Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
File: OhoMABa5sz-T6Kejk9CRkNXhhJk.mft (raw, json)
Hash identifier: 6WtDmpr1F6JyZ9PGUpE3t6v3h77Nx+Ws0IyxYXFUJxc=
Subject key identifier: AB:76:C0:E2:75:D2:88:0E:21:EA:76:98:F4:DA:8F:58:33:D8:D8:13
Authority key identifier: 3A:1A:0C:00:16:B9:B3:3F:93:E8:A7:A3:93:D0:91:90:D5:E1:84:99
Certificate issuer: /CN=3a1a0c0016b9b33f93e8a7a393d09190d5e18499
Certificate serial: 0196D32C5E0BF42B6D64FBB1E46D035E4F76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
Manifest number: 0B16
Signing time: Thu 15 May 2025 09:00:22 +0000
Manifest this update: Thu 15 May 2025 09:00:22 +0000
Manifest next update: Fri 16 May 2025 09:00:22 +0000
Files and hashes: 1: OhoMABa5sz-T6Kejk9CRkNXhhJk.crl (hash: jD/ncSQ0ragi1lZN8uWd4KCGGU6zB/xWaA9ialH4GPY=)
2: UG2XZdsSP9vahLS8deUbiGwgM84.roa (hash: H+YkvMLky6FPgjSDWIrs7G2kpfOLt2YF+/59bitetA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 09:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d3:2c:5e:0b:f4:2b:6d:64:fb:b1:e4:6d:03:5e:4f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1a0c0016b9b33f93e8a7a393d09190d5e18499
Validity
Not Before: May 15 09:00:22 2025 GMT
Not After : May 16 09:00:22 2025 GMT
Subject: CN=ab76c0e275d2880e21ea7698f4da8f5833d8d813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7e:7c:ed:89:42:68:40:75:40:e3:b8:8a:5b:
9b:8d:54:02:a2:9d:44:88:ed:f7:b3:5e:c9:73:3d:
0f:4f:e9:34:d2:40:af:86:69:63:6b:7b:3c:64:54:
98:34:82:e5:8c:55:21:a1:2b:37:f9:f3:1c:14:3b:
95:ee:d4:0c:ef:be:fd:f8:cf:65:fb:b4:cf:d9:91:
af:9d:d6:d1:64:92:90:d7:17:60:f5:15:2b:fe:f4:
7b:61:91:bb:03:3b:1d:e2:c2:24:e4:cd:78:30:b4:
7d:44:9d:cc:10:10:a9:78:82:e2:4a:d1:3b:b4:aa:
58:87:2b:24:2f:62:88:86:12:4a:2e:e7:48:15:34:
25:34:1f:c5:df:30:8a:5c:30:6c:fb:6a:8d:c6:bf:
16:a1:b8:02:b2:b9:c7:c9:7c:f9:a6:0f:b7:54:68:
c4:af:f3:06:1e:ff:0c:5b:86:b0:18:38:63:bc:78:
fa:b7:8e:52:63:51:f8:a4:04:69:f8:e0:02:8b:31:
e0:2b:06:e5:b2:89:46:f1:39:bb:a1:9c:0a:18:93:
69:c5:5f:67:75:d4:c9:08:00:5b:8e:6e:5e:3f:97:
fc:69:20:f2:8b:13:0b:d9:d9:5c:e6:95:f9:75:67:
bc:90:db:b3:f7:4d:b3:b2:f3:1b:ee:24:07:2c:0b:
55:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:76:C0:E2:75:D2:88:0E:21:EA:76:98:F4:DA:8F:58:33:D8:D8:13
X509v3 Authority Key Identifier:
keyid:3A:1A:0C:00:16:B9:B3:3F:93:E8:A7:A3:93:D0:91:90:D5:E1:84:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:9e:30:26:89:dd:62:51:6c:21:52:d5:8a:ff:08:b4:b6:65:
c3:fd:8c:9c:c5:04:57:6c:13:78:2c:38:73:b9:4b:53:b5:7e:
a4:a9:43:1c:b5:a7:fd:9d:07:56:f4:59:c4:82:d1:58:39:9e:
41:76:d1:15:5e:27:d6:f1:a6:75:b8:00:b6:8e:8c:98:d6:17:
a6:5d:c2:b4:d6:fe:37:d1:99:67:11:93:5d:00:02:34:0d:6a:
5f:18:8a:63:80:51:3b:f2:a7:66:64:3d:56:bd:b3:5f:32:44:
9d:4f:c8:51:98:cc:a2:fc:2f:f7:f9:2c:9f:0b:bb:b1:2c:aa:
6b:8d:63:c2:d8:81:a5:4c:02:10:36:b5:09:1b:c6:b6:c0:b5:
1a:f4:07:e7:23:41:3c:c5:b8:d3:dc:27:78:2a:c6:5b:65:84:
26:a2:0c:e9:dc:db:22:d1:b4:b2:b1:45:20:af:4f:ed:69:30:
39:c2:0f:09:b4:ca:fa:2a:70:13:ac:86:a0:5f:b7:30:db:30:
ab:2e:83:bf:2a:f9:4e:d2:d0:9a:ac:2d:16:46:ad:db:18:c5:
22:af:a1:6f:60:74:a5:4c:4d:54:d7:50:ec:ce:37:40:66:b1:
88:0f:02:09:c9:d0:ae:45:11:e5:2e:a4:1f:eb:d6:c4:89:08:
ac:a4:3b:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbTLF4L9CttZPux5G0DXk92MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMWEwYzAwMTZiOWIzM2Y5M2U4YTdhMzkzZDA5MTkwZDVl
MTg0OTkwHhcNMjUwNTE1MDkwMDIyWhcNMjUwNTE2MDkwMDIyWjAzMTEwLwYDVQQD
EyhhYjc2YzBlMjc1ZDI4ODBlMjFlYTc2OThmNGRhOGY1ODMzZDhkODEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyn587YlCaEB1QOO4ilubjVQCop1E
iO33s17Jcz0PT+k00kCvhmlja3s8ZFSYNILljFUhoSs3+fMcFDuV7tQM7779+M9l
+7TP2ZGvndbRZJKQ1xdg9RUr/vR7YZG7Azsd4sIk5M14MLR9RJ3MEBCpeILiStE7
tKpYhyskL2KIhhJKLudIFTQlNB/F3zCKXDBs+2qNxr8WobgCsrnHyXz5pg+3VGjE
r/MGHv8MW4awGDhjvHj6t45SY1H4pARp+OACizHgKwblsolG8Tm7oZwKGJNpxV9n
ddTJCABbjm5eP5f8aSDyixML2dlc5pX5dWe8kNuz902zsvMb7iQHLAtV8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKt2wOJ10ogOIep2mPTaj1gz2NgTMB8GA1UdIwQY
MBaAFDoaDAAWubM/k+ino5PQkZDV4YSZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2hvTUFCYTVzei1UNktlams5Q1JrTlhoaEprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy85OTU4ODEtMzljZC00MTA0LTliMjkt
MGI2NDU5Nzc1YjY0LzEvT2hvTUFCYTVzei1UNktlams5Q1JrTlhoaEprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy85OTU4ODEtMzljZC00MTA0LTliMjktMGI2NDU5Nzc1YjY0
LzEvT2hvTUFCYTVzei1UNktlams5Q1JrTlhoaEprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFp4wJond
YlFsIVLViv8ItLZlw/2MnMUEV2wTeCw4c7lLU7V+pKlDHLWn/Z0HVvRZxILRWDme
QXbRFV4n1vGmdbgAto6MmNYXpl3CtNb+N9GZZxGTXQACNA1qXxiKY4BRO/KnZmQ9
Vr2zXzJEnU/IUZjMovwv9/ksnwu7sSyqa41jwtiBpUwCEDa1CRvGtsC1GvQH5yNB
PMW409wneCrGW2WEJqIM6dzbItG0srFFIK9P7WkwOcIPCbTK+ipwE6yGoF+3MNsw
qy6Dvyr5TtLQmqwtFkat2xjFIq+hb2B0pUxNVNdQ7M43QGaxiA8CCcnQrkUR5S6k
H+vWxIkIrKQ7xw==
-----END CERTIFICATE-----
Generated at Thu May 15 16:45:09 2025 by rpki-client