Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
File: OSG38e7pDZnilCGKk4dTweotwmc.mft (raw, json)
Hash identifier: 1enN/sDY0C0DrZETysp56Yu0V91hb1e0B0E5Z0bBLP4=
Subject key identifier: E9:24:14:29:82:8B:40:87:FB:26:0B:3C:3A:48:17:57:F8:F8:5B:EF
Authority key identifier: 39:21:B7:F1:EE:E9:0D:99:E2:94:21:8A:93:87:53:C1:EA:2D:C2:67
Certificate issuer: /CN=3921b7f1eee90d99e294218a938753c1ea2dc267
Certificate serial: 0196C503072610709838C1A9C5356EA09987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
Manifest number: 14C6
Signing time: Mon 12 May 2025 15:00:31 +0000
Manifest this update: Mon 12 May 2025 15:00:31 +0000
Manifest next update: Tue 13 May 2025 15:00:31 +0000
Files and hashes: 1: L_A9DGG1Lyhn9ijdvWfwPuWNlqo.roa (hash: iuIj0NOVpLZI4cGhRfSProz+dqWpJEEnC9sQ3cQR31k=)
2: OSG38e7pDZnilCGKk4dTweotwmc.crl (hash: aa6lyPpYRVdKmQy99+QtFZsUwr/mwhaM7+PVEBDUgao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:03:07:26:10:70:98:38:c1:a9:c5:35:6e:a0:99:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3921b7f1eee90d99e294218a938753c1ea2dc267
Validity
Not Before: May 12 15:00:31 2025 GMT
Not After : May 13 15:00:31 2025 GMT
Subject: CN=e9241429828b4087fb260b3c3a481757f8f85bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b0:d5:34:c4:e5:c0:4b:37:73:d6:b7:b7:a0:
aa:b8:66:fb:ec:7d:a4:24:12:a8:43:55:12:af:b3:
e8:7f:6b:43:d7:ce:f6:05:61:f4:90:ce:cc:5c:23:
0f:86:94:50:c3:e8:99:93:38:93:d2:41:0d:dd:6e:
be:e8:27:58:55:02:ec:f0:87:41:9f:25:86:51:80:
39:82:e3:71:79:e5:94:ac:f6:94:29:3e:7b:a0:7e:
8f:75:02:d0:09:15:a2:7c:9e:ee:87:a5:1b:9b:85:
cd:99:b2:ca:ca:f4:51:0d:b7:e3:c0:71:0d:59:b1:
c7:e4:73:87:b0:d9:53:72:40:14:d5:46:bd:12:ee:
e7:f9:b7:9a:50:a1:fd:b0:11:c9:e0:46:b3:aa:ff:
41:05:15:58:30:f6:7e:1d:6b:56:eb:48:50:22:3b:
60:2a:18:e5:cc:52:b3:22:0a:b1:32:09:52:ac:9e:
80:4e:52:8f:10:58:ee:79:bf:b4:79:7f:5c:19:e7:
57:04:a3:e0:5f:b2:c1:3f:be:e6:12:fd:19:30:1c:
99:70:ce:4b:43:71:34:47:06:4c:82:cb:1f:c5:06:
8a:3c:78:67:20:2d:72:8e:07:57:c7:e5:fb:9a:e2:
8a:0a:a3:f3:49:24:42:af:e1:4f:b1:eb:8b:3a:0a:
da:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:24:14:29:82:8B:40:87:FB:26:0B:3C:3A:48:17:57:F8:F8:5B:EF
X509v3 Authority Key Identifier:
keyid:39:21:B7:F1:EE:E9:0D:99:E2:94:21:8A:93:87:53:C1:EA:2D:C2:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:1d:4c:b8:dd:60:a8:63:6e:ea:96:9b:60:dc:08:39:8d:8d:
33:78:61:89:1c:a6:c2:21:b2:84:58:01:46:e9:2d:dc:bf:72:
c3:38:ee:e5:7e:b1:0e:57:64:b8:a5:61:e2:79:94:4e:bf:a8:
63:d2:7f:90:e4:50:fc:02:a6:f5:5b:67:69:c4:44:29:32:cd:
59:f6:70:44:fb:ec:ed:a1:0d:35:c2:79:19:1d:ba:ce:56:c6:
7f:93:76:5d:22:88:05:8f:95:d8:46:ef:75:46:30:e2:79:e8:
5b:be:51:4f:f1:f0:26:1b:f1:89:06:f9:71:38:9e:88:62:a6:
64:fa:31:9e:2a:cd:d7:1f:ab:3b:60:27:e5:b0:81:5a:52:02:
e4:ce:58:c0:d6:db:86:cc:22:09:48:2b:04:26:85:3f:89:1f:
ce:70:5e:80:6e:a8:ca:d3:c4:63:6c:64:89:e5:81:e8:15:e0:
73:1a:79:05:07:05:b8:52:07:6d:ba:35:fe:2e:25:e8:69:76:
df:fc:1a:52:b2:ed:58:1b:26:5a:c4:b3:90:52:81:f0:01:6e:
4b:8f:e4:8f:fa:c5:a4:68:c0:3b:7d:e7:1a:c4:ef:df:fb:d0:
f7:fc:dd:e0:a3:c0:0e:1f:e0:34:1a:ae:ac:92:a1:cf:93:a9:
b1:ae:87:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbFAwcmEHCYOMGpxTVuoJmHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MjFiN2YxZWVlOTBkOTllMjk0MjE4YTkzODc1M2MxZWEy
ZGMyNjcwHhcNMjUwNTEyMTUwMDMxWhcNMjUwNTEzMTUwMDMxWjAzMTEwLwYDVQQD
EyhlOTI0MTQyOTgyOGI0MDg3ZmIyNjBiM2MzYTQ4MTc1N2Y4Zjg1YmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbDVNMTlwEs3c9a3t6CquGb77H2k
JBKoQ1USr7Pof2tD1872BWH0kM7MXCMPhpRQw+iZkziT0kEN3W6+6CdYVQLs8IdB
nyWGUYA5guNxeeWUrPaUKT57oH6PdQLQCRWifJ7uh6Ubm4XNmbLKyvRRDbfjwHEN
WbHH5HOHsNlTckAU1Ua9Eu7n+beaUKH9sBHJ4Eazqv9BBRVYMPZ+HWtW60hQIjtg
KhjlzFKzIgqxMglSrJ6ATlKPEFjueb+0eX9cGedXBKPgX7LBP77mEv0ZMByZcM5L
Q3E0RwZMgssfxQaKPHhnIC1yjgdXx+X7muKKCqPzSSRCr+FPseuLOgrauQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOkkFCmCi0CH+yYLPDpIF1f4+FvvMB8GA1UdIwQY
MBaAFDkht/Hu6Q2Z4pQhipOHU8HqLcJnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1NHMzhlN3BEWm5pbENHS2s0ZFR3ZW90d21jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9iZTFkYjEtNGRjNC00NjNjLWJhZjgt
MjQ0MWUxMGY2ZjhmLzEvT1NHMzhlN3BEWm5pbENHS2s0ZFR3ZW90d21jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9iZTFkYjEtNGRjNC00NjNjLWJhZjgtMjQ0MWUxMGY2Zjhm
LzEvT1NHMzhlN3BEWm5pbENHS2s0ZFR3ZW90d21jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdx1MuN1g
qGNu6pabYNwIOY2NM3hhiRymwiGyhFgBRukt3L9ywzju5X6xDldkuKVh4nmUTr+o
Y9J/kORQ/AKm9VtnacREKTLNWfZwRPvs7aENNcJ5GR26zlbGf5N2XSKIBY+V2Ebv
dUYw4nnoW75RT/HwJhvxiQb5cTieiGKmZPoxnirN1x+rO2An5bCBWlIC5M5YwNbb
hswiCUgrBCaFP4kfznBegG6oytPEY2xkieWB6BXgcxp5BQcFuFIHbbo1/i4l6Gl2
3/waUrLtWBsmWsSzkFKB8AFuS4/kj/rFpGjAO33nGsTv3/vQ9/zd4KPADh/gNBqu
rJKhz5Opsa6HRw==
-----END CERTIFICATE-----
Generated at Mon May 12 16:57:24 2025 by rpki-client