Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
File: oaLRWp2N_ezej-awwYBNCp7i5ig.mft (raw, json)
Hash identifier: 44l197joaSpHGJdlqGoXHClWM8vxWoRwAU1rQShs8Fo=
Subject key identifier: 88:74:89:66:4C:EC:92:80:7D:01:B7:08:CC:89:72:9B:97:DA:1A:24
Authority key identifier: A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
Certificate issuer: /CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Certificate serial: 0196D81C3EBE176381AB7ACAD76B7B3106C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
Manifest number: 0FDC
Signing time: Fri 16 May 2025 08:00:51 +0000
Manifest this update: Fri 16 May 2025 08:00:51 +0000
Manifest next update: Sat 17 May 2025 08:00:51 +0000
Files and hashes: 1: g8PGSyPYHcwtTKtN52pgkwL2VLw.roa (hash: d/0R1T8TL/elS7S9V2dPYN7wq40xN73ObdYQKEckxT4=)
2: oaLRWp2N_ezej-awwYBNCp7i5ig.crl (hash: nfpUvIjAwX5/cDR+eqgzRhkc2AdKOsymA9twGhcjAog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d8:1c:3e:be:17:63:81:ab:7a:ca:d7:6b:7b:31:06:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Validity
Not Before: May 16 08:00:51 2025 GMT
Not After : May 17 08:00:51 2025 GMT
Subject: CN=887489664cec92807d01b708cc89729b97da1a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e5:53:94:88:b4:0f:d8:b0:91:1e:24:62:fc:
52:69:60:dd:91:50:0c:80:43:82:f4:66:ce:e7:2a:
36:ef:60:3e:ac:3f:cd:9c:08:b9:d1:63:50:f8:35:
77:95:19:82:4b:83:b5:af:da:60:06:76:68:10:68:
84:c1:f6:fd:91:f7:0a:7a:60:1c:a2:08:4d:a5:21:
0f:3d:a6:f7:c0:40:6d:ed:8d:2d:26:1e:7b:20:45:
fa:c8:3f:55:50:00:ee:a3:62:20:d9:5c:a3:70:f8:
92:87:7c:8c:5c:93:7e:0a:ec:7f:7a:9f:99:54:93:
0d:ca:18:88:09:25:4f:0a:ee:f9:a7:b1:7d:88:0f:
1c:ac:d8:30:22:72:c4:43:1a:a7:66:26:c2:91:f9:
a8:60:87:a0:32:49:05:9c:fb:a3:b9:ca:cd:bc:b5:
ae:45:db:e9:6d:ce:86:ac:13:fd:71:03:81:54:66:
98:26:12:51:0c:27:15:0c:5a:b9:42:08:f3:37:3f:
69:19:1b:6f:2d:ee:84:5c:61:b5:a3:8c:ea:c3:f0:
9b:0a:fd:9e:29:b6:2e:f5:23:f0:1d:13:e4:b1:b5:
94:3a:7c:4a:d1:7a:94:0c:a6:1a:49:df:46:ba:b2:
1d:de:6a:a9:10:a1:3f:57:54:f1:8b:25:36:95:fd:
8c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:74:89:66:4C:EC:92:80:7D:01:B7:08:CC:89:72:9B:97:DA:1A:24
X509v3 Authority Key Identifier:
keyid:A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:4d:60:fc:1f:b4:99:ea:b3:57:16:e5:f6:02:69:df:16:02:
f1:3d:23:b0:96:ff:4d:85:59:76:c0:9c:57:e9:ec:88:48:b3:
6a:96:46:3e:95:c4:72:ba:56:a4:df:3d:88:9b:39:79:48:5c:
37:8f:9a:ab:b3:62:59:e3:1d:7a:3d:2a:09:74:22:72:22:79:
50:7b:f2:db:16:98:25:a1:5a:85:14:14:21:03:02:fa:f2:ab:
f3:1b:f9:f8:4b:5f:41:73:f0:33:2f:34:d8:b9:31:a6:6d:d5:
85:1c:33:59:3d:49:a8:f5:12:9d:63:a6:e2:86:62:28:d4:3a:
82:9e:f8:95:fb:0d:47:20:33:63:cc:af:b8:2f:2c:fb:0c:9c:
ee:67:ff:c4:c5:7b:34:ac:4a:ba:af:d6:4e:b4:7b:fe:b9:fc:
aa:aa:a3:f3:2d:04:cd:ef:06:7a:3a:3d:3f:e2:47:24:de:9c:
ff:df:f1:d4:93:8a:74:ad:f0:b1:9a:cf:d5:fa:9a:9f:e7:db:
fb:4d:d0:b7:8e:cf:cb:08:43:f0:26:38:21:db:f8:00:d3:09:
ea:6c:27:b5:bb:f8:3d:c8:9e:99:19:47:15:1e:0e:90:e7:1f:
18:1a:94:fd:bd:af:e2:1a:0c:c1:1e:1a:46:fe:d7:ff:4e:de:
77:64:31:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbYHD6+F2OBq3rK12t7MQbDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExYTJkMTVhOWQ4ZGZkZWNkZThmZTZiMGMxODA0ZDBhOWVl
MmU2MjgwHhcNMjUwNTE2MDgwMDUxWhcNMjUwNTE3MDgwMDUxWjAzMTEwLwYDVQQD
Eyg4ODc0ODk2NjRjZWM5MjgwN2QwMWI3MDhjYzg5NzI5Yjk3ZGExYTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseVTlIi0D9iwkR4kYvxSaWDdkVAM
gEOC9GbO5yo272A+rD/NnAi50WNQ+DV3lRmCS4O1r9pgBnZoEGiEwfb9kfcKemAc
oghNpSEPPab3wEBt7Y0tJh57IEX6yD9VUADuo2Ig2VyjcPiSh3yMXJN+Cux/ep+Z
VJMNyhiICSVPCu75p7F9iA8crNgwInLEQxqnZibCkfmoYIegMkkFnPujucrNvLWu
Rdvpbc6GrBP9cQOBVGaYJhJRDCcVDFq5QgjzNz9pGRtvLe6EXGG1o4zqw/CbCv2e
KbYu9SPwHRPksbWUOnxK0XqUDKYaSd9GurId3mqpEKE/V1TxiyU2lf2McwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIh0iWZM7JKAfQG3CMyJcpuX2hokMB8GA1UdIwQY
MBaAFKGi0Vqdjf3s3o/msMGATQqe4uYoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2FMUldwMk5fZXplai1hd3dZQk5DcDdpNWlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9iNjQwYTYtN2VjZC00MjBiLTg2ZWQt
ODZkMTk0YWU4YTcxLzEvb2FMUldwMk5fZXplai1hd3dZQk5DcDdpNWlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9iNjQwYTYtN2VjZC00MjBiLTg2ZWQtODZkMTk0YWU4YTcx
LzEvb2FMUldwMk5fZXplai1hd3dZQk5DcDdpNWlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJk1g/B+0
meqzVxbl9gJp3xYC8T0jsJb/TYVZdsCcV+nsiEizapZGPpXEcrpWpN89iJs5eUhc
N4+aq7NiWeMdej0qCXQiciJ5UHvy2xaYJaFahRQUIQMC+vKr8xv5+EtfQXPwMy80
2Lkxpm3VhRwzWT1JqPUSnWOm4oZiKNQ6gp74lfsNRyAzY8yvuC8s+wyc7mf/xMV7
NKxKuq/WTrR7/rn8qqqj8y0Eze8Gejo9P+JHJN6c/9/x1JOKdK3wsZrP1fqan+fb
+03Qt47PywhD8CY4Idv4ANMJ6mwntbv4PciemRlHFR4OkOcfGBqU/b2v4hoMwR4a
Rv7X/07ed2QxIQ==
-----END CERTIFICATE-----
Generated at Fri May 16 17:45:13 2025 by rpki-client