Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
File: OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft (raw, json)
Hash identifier: u7gnU21RnmIG0rfawg2Qem1u7gLrVQHH3no/mkM+7NY=
Subject key identifier: A2:07:78:F0:6C:DB:31:2B:8D:69:7B:A8:0F:14:80:1F:C0:09:13:FB
Authority key identifier: 38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
Certificate issuer: /CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Certificate serial: 01969F75E10A71195D60D4D19853343E4102
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
Manifest number: 0A6B
Signing time: Mon 05 May 2025 08:00:24 +0000
Manifest this update: Mon 05 May 2025 08:00:24 +0000
Manifest next update: Tue 06 May 2025 08:00:24 +0000
Files and hashes: 1: KI_OzKHWNWDApgfZA8fhKRHWYNw.roa (hash: KgInzOYraW/0zKTqbj1OirpA4x6saReBh+LdfK4ZXdI=)
2: OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl (hash: 6fFXbFIyZ4qoYRtdX3i7YRvSy2TlEDdC4fvfGcwZhyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:75:e1:0a:71:19:5d:60:d4:d1:98:53:34:3e:41:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Validity
Not Before: May 5 08:00:24 2025 GMT
Not After : May 6 08:00:24 2025 GMT
Subject: CN=a20778f06cdb312b8d697ba80f14801fc00913fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ba:cb:da:22:77:1f:5b:97:2f:d3:2f:c7:42:
b5:a0:8b:6b:51:dd:cf:83:36:b6:3d:1e:ce:9c:44:
64:e2:e7:4a:82:0c:fc:34:f9:bc:c5:f8:5f:62:56:
8a:1b:3a:55:66:a4:db:96:dd:30:61:38:10:e6:86:
c4:63:96:f0:d8:fd:a4:e2:1f:66:31:25:eb:f1:19:
31:ae:8e:7c:00:f0:bb:c0:b5:56:31:a6:f6:64:eb:
90:22:40:bf:38:89:e2:d5:8a:0a:db:7f:a0:dd:ba:
c8:99:15:f0:3d:33:74:37:61:aa:f0:8c:ae:47:92:
7b:ea:fd:ba:bf:bb:6f:40:ef:14:db:ef:ae:4e:1c:
da:81:12:f3:62:a4:c3:79:b0:8a:48:e4:c7:89:7e:
b7:41:98:aa:fc:81:8c:d8:fc:39:b8:1f:b1:fd:e3:
23:c4:f0:7e:ce:14:40:0a:dd:d5:4d:3c:56:48:f9:
9e:99:b2:14:8c:7d:ef:d4:79:44:33:46:2f:b0:bc:
2c:9d:c4:7e:82:a8:30:c9:23:88:de:cb:6a:5a:d6:
2d:a3:60:3b:71:73:dc:06:fd:8c:0c:8a:bb:ea:1f:
14:d9:8b:9c:d8:e6:cf:54:27:7f:4e:87:cc:b2:d6:
0d:fb:a4:05:a8:65:59:69:c2:82:e7:8a:03:4d:c2:
2c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:07:78:F0:6C:DB:31:2B:8D:69:7B:A8:0F:14:80:1F:C0:09:13:FB
X509v3 Authority Key Identifier:
keyid:38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:32:7f:99:87:38:d7:b2:35:4d:52:18:00:17:62:4c:57:3e:
4d:df:22:80:31:1a:b6:63:b7:8f:5e:1e:29:53:e4:2b:08:9c:
0d:49:de:b6:c5:e2:28:df:39:73:41:89:17:df:db:54:bb:bd:
c0:15:17:65:d2:13:58:bc:31:0d:ad:c1:2a:ad:8a:7e:92:95:
25:04:08:fe:6b:3a:89:1a:b2:4f:36:32:28:ef:2d:ff:d7:c9:
ea:d7:23:59:3f:0b:38:33:5a:da:55:b4:04:6d:24:7b:d5:f3:
68:d4:a3:44:cc:e4:8d:d0:58:59:19:8d:8e:17:50:c5:66:df:
f3:64:04:79:65:da:6f:4c:ad:99:7d:9a:6c:92:02:1c:ee:47:
b9:c9:e4:e7:0f:98:a0:6b:f2:2b:a0:67:6c:c4:7b:c9:24:c6:
1d:9f:ae:71:ca:2d:83:5a:80:41:0f:3e:e3:ce:15:66:7e:c7:
72:83:f6:8d:c7:32:95:6d:e2:a1:79:1c:25:d5:be:87:14:11:
2b:83:b6:78:79:b4:ea:de:08:f6:a7:40:33:54:84:c4:3d:79:
6e:03:3e:59:bc:be:af:46:ae:d1:58:06:89:55:cd:5f:a5:e7:
fe:3f:a4:21:76:dc:88:98:ac:6e:09:cc:f0:37:ce:a2:dc:66:
3a:f0:16:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZafdeEKcRldYNTRmFM0PkECMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NWNmNDkzOWJlZWVhZWFmNDQwOWMyODQwZWIzNDRjYWIw
ODUwZTAwHhcNMjUwNTA1MDgwMDI0WhcNMjUwNTA2MDgwMDI0WjAzMTEwLwYDVQQD
EyhhMjA3NzhmMDZjZGIzMTJiOGQ2OTdiYTgwZjE0ODAxZmMwMDkxM2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLrL2iJ3H1uXL9Mvx0K1oItrUd3P
gza2PR7OnERk4udKggz8NPm8xfhfYlaKGzpVZqTblt0wYTgQ5obEY5bw2P2k4h9m
MSXr8Rkxro58APC7wLVWMab2ZOuQIkC/OIni1YoK23+g3brImRXwPTN0N2Gq8Iyu
R5J76v26v7tvQO8U2++uThzagRLzYqTDebCKSOTHiX63QZiq/IGM2Pw5uB+x/eMj
xPB+zhRACt3VTTxWSPmembIUjH3v1HlEM0YvsLwsncR+gqgwySOI3stqWtYto2A7
cXPcBv2MDIq76h8U2Yuc2ObPVCd/TofMstYN+6QFqGVZacKC54oDTcIshwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKIHePBs2zErjWl7qA8UgB/ACRP7MB8GA1UdIwQY
MBaAFDhc9JOb7urq9ECcKEDrNEyrCFDgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQt
N2I3NjE1ZmYwZTk2LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQtN2I3NjE1ZmYwZTk2
LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARjJ/mYc4
17I1TVIYABdiTFc+Td8igDEatmO3j14eKVPkKwicDUnetsXiKN85c0GJF9/bVLu9
wBUXZdITWLwxDa3BKq2KfpKVJQQI/ms6iRqyTzYyKO8t/9fJ6tcjWT8LODNa2lW0
BG0ke9XzaNSjRMzkjdBYWRmNjhdQxWbf82QEeWXab0ytmX2abJICHO5Hucnk5w+Y
oGvyK6BnbMR7ySTGHZ+uccotg1qAQQ8+484VZn7HcoP2jccylW3ioXkcJdW+hxQR
K4O2eHm06t4I9qdAM1SExD15bgM+Wby+r0au0VgGiVXNX6Xn/j+kIXbciJisbgnM
8DfOotxmOvAW+Q==
-----END CERTIFICATE-----
Generated at Mon May 5 10:09:58 2025 by rpki-client