Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: gb01D6tFFhBmpAE6ZKbdO0ypK6cDWw+15jzq6clNJB0=
Subject key identifier: ED:DA:BD:42:1C:A2:1A:E4:22:60:86:E4:3D:CB:37:8F:01:96:53:4D
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 0196C53A2983EFC489FCC30B8371FC7923F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 09C9
Signing time: Mon 12 May 2025 16:00:45 +0000
Manifest this update: Mon 12 May 2025 16:00:45 +0000
Manifest next update: Tue 13 May 2025 16:00:45 +0000
Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: 6iCKWVXTtoWBbEJkyAn0cs0G0oobUErkHWjMa+XPLwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:29:83:ef:c4:89:fc:c3:0b:83:71:fc:79:23:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: May 12 16:00:45 2025 GMT
Not After : May 13 16:00:45 2025 GMT
Subject: CN=eddabd421ca21ae4226086e43dcb378f0196534d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8d:88:0e:dd:25:50:80:26:ea:59:35:fb:c2:
69:9b:dd:f6:4c:61:31:8e:af:42:7f:b8:8e:3c:70:
f0:7b:97:fd:24:b8:30:9d:6d:12:3b:40:db:93:70:
b6:04:a9:6e:90:ed:5a:b9:fb:19:05:fc:31:1f:76:
58:e7:70:b9:b2:9c:dc:90:54:69:84:3c:d4:00:26:
0f:0d:a9:38:2f:be:aa:25:18:00:48:66:a2:cb:f7:
7a:a5:79:69:9b:c8:24:fc:12:47:ed:ba:ca:be:3e:
9d:db:dc:ff:68:44:02:6f:e6:b1:49:28:e4:a9:16:
70:4f:1d:44:7c:af:73:9f:e5:62:10:94:80:87:b1:
dd:d4:34:ef:f5:87:b8:ab:b7:ac:ac:ae:e7:6f:13:
a9:47:07:ed:99:c2:68:0e:2d:01:2c:6b:68:f6:86:
4f:67:79:69:9d:40:6c:12:7f:ef:3a:14:b3:d9:e6:
83:9f:cb:e5:96:3c:18:6e:29:a9:7e:30:ae:b2:ce:
c8:72:c7:4f:c6:f2:4d:0a:82:07:5b:61:d5:8a:e2:
df:0d:d8:c9:7a:3f:c0:3a:05:02:65:27:f4:91:88:
88:d5:a1:ce:af:aa:31:36:b6:1b:52:89:93:e1:1e:
06:1e:91:c6:8e:73:13:a0:72:9d:54:a3:ce:9c:a9:
64:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:DA:BD:42:1C:A2:1A:E4:22:60:86:E4:3D:CB:37:8F:01:96:53:4D
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:9b:3a:d3:20:93:ff:b0:10:2e:1f:31:4a:8a:80:e1:5c:ff:
de:31:45:87:e1:ea:d9:fd:f7:d1:4f:0e:3d:e2:24:c9:4f:ba:
4e:a3:82:93:b2:57:0a:d7:48:97:d1:92:d5:02:09:94:c4:02:
dd:21:0f:ea:c2:ab:a3:26:54:18:9a:17:89:86:53:78:79:b6:
dd:5b:c3:87:42:71:aa:da:c8:90:4c:d1:af:23:e9:c7:18:b9:
d5:d9:f2:6b:37:ec:8f:84:a3:27:0a:2d:21:e0:5e:10:aa:c8:
bf:00:b0:cf:49:6b:44:63:af:9a:b4:7f:d8:be:78:1e:7a:9b:
38:dd:25:b9:7a:1b:25:26:b7:87:93:6d:3a:c1:93:7d:60:08:
d1:92:a9:58:7e:46:38:53:f7:20:31:9e:cc:56:ac:7f:da:10:
3d:b2:77:15:b7:95:38:28:bd:b4:6e:09:07:55:cc:27:02:f2:
e4:84:7b:48:5f:96:59:94:4c:d1:2e:52:cf:2e:6a:92:b7:8d:
da:70:63:6a:e8:20:19:8d:83:d5:5c:0b:13:65:e5:d9:d4:02:
64:6a:40:4a:29:ca:7e:05:22:4d:00:b2:d1:c0:26:6b:bb:ef:
ce:17:af:ed:42:4f:3d:52:f0:f7:5f:0e:33:a8:f8:38:21:23:
25:97:80:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbFOimD78SJ/MMLg3H8eSP3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExODZhNzZhMTg5OWRiZjkwMjllMWFlZmQ5MDUxNzdiYjA5
ZDM2OGQwHhcNMjUwNTEyMTYwMDQ1WhcNMjUwNTEzMTYwMDQ1WjAzMTEwLwYDVQQD
EyhlZGRhYmQ0MjFjYTIxYWU0MjI2MDg2ZTQzZGNiMzc4ZjAxOTY1MzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlI2IDt0lUIAm6lk1+8Jpm932TGEx
jq9Cf7iOPHDwe5f9JLgwnW0SO0Dbk3C2BKlukO1aufsZBfwxH3ZY53C5spzckFRp
hDzUACYPDak4L76qJRgASGaiy/d6pXlpm8gk/BJH7brKvj6d29z/aEQCb+axSSjk
qRZwTx1EfK9zn+ViEJSAh7Hd1DTv9Ye4q7esrK7nbxOpRwftmcJoDi0BLGto9oZP
Z3lpnUBsEn/vOhSz2eaDn8vlljwYbimpfjCuss7IcsdPxvJNCoIHW2HViuLfDdjJ
ej/AOgUCZSf0kYiI1aHOr6oxNrYbUomT4R4GHpHGjnMToHKdVKPOnKlkFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO3avUIcohrkImCG5D3LN48BllNNMB8GA1UdIwQY
MBaAFKGGp2oYmdv5Ap4a79kFF3uwnTaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEt
MzEyZTViNDkxMTQ2LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEtMzEyZTViNDkxMTQ2
LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAips60yCT
/7AQLh8xSoqA4Vz/3jFFh+Hq2f330U8OPeIkyU+6TqOCk7JXCtdIl9GS1QIJlMQC
3SEP6sKroyZUGJoXiYZTeHm23VvDh0JxqtrIkEzRryPpxxi51dnyazfsj4SjJwot
IeBeEKrIvwCwz0lrRGOvmrR/2L54HnqbON0luXobJSa3h5NtOsGTfWAI0ZKpWH5G
OFP3IDGezFasf9oQPbJ3FbeVOCi9tG4JB1XMJwLy5IR7SF+WWZRM0S5Szy5qkreN
2nBjauggGY2D1VwLE2Xl2dQCZGpASinKfgUiTQCy0cAma7vvzhev7UJPPVLw918O
M6j4OCEjJZeATQ==
-----END CERTIFICATE-----
Generated at Mon May 12 22:00:34 2025 by rpki-client