Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: NJsicf0GRf1JBFaTD2WdPeG7RcjSuCheMYwNjw0Pez0=
Subject key identifier: 89:0F:02:7C:BC:BF:07:5C:0E:BF:AA:EB:02:E5:DE:BF:CD:C2:FF:F3
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 0196C081784F5AB389B3DCCA4E7B9D6CA774
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0B72
Signing time: Sun 11 May 2025 18:00:32 +0000
Manifest this update: Sun 11 May 2025 18:00:32 +0000
Manifest next update: Mon 12 May 2025 18:00:32 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: 779Bkua53OKYHZ4vsIPTX1FnUXGWf9uxEC1Iq7XgkHo=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 18:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:81:78:4f:5a:b3:89:b3:dc:ca:4e:7b:9d:6c:a7:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: May 11 18:00:32 2025 GMT
Not After : May 12 18:00:32 2025 GMT
Subject: CN=890f027cbcbf075c0ebfaaeb02e5debfcdc2fff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:85:95:64:62:8c:af:79:16:c4:8e:4f:8d:e7:
97:8f:38:77:d9:e5:da:b5:10:bf:c8:94:89:8e:72:
47:b4:80:80:63:22:c5:20:5e:82:ec:2e:71:a2:3f:
f0:bf:55:e8:32:9f:e8:ba:c2:28:f8:f9:47:8f:d8:
92:4e:3d:61:8c:ba:42:72:ae:4a:8f:e6:f7:db:86:
60:69:d2:fc:5b:aa:88:e4:78:5e:ea:9e:b2:39:2f:
ff:a4:08:86:d5:5e:de:66:a9:44:60:ae:d2:5b:0e:
7e:f4:d8:ac:80:2b:f9:c9:c4:78:22:74:87:b6:63:
ab:6c:c6:87:6e:76:30:31:a1:c5:1c:87:cd:ac:78:
6d:16:c2:2c:22:46:14:52:a6:ae:ac:f0:2b:39:85:
99:eb:94:77:a5:11:60:6f:23:ea:f7:b2:83:8d:3f:
eb:30:89:de:c1:78:f5:0e:50:b3:c0:7d:61:39:df:
0b:d3:42:12:6f:0a:d8:d8:40:ad:9c:01:36:fa:dd:
87:3f:8b:04:f9:8d:19:60:61:61:49:f5:9e:ad:d6:
17:88:71:ac:3c:61:5a:80:b8:de:22:08:32:5e:d8:
eb:ca:3f:52:57:3b:53:91:20:2c:e6:bc:e8:42:30:
20:f6:7f:58:02:00:65:fd:1c:b3:d1:32:15:67:30:
33:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:0F:02:7C:BC:BF:07:5C:0E:BF:AA:EB:02:E5:DE:BF:CD:C2:FF:F3
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:e0:d7:4c:6b:e5:44:c3:58:60:41:90:fc:a0:72:84:db:5c:
29:25:4f:e7:66:90:70:7c:8b:ff:30:c7:a5:91:c2:0a:52:78:
80:f8:ea:38:9f:a0:7a:38:28:02:2c:cf:c1:19:b7:4f:22:98:
ea:0b:f0:01:a2:96:1f:07:67:d4:e3:b9:d1:dc:64:70:ca:d9:
77:b8:4c:12:f5:d5:c8:ff:86:4b:e7:65:4e:35:f3:9f:62:ba:
80:80:d4:69:02:41:c0:ac:4b:9e:24:a2:44:0c:61:6b:1a:4b:
ac:1a:41:37:b2:06:2e:8c:3c:60:8a:76:e6:3a:75:d2:c7:62:
d2:86:e5:df:e1:9c:b2:18:87:a4:87:cd:2b:5c:2d:5e:72:e5:
bc:6a:bc:43:d2:02:ed:f4:e4:d9:ef:28:e0:89:8f:cc:3c:eb:
6c:92:f5:18:31:7a:6d:e4:92:54:de:b9:54:97:47:a1:ef:c3:
2d:b4:87:7a:14:90:08:a5:b1:7f:ae:61:94:79:7c:2b:a9:45:
ae:d3:ab:ad:96:c3:fe:c4:a3:d7:3e:b3:74:c9:27:af:e3:50:
07:6a:61:a2:73:2c:ef:02:01:b8:49:6d:d9:68:f5:d3:19:81:
5e:52:09:df:d9:fd:e5:72:ba:d2:f5:5f:17:23:c8:4a:b4:65:
95:8f:36:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbAgXhPWrOJs9zKTnudbKd0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4OGNjY2Q3OGJmMTY1MzNmMzMxODU0NDNlYTgyZGNkYWQ5
MjA0MTAwHhcNMjUwNTExMTgwMDMyWhcNMjUwNTEyMTgwMDMyWjAzMTEwLwYDVQQD
Eyg4OTBmMDI3Y2JjYmYwNzVjMGViZmFhZWIwMmU1ZGViZmNkYzJmZmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYWVZGKMr3kWxI5PjeeXjzh32eXa
tRC/yJSJjnJHtICAYyLFIF6C7C5xoj/wv1XoMp/ousIo+PlHj9iSTj1hjLpCcq5K
j+b324ZgadL8W6qI5Hhe6p6yOS//pAiG1V7eZqlEYK7SWw5+9NisgCv5ycR4InSH
tmOrbMaHbnYwMaHFHIfNrHhtFsIsIkYUUqaurPArOYWZ65R3pRFgbyPq97KDjT/r
MInewXj1DlCzwH1hOd8L00ISbwrY2ECtnAE2+t2HP4sE+Y0ZYGFhSfWerdYXiHGs
PGFagLjeIggyXtjryj9SVztTkSAs5rzoQjAg9n9YAgBl/Ryz0TIVZzAzKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIkPAny8vwdcDr+q6wLl3r/Nwv/zMB8GA1UdIwQY
MBaAFDiMzNeL8WUz8zGFRD6oLc2tkgQQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS82OGIxZDMtYzkzOC00MjNlLTkwZGQt
MjEwOThhNjEzNTdlLzEvT0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS82OGIxZDMtYzkzOC00MjNlLTkwZGQtMjEwOThhNjEzNTdl
LzEvT0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASODXTGvl
RMNYYEGQ/KByhNtcKSVP52aQcHyL/zDHpZHCClJ4gPjqOJ+gejgoAizPwRm3TyKY
6gvwAaKWHwdn1OO50dxkcMrZd7hMEvXVyP+GS+dlTjXzn2K6gIDUaQJBwKxLniSi
RAxhaxpLrBpBN7IGLow8YIp25jp10sdi0obl3+GcshiHpIfNK1wtXnLlvGq8Q9IC
7fTk2e8o4ImPzDzrbJL1GDF6beSSVN65VJdHoe/DLbSHehSQCKWxf65hlHl8K6lF
rtOrrZbD/sSj1z6zdMknr+NQB2phonMs7wIBuElt2Wj10xmBXlIJ39n95XK60vVf
FyPISrRllY82BA==
-----END CERTIFICATE-----
Generated at Mon May 12 04:05:43 2025 by rpki-client