Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
File: Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft (raw, json)
Hash identifier: pvZbGy8FWjEIjQx0163WuVf2tCEtShHoyzSvmJAr05U=
Subject key identifier: 48:FB:C9:30:37:5E:EE:F4:44:4B:43:3E:9C:AD:F1:C2:86:8B:46:E1
Authority key identifier: 39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
Certificate issuer: /CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Certificate serial: 0196AA315A10F5D314AE64EF342251A9C820
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
Manifest number: 1527
Signing time: Wed 07 May 2025 10:01:23 +0000
Manifest this update: Wed 07 May 2025 10:01:23 +0000
Manifest next update: Thu 08 May 2025 10:01:23 +0000
Files and hashes: 1: Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl (hash: 5jMkq672mEL3j4TcUJmN1s2RSXXsBe0U4GDsjLZwt5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:31:5a:10:f5:d3:14:ae:64:ef:34:22:51:a9:c8:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Validity
Not Before: May 7 10:01:23 2025 GMT
Not After : May 8 10:01:23 2025 GMT
Subject: CN=48fbc930375eeef4444b433e9cadf1c2868b46e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7d:b8:9d:ad:ce:c7:e0:ec:c2:c9:ea:0b:78:
93:94:b5:17:cd:85:2c:26:19:84:ac:8b:f0:ff:03:
a7:8a:6b:be:0c:70:3f:c8:1b:24:a2:41:75:4d:ff:
f8:0c:f4:46:e0:4a:d4:73:a2:ed:5a:8b:f3:eb:98:
6e:2f:b9:39:f0:e3:77:2f:8c:1f:66:24:f2:f3:5a:
0a:ab:40:e1:b9:1f:cc:12:65:66:67:0d:7a:d1:d4:
90:9b:d1:43:09:3f:47:23:fb:13:bd:1d:a1:16:32:
02:c4:11:b5:f6:6c:c9:2f:12:33:f5:81:d2:95:7c:
f9:ab:a2:3f:d1:01:c8:17:57:c7:0a:d6:b3:9c:44:
13:a5:38:08:6b:81:d6:4f:33:9e:04:f0:eb:c3:15:
9b:46:cd:21:1f:d5:7b:57:5d:39:cc:30:ac:39:8a:
da:69:50:68:84:f2:a6:87:8b:d3:ef:db:e0:66:48:
c0:96:52:07:f7:7c:af:9f:78:59:69:aa:a8:be:b9:
04:31:0a:d0:ae:ca:af:2e:2c:33:60:ea:78:ca:94:
f2:20:75:72:89:d0:15:10:73:71:ce:70:2b:2e:9f:
f5:98:59:e5:81:3c:6d:78:f3:01:61:1a:55:71:b2:
71:e8:7a:17:89:96:41:7c:2d:45:b9:af:94:6b:e1:
1f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:FB:C9:30:37:5E:EE:F4:44:4B:43:3E:9C:AD:F1:C2:86:8B:46:E1
X509v3 Authority Key Identifier:
keyid:39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:40:67:72:ef:4d:37:35:c6:c7:e4:b8:9e:4f:72:db:21:1c:
e2:6d:af:5c:23:f9:e0:19:75:31:9c:b3:f8:4e:eb:f1:00:6a:
87:eb:69:67:c0:8e:a1:77:6e:f3:e8:08:b7:bb:e0:ae:e8:24:
11:67:e2:0e:91:a9:f6:37:0e:ee:50:a3:9d:db:54:e3:42:ef:
79:26:98:fb:8c:e5:d7:a1:fc:98:2b:2f:2c:6f:c3:bd:cc:c9:
92:f4:f0:cc:7c:f4:ab:56:85:56:94:1d:ad:c7:da:a7:ea:b7:
e4:59:c5:bb:16:85:02:b1:94:04:7c:85:59:a7:95:82:40:66:
64:cb:85:da:6c:8f:d6:ca:e1:ae:57:47:82:ae:6f:09:c3:76:
4f:04:48:be:61:09:ea:4a:d2:1d:f8:9b:6b:30:84:d4:c2:ec:
94:d7:43:b4:46:c6:d6:8b:bd:56:4e:cd:67:a0:2b:7c:81:76:
85:4f:79:9a:f6:19:f4:c2:e1:ef:87:5c:70:63:db:aa:a5:3b:
30:f0:46:11:39:29:fc:d0:3b:a1:30:23:58:08:92:3a:a2:a9:
13:62:75:ae:c6:0e:cd:21:42:b6:07:37:31:0e:c3:6b:d0:02:
bd:d5:2e:4c:3d:48:a1:81:f0:90:3f:da:7b:85:a2:fe:d6:c6:
3a:5a:5f:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaqMVoQ9dMUrmTvNCJRqcggMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5Y2QxZDViYjg4OTU4YzY5Y2JkZGU5MGE5ZTA1NmI0OGM0
ZmFiZjgwHhcNMjUwNTA3MTAwMTIzWhcNMjUwNTA4MTAwMTIzWjAzMTEwLwYDVQQD
Eyg0OGZiYzkzMDM3NWVlZWY0NDQ0YjQzM2U5Y2FkZjFjMjg2OGI0NmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx324na3Ox+DswsnqC3iTlLUXzYUs
JhmErIvw/wOnimu+DHA/yBskokF1Tf/4DPRG4ErUc6LtWovz65huL7k58ON3L4wf
ZiTy81oKq0DhuR/MEmVmZw160dSQm9FDCT9HI/sTvR2hFjICxBG19mzJLxIz9YHS
lXz5q6I/0QHIF1fHCtaznEQTpTgIa4HWTzOeBPDrwxWbRs0hH9V7V105zDCsOYra
aVBohPKmh4vT79vgZkjAllIH93yvn3hZaaqovrkEMQrQrsqvLiwzYOp4ypTyIHVy
idAVEHNxznArLp/1mFnlgTxtePMBYRpVcbJx6HoXiZZBfC1Fua+Ua+EfaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEj7yTA3Xu70REtDPpyt8cKGi0bhMB8GA1UdIwQY
MBaAFDnNHVu4iVjGnL3ekKngVrSMT6v4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2MwZFc3aUpXTWFjdmQ2UXFlQld0SXhQcV9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi81N2FjN2YtZjVjOC00MGZmLTgyNWMt
NDZhODVhMjhlNzQ5LzEvT2MwZFc3aUpXTWFjdmQ2UXFlQld0SXhQcV9nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi81N2FjN2YtZjVjOC00MGZmLTgyNWMtNDZhODVhMjhlNzQ5
LzEvT2MwZFc3aUpXTWFjdmQ2UXFlQld0SXhQcV9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJUBncu9N
NzXGx+S4nk9y2yEc4m2vXCP54Bl1MZyz+E7r8QBqh+tpZ8COoXdu8+gIt7vgrugk
EWfiDpGp9jcO7lCjndtU40LveSaY+4zl16H8mCsvLG/DvczJkvTwzHz0q1aFVpQd
rcfap+q35FnFuxaFArGUBHyFWaeVgkBmZMuF2myP1srhrldHgq5vCcN2TwRIvmEJ
6krSHfibazCE1MLslNdDtEbG1ou9Vk7NZ6ArfIF2hU95mvYZ9MLh74dccGPbqqU7
MPBGETkp/NA7oTAjWAiSOqKpE2J1rsYOzSFCtgc3MQ7Da9ACvdUuTD1IoYHwkD/a
e4Wi/tbGOlpfVQ==
-----END CERTIFICATE-----
Generated at Wed May 7 13:11:31 2025 by rpki-client