Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: PIIzrgBjXrldrBxlKNh4hUta/czdUWQmMJUXbBXABkc=
Subject key identifier: 39:54:B3:6B:E7:4D:26:38:BA:1A:F5:8A:63:FC:B9:E4:BF:22:FA:0B
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 0196BF6F8219DE1B0AAC65FEB7A49DF49098
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0B99
Signing time: Sun 11 May 2025 13:01:17 +0000
Manifest this update: Sun 11 May 2025 13:01:17 +0000
Manifest next update: Mon 12 May 2025 13:01:17 +0000
Files and hashes: 1: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: OyWkS3K41MDr18fEyLSOr/bpJfqqE2vs91qe0Q+0eFo=)
2: RNk_0Bt2Bdlaf0Pdd2eUPaMyW8E.roa (hash: m6J+0888VMRpST0J5iXwVh9t9K8LOLn/EV2xZ10pPjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6f:82:19:de:1b:0a:ac:65:fe:b7:a4:9d:f4:90:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: May 11 13:01:17 2025 GMT
Not After : May 12 13:01:17 2025 GMT
Subject: CN=3954b36be74d2638ba1af58a63fcb9e4bf22fa0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b5:fb:2f:44:cf:e6:66:a6:ae:52:be:9e:84:
2c:ee:5a:7b:08:c7:c2:8d:79:0e:f8:90:3b:a5:61:
a8:86:d6:ac:2e:31:42:3f:1e:dc:ee:ff:3d:be:98:
18:f4:4c:bd:17:45:bd:b1:d9:f1:06:4b:74:17:a8:
e3:67:52:d4:aa:61:e0:70:e3:d2:db:6c:11:09:32:
7a:c4:53:e6:55:0f:5b:ef:d5:06:47:26:dc:92:d5:
86:7c:2e:e0:58:18:00:d5:d8:67:55:4f:ae:69:ca:
7c:ae:80:71:f9:b8:3a:1d:a3:c5:2d:48:07:6b:0f:
07:02:84:6f:a4:d8:9d:22:09:31:38:4a:9a:f8:b5:
b6:40:51:97:16:4d:3e:e3:0d:43:87:f8:fd:b9:91:
19:64:4d:56:5d:ac:39:0f:f2:fe:bf:af:ae:b5:53:
61:a8:87:63:88:08:b2:98:11:4c:eb:52:19:c5:2c:
11:3f:3e:15:ce:52:85:82:0a:05:c7:23:cf:25:27:
70:9c:13:35:80:fe:92:d4:26:cd:f9:e5:61:cb:2d:
16:eb:62:13:38:88:40:e2:db:2c:ae:2e:db:a8:42:
90:df:0e:49:ef:c1:0e:33:ea:cc:b7:a2:7f:28:34:
40:5f:80:6f:c9:37:52:2b:9a:d4:1f:a8:9f:18:ab:
ea:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:54:B3:6B:E7:4D:26:38:BA:1A:F5:8A:63:FC:B9:E4:BF:22:FA:0B
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:b6:8e:0a:5a:b2:bf:30:4d:06:70:92:d3:c4:6a:d2:cc:24:
bb:fa:26:1e:73:66:ac:75:e3:1d:fa:86:26:8b:55:23:06:8f:
21:ee:64:04:6b:b4:0d:83:1d:c0:c5:68:5c:31:2b:0b:7a:8b:
64:53:d1:f4:12:e1:7f:16:22:4a:ee:3d:1b:3f:88:33:5a:f9:
27:6b:82:88:57:fa:ce:a8:7f:ed:2f:e8:19:27:a6:99:61:01:
ee:95:f6:73:b8:d6:2b:03:e8:39:1a:38:36:ff:e7:f8:97:8b:
02:62:83:5b:45:97:94:cf:f1:b8:f8:59:4a:83:3b:af:cc:51:
e7:ce:d4:05:c6:58:91:17:13:31:92:1f:26:1d:a3:cb:2c:d2:
68:c6:f5:dc:9d:84:90:4b:4b:48:b7:d6:39:5e:61:32:f0:1d:
07:31:5c:ea:14:b8:a7:e3:c7:fa:25:7a:80:76:18:66:89:42:
57:c3:24:ee:00:ed:a4:2e:5c:2a:08:d6:ed:8f:3a:87:99:96:
33:29:2a:a9:5e:a4:c2:5b:7b:77:38:24:48:5b:dc:bf:c3:84:
90:8f:ad:09:b0:70:2d:2c:ce:56:56:58:4e:61:33:4e:6a:f3:
d3:d2:b5:67:e7:1e:99:55:24:60:39:e2:5a:1e:2c:4a:85:94:
79:57:90:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa/b4IZ3hsKrGX+t6Sd9JCYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmOWEyZDIzNzRhYTZhYzcxNGI1ZjhhNmVkZGI4MGRjNjk2
NzljYzYwHhcNMjUwNTExMTMwMTE3WhcNMjUwNTEyMTMwMTE3WjAzMTEwLwYDVQQD
EygzOTU0YjM2YmU3NGQyNjM4YmExYWY1OGE2M2ZjYjllNGJmMjJmYTBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LX7L0TP5mamrlK+noQs7lp7CMfC
jXkO+JA7pWGohtasLjFCPx7c7v89vpgY9Ey9F0W9sdnxBkt0F6jjZ1LUqmHgcOPS
22wRCTJ6xFPmVQ9b79UGRybcktWGfC7gWBgA1dhnVU+uacp8roBx+bg6HaPFLUgH
aw8HAoRvpNidIgkxOEqa+LW2QFGXFk0+4w1Dh/j9uZEZZE1WXaw5D/L+v6+utVNh
qIdjiAiymBFM61IZxSwRPz4VzlKFggoFxyPPJSdwnBM1gP6S1CbN+eVhyy0W62IT
OIhA4tssri7bqEKQ3w5J78EOM+rMt6J/KDRAX4BvyTdSK5rUH6ifGKvq5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDlUs2vnTSY4uhr1imP8ueS/IvoLMB8GA1UdIwQY
MBaAFA+aLSN0qmrHFLX4pu3bgNxpZ5zGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wMDI0OGMtMzc5MS00NjI5LWE2YzYt
NmQ5NzE5OTJjMzQ5LzEvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi8wMDI0OGMtMzc5MS00NjI5LWE2YzYtNmQ5NzE5OTJjMzQ5
LzEvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADraOClqy
vzBNBnCS08Rq0swku/omHnNmrHXjHfqGJotVIwaPIe5kBGu0DYMdwMVoXDErC3qL
ZFPR9BLhfxYiSu49Gz+IM1r5J2uCiFf6zqh/7S/oGSemmWEB7pX2c7jWKwPoORo4
Nv/n+JeLAmKDW0WXlM/xuPhZSoM7r8xR587UBcZYkRcTMZIfJh2jyyzSaMb13J2E
kEtLSLfWOV5hMvAdBzFc6hS4p+PH+iV6gHYYZolCV8Mk7gDtpC5cKgjW7Y86h5mW
MykqqV6kwlt7dzgkSFvcv8OEkI+tCbBwLSzOVlZYTmEzTmrz09K1Z+cemVUkYDni
Wh4sSoWUeVeQew==
-----END CERTIFICATE-----
Generated at Sun May 11 15:52:21 2025 by rpki-client