28:c7:3e:75:28:e8:b3:d5:
ec:bd:b7:41:2f:c8:d1:cb:40:45:a1:94:f4:fb:64:
ff:a0:33:b4:c6:7d:a3:c5:70:c9:a3:3c:c0:dc:9d:
67:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:3D:6B:3F:80:4A:FA:F8:1E:92:74:E5:6F:3D:CC:26:64:B0:7F:00
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:04:8c:63:2c:e2:13:9c:9c:ca:29:6e:1c:b0:fd:db:39:f4:
e7:90:24:40:2a:a4:c8:06:8f:a8:fe:2a:fe:ef:a7:1a:97:e1:
c8:da:85:de:a9:9d:c2:90:36:10:1c:3b:2b:96:ff:c1:11:04:
47:48:d8:ae:12:1f:42:73:f9:7d:eb:21:c3:b3:8a:6b:fc:e4:
b2:22:05:26:5c:b5:27:4e:bf:da:85:db:35:c0:99:73:02:78:
5b:29:cb:b6:ab:b8:76:78:62:81:89:fb:2d:76:f4:15:df:7d:
d0:01:8f:3a:58:eb:e9:a5:51:db:60:87:99:6b:90:61:38:c3:
74:78:aa:00:ae:8e:5e:98:73:45:28:fb:6b:39:48:15:d5:ba:
7f:f5:bc:99:c5:ac:ba:ca:8a:4a:13:8a:ce:c9:9b:8b:c3:ff:
b7:db:72:10:8e:d5:28:c8:e5:1d:c6:35:11:6b:39:c9:87:4e:
f7:ee:14:91:27:d8:85:df:ef:56:2c:58:ac:83:56:be:b9:3f:
c9:7a:72:30:81:84:cf:04:80:97:d3:db:33:d9:e1:ad:57:bf:
b1:18:5e:be:55:6f:37:46:1a:88:ab:a7:23:fd:83:99:c5:8b:
6a:26:64:13:b9:f3:e5:f9:d4:83:1f:77:7f:ed:44:9b:f4:1b:
e1:09:a6:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbDS6s3zSLJkYsj2esn286JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwZTY1MzQ4ZGMxM2M4NTQ5OWM3Nzc0ZDE1NjYxNGMxMjAx
MThhYjUwHhcNMjUwNTEyMDcwMDM4WhcNMjUwNTEzMDcwMDM4WjAzMTEwLwYDVQQD
Eyg0MTNkNmIzZjgwNGFmYWY4MWU5Mjc0ZTU2ZjNkY2MyNjY0YjA3ZjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqg94Jl9luNTFcTwY7zbuy9qfImxJ
LVlcSyOOSIhrxOaCDUXaUxGsLTcbchr4uTlwCRIrb9+SCazMvMTv6iRa9qIKM2Kl
kcGFc/BssfmNvYsldV26bPpKmRAf4tf5jTYDkCtziQC97SD3E63zoO+NLeEJMjO0
zUkKt0dwH16azveDApIhXOpamT+h6kUbFFAT5RbDJJLZ6NedTBH0FhwHFDVARkv4
7t8Y+fztLspuT78xy2n9nfsG98l+fAHxiCXYwYOncG0Znk5zT7orHKCBbLzJMyrC
PJJJKMc+dSjos9XsvbdBL8jRy0BFoZT0+2T/oDO0xn2jxXDJozzA3J1nDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEE9az+ASvr4HpJ05W89zCZksH8AMB8GA1UdIwQY
MBaAFNDmU0jcE8hUmcd3TRVmFMEgEYq1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYt
MGRiMGVjMWU5NDVjLzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYtMGRiMGVjMWU5NDVj
LzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWwSMYyzi
E5ycyiluHLD92zn055AkQCqkyAaPqP4q/u+nGpfhyNqF3qmdwpA2EBw7K5b/wREE
R0jYrhIfQnP5feshw7OKa/zksiIFJly1J06/2oXbNcCZcwJ4WynLtqu4dnhigYn7
LXb0Fd990AGPOljr6aVR22CHmWuQYTjDdHiqAK6OXphzRSj7azlIFdW6f/W8mcWs
usqKShOKzsmbi8P/t9tyEI7VKMjlHcY1EWs5yYdO9+4UkSfYhd/vVixYrINWvrk/
yXpyMIGEzwSAl9PbM9nhrVe/sRhevlVvN0YaiKunI/2DmcWLaiZkE7nz5fnUgx93
f+1Em/Qb4Qmmtg==
-----END CERTIFICATE-----
Generated at Mon May 12 10:52:28 2025 by rpki-client