Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
File: otP5vJZWutwm594auw-nLD1yjdg.mft (raw, json)
Hash identifier: iI8wEG2vwPh/UqqW7a9katCRql2LKzH0JJw8uDovrcs=
Subject key identifier: 94:70:E3:31:F4:A9:65:58:BE:66:39:59:4A:56:52:98:C5:C2:90:02
Authority key identifier: A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
Certificate issuer: /CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Certificate serial: 01969D19D8D35C3A1D6D5E870492306D1827
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
Manifest number: 0188
Signing time: Sun 04 May 2025 21:00:38 +0000
Manifest this update: Sun 04 May 2025 21:00:38 +0000
Manifest next update: Mon 05 May 2025 21:00:38 +0000
Files and hashes: 1: otP5vJZWutwm594auw-nLD1yjdg.crl (hash: zyPJ8k9N1MeX6fwcqbPHv6IWQ4pa0J9rZXOzOTgg/C0=)
2: yntKueGdh_gRYfTjbFRGz4s6BD8.roa (hash: 8wVmYZSgIm0dCsPvd2oqoO7MS+FukiT5t5Ke1EaX2FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 21:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:19:d8:d3:5c:3a:1d:6d:5e:87:04:92:30:6d:18:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Validity
Not Before: May 4 21:00:38 2025 GMT
Not After : May 5 21:00:38 2025 GMT
Subject: CN=9470e331f4a96558be6639594a565298c5c29002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3a:37:fc:b4:ca:c3:f1:a4:9a:1b:0a:b5:b2:
1e:04:85:65:7a:19:fc:5c:bd:12:e0:e8:df:59:08:
6e:08:dc:48:f8:de:4a:a9:8c:bd:0b:82:d6:9a:c4:
36:4c:fc:5c:78:40:90:c2:6f:31:ec:83:3a:8c:02:
ba:f7:33:36:dd:e2:8b:ca:ae:6b:6b:a9:85:19:df:
dc:34:f9:b0:aa:df:17:0a:47:f8:82:f1:e4:20:cd:
10:54:87:86:66:3c:78:48:aa:02:06:da:59:8b:d0:
7a:b2:89:f5:c0:79:a4:10:ee:0a:70:fc:47:d3:8a:
e4:5c:3d:19:4a:36:97:10:80:60:c1:57:73:d8:aa:
d0:25:6c:41:cd:ab:57:96:31:d0:e7:59:72:88:89:
9a:23:a1:ec:e0:99:e0:5d:cc:bd:5d:d0:64:c9:46:
83:5c:cd:2d:3b:13:a1:c7:d9:d5:91:60:ff:fe:64:
12:b0:49:9c:ca:21:59:cd:4b:a0:5f:5d:ba:39:0c:
22:66:bd:ad:eb:db:e7:69:b8:36:42:44:c9:a9:cd:
cf:3b:7d:af:1c:79:b3:85:97:06:0f:e4:f3:8e:55:
de:57:5b:bc:22:a5:d6:19:29:3b:d7:3d:4e:6d:ed:
43:5b:ba:f9:e6:12:86:12:ef:07:2b:fc:71:e8:0f:
d2:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:70:E3:31:F4:A9:65:58:BE:66:39:59:4A:56:52:98:C5:C2:90:02
X509v3 Authority Key Identifier:
keyid:A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:6c:c1:2d:c0:f2:b7:58:4a:8e:be:28:c9:29:8a:cd:f8:92:
86:95:c4:17:7d:a7:f9:85:13:b1:18:db:71:1a:9e:54:4c:ef:
e3:a2:75:0d:29:a0:b5:eb:38:f6:e4:65:67:09:21:b1:f5:37:
e3:22:a9:8b:15:68:13:14:82:ee:60:08:63:d0:45:01:29:89:
c8:43:ae:74:4a:2e:a7:d9:ab:6a:1d:04:16:ec:bd:34:00:7c:
02:d7:ae:21:67:df:37:11:d3:11:4e:fc:69:c6:ec:00:23:97:
c5:46:d3:b7:88:64:64:89:6f:5b:58:99:37:02:b6:80:7a:d5:
6e:0c:de:b2:2c:f5:a7:85:0f:ed:cf:3c:25:73:8d:0c:50:31:
a3:41:d6:ba:0f:3d:30:37:9d:d2:33:e4:b2:52:2b:24:2d:55:
51:dc:1d:68:cc:9c:72:0e:f9:ab:fa:d0:5f:db:b2:15:d6:8e:
5d:35:bb:ef:60:12:f4:eb:7d:13:30:a5:9d:bd:b2:a7:26:c0:
de:e8:54:e8:1c:12:8d:ad:8b:73:6b:bc:c1:3d:32:6a:17:d6:
29:a1:1d:51:d0:37:cb:65:db:a8:9b:75:33:f6:9c:bf:c1:42:
42:b4:50:ad:ae:1d:4d:0e:4f:02:79:8f:db:5e:e2:40:b4:91:
57:90:a5:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZadGdjTXDodbV6HBJIwbRgnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZDNmOWJjOTY1NmJhZGMyNmU3ZGUxYWJiMGZhNzJjM2Q3
MjhkZDgwHhcNMjUwNTA0MjEwMDM4WhcNMjUwNTA1MjEwMDM4WjAzMTEwLwYDVQQD
Eyg5NDcwZTMzMWY0YTk2NTU4YmU2NjM5NTk0YTU2NTI5OGM1YzI5MDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzo3/LTKw/GkmhsKtbIeBIVlehn8
XL0S4OjfWQhuCNxI+N5KqYy9C4LWmsQ2TPxceECQwm8x7IM6jAK69zM23eKLyq5r
a6mFGd/cNPmwqt8XCkf4gvHkIM0QVIeGZjx4SKoCBtpZi9B6son1wHmkEO4KcPxH
04rkXD0ZSjaXEIBgwVdz2KrQJWxBzatXljHQ51lyiImaI6Hs4JngXcy9XdBkyUaD
XM0tOxOhx9nVkWD//mQSsEmcyiFZzUugX126OQwiZr2t69vnabg2QkTJqc3PO32v
HHmzhZcGD+TzjlXeV1u8IqXWGSk71z1Obe1DW7r55hKGEu8HK/xx6A/SfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJRw4zH0qWVYvmY5WUpWUpjFwpACMB8GA1UdIwQY
MBaAFKLT+byWVrrcJufeGrsPpyw9co3YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3RQNXZKWld1dHdtNTk0YXV3LW5MRDF5amRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82OGZkMGYtMmI4Ny00NzA0LWEzMmYt
ZDcxMWU4NGMyOWExLzEvb3RQNXZKWld1dHdtNTk0YXV3LW5MRDF5amRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi82OGZkMGYtMmI4Ny00NzA0LWEzMmYtZDcxMWU4NGMyOWEx
LzEvb3RQNXZKWld1dHdtNTk0YXV3LW5MRDF5amRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnWzBLcDy
t1hKjr4oySmKzfiShpXEF32n+YUTsRjbcRqeVEzv46J1DSmgtes49uRlZwkhsfU3
4yKpixVoExSC7mAIY9BFASmJyEOudEoup9mrah0EFuy9NAB8AteuIWffNxHTEU78
acbsACOXxUbTt4hkZIlvW1iZNwK2gHrVbgzesiz1p4UP7c88JXONDFAxo0HWug89
MDed0jPkslIrJC1VUdwdaMyccg75q/rQX9uyFdaOXTW772AS9Ot9EzClnb2ypybA
3uhU6BwSja2Lc2u8wT0yahfWKaEdUdA3y2XbqJt1M/acv8FCQrRQra4dTQ5PAnmP
217iQLSRV5Clag==
-----END CERTIFICATE-----
Generated at Mon May 5 05:36:03 2025 by rpki-client