Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
File: oNMhbMzIY-ygw90YmUGxueo3ys0.mft (raw, json)
Hash identifier: c+bFGHrIW4e1aTO3yhU472y+T+flgwOLsuFJh8PAdAk=
Subject key identifier: BA:7E:78:AB:5A:8C:7F:28:66:11:08:1A:03:AA:B9:C3:9F:EB:9E:28
Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Certificate serial: 0196B1E9D7737952774F49EC0E2D153BB49C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
Manifest number: 0D78
Signing time: Thu 08 May 2025 22:00:14 +0000
Manifest this update: Thu 08 May 2025 22:00:14 +0000
Manifest next update: Fri 09 May 2025 22:00:14 +0000
Files and hashes: 1: YAQOG7HS14oLGl_AE__5KljKQek.roa (hash: vYFfnqVBOtNvOIxvJDmuRRaUo+YW3T+OADCuratSdoU=)
2: i2HYpKIvdGotH7mKcmQ5RAG3huY.roa (hash: 4Nz6YUMbPlVe3PbppTQU2sGDWl5KATygr4DtzeG8qCU=)
3: oNMhbMzIY-ygw90YmUGxueo3ys0.crl (hash: I5mxs6b73+r4Fwqn6sic/tHWqvyRNKAyZc55hflehmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b1:e9:d7:73:79:52:77:4f:49:ec:0e:2d:15:3b:b4:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Validity
Not Before: May 8 22:00:14 2025 GMT
Not After : May 9 22:00:14 2025 GMT
Subject: CN=ba7e78ab5a8c7f286611081a03aab9c39feb9e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1e:a9:b2:29:02:c3:80:27:92:8d:a1:84:5d:
9c:b0:31:cd:fb:b3:13:c8:03:ff:18:84:0d:3b:05:
b9:68:26:d7:f3:91:dc:d7:57:33:51:08:8e:71:08:
25:b0:0a:63:e6:90:09:6a:1b:20:93:bc:e7:8c:22:
6f:0d:da:37:3b:18:49:1a:16:df:8c:b6:7e:ee:fd:
62:67:78:1a:f8:fa:39:8b:f7:3b:92:1e:7a:02:21:
79:65:94:14:fe:e4:a0:64:58:f2:98:e1:5e:90:ee:
4f:df:82:76:00:c3:bd:48:80:c6:ed:d1:9e:b8:43:
16:1d:99:e9:d0:39:e6:9d:b9:56:fb:0b:f2:9d:ab:
a7:f0:9b:da:76:f3:8a:e4:73:20:d5:c2:96:d0:74:
07:6a:9a:e2:7f:04:d4:df:5e:7b:4b:fb:15:cf:1d:
e8:3a:6f:ae:e2:f3:5f:e4:fa:ed:5f:57:5d:4d:62:
7b:6c:ec:70:c6:5a:d3:f8:e5:ce:c1:b1:90:75:bc:
20:8e:7d:a9:9a:ec:85:60:df:c8:9c:69:61:68:f0:
cf:94:80:04:c3:28:13:13:d9:44:05:d4:06:26:0e:
33:29:50:35:9e:74:b0:3f:cd:f6:26:60:96:70:e4:
fe:33:17:1a:48:84:b7:23:c3:d5:95:03:ad:d6:1f:
7a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7E:78:AB:5A:8C:7F:28:66:11:08:1A:03:AA:B9:C3:9F:EB:9E:28
X509v3 Authority Key Identifier:
keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:36:1f:45:b1:c5:c4:3b:5e:aa:3f:59:fb:f2:60:12:1f:56:
6c:26:93:fa:06:79:9c:45:2e:25:de:e0:a9:82:47:b8:6a:7b:
a2:13:7e:7d:60:2d:4a:db:bf:ec:81:89:6e:22:b7:8b:8b:d2:
1b:12:12:c3:68:70:9c:05:85:c7:50:9b:2b:9e:94:bb:17:14:
11:59:4f:42:f8:f3:31:b5:d7:bf:a7:c0:ba:f8:d1:6e:a0:cb:
22:44:1c:89:aa:49:9c:fc:7a:da:80:48:87:61:21:37:fc:71:
da:f0:07:f8:03:06:74:f5:83:24:9f:da:0f:9f:31:2b:b5:00:
b0:94:fa:9f:60:e2:c1:86:1b:1f:e1:d9:11:5d:b6:2d:09:7b:
ff:a4:97:83:1a:54:63:7b:11:2e:56:b3:c1:fa:5f:86:08:71:
22:dc:87:57:86:c6:c8:f9:83:4a:78:a1:c4:f2:18:ce:65:bc:
38:f6:72:7c:07:ff:24:35:6d:41:54:0a:06:46:e3:0a:b0:45:
33:a3:c9:b7:19:a1:82:31:b6:18:eb:f4:ef:04:b7:2f:ce:7c:
09:85:57:98:ff:89:fc:19:71:a4:1d:8f:4c:5f:dd:4b:8c:15:
7a:90:36:24:7f:2a:60:9e:93:0d:19:bb:e0:c9:70:11:53:84:
cd:b0:64:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZax6ddzeVJ3T0nsDi0VO7ScMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZDMyMTZjY2NjODYzZWNhMGMzZGQxODk5NDFiMWI5ZWEz
N2NhY2QwHhcNMjUwNTA4MjIwMDE0WhcNMjUwNTA5MjIwMDE0WjAzMTEwLwYDVQQD
EyhiYTdlNzhhYjVhOGM3ZjI4NjYxMTA4MWEwM2FhYjljMzlmZWI5ZTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5R6psikCw4Anko2hhF2csDHN+7MT
yAP/GIQNOwW5aCbX85Hc11czUQiOcQglsApj5pAJahsgk7znjCJvDdo3OxhJGhbf
jLZ+7v1iZ3ga+Po5i/c7kh56AiF5ZZQU/uSgZFjymOFekO5P34J2AMO9SIDG7dGe
uEMWHZnp0DnmnblW+wvynaun8JvadvOK5HMg1cKW0HQHaprifwTU3157S/sVzx3o
Om+u4vNf5PrtX1ddTWJ7bOxwxlrT+OXOwbGQdbwgjn2pmuyFYN/InGlhaPDPlIAE
wygTE9lEBdQGJg4zKVA1nnSwP832JmCWcOT+MxcaSIS3I8PVlQOt1h96fwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLp+eKtajH8oZhEIGgOqucOf654oMB8GA1UdIwQY
MBaAFKDTIWzMyGPsoMPdGJlBsbnqN8rNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0Mzgt
MGQ0NGMwNGE4NDQ4LzEvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0MzgtMGQ0NGMwNGE4NDQ4
LzEvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdzYfRbHF
xDteqj9Z+/JgEh9WbCaT+gZ5nEUuJd7gqYJHuGp7ohN+fWAtStu/7IGJbiK3i4vS
GxISw2hwnAWFx1CbK56UuxcUEVlPQvjzMbXXv6fAuvjRbqDLIkQciapJnPx62oBI
h2EhN/xx2vAH+AMGdPWDJJ/aD58xK7UAsJT6n2DiwYYbH+HZEV22LQl7/6SXgxpU
Y3sRLlazwfpfhghxItyHV4bGyPmDSnihxPIYzmW8OPZyfAf/JDVtQVQKBkbjCrBF
M6PJtxmhgjG2GOv07wS3L858CYVXmP+J/BlxpB2PTF/dS4wVepA2JH8qYJ6TDRm7
4MlwEVOEzbBkyg==
-----END CERTIFICATE-----
Generated at Fri May 9 02:05:18 2025 by rpki-client