Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: x9aVdWa15ZCyU5cJC/xjM/xo5hw2HB736Bw3ZCsXYrc=
Subject key identifier: AA:E0:77:B8:BD:3B:E0:92:4D:E9:47:05:B5:6F:C2:EF:A2:1C:FB:C2
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 0196BC3734B9276EDAABDAD6FD756C6FF34F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 096F
Signing time: Sat 10 May 2025 22:00:56 +0000
Manifest this update: Sat 10 May 2025 22:00:56 +0000
Manifest next update: Sun 11 May 2025 22:00:56 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: c1hHeBUvkDHGx/gJ1sJLhxvJbF2Wo4uG6klN6FHHeTk=)
2: _l8jrf0myWSyZHEusIZ6cmnQafE.roa (hash: gjseV+JPjv3tCrp8kMrsCJYjL6BjqLfcHlxvbKTgJog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 14:04:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:37:34:b9:27:6e:da:ab:da:d6:fd:75:6c:6f:f3:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: May 10 22:00:56 2025 GMT
Not After : May 11 22:00:56 2025 GMT
Subject: CN=aae077b8bd3be0924de94705b56fc2efa21cfbc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f0:94:8d:2c:43:b7:28:16:ea:7c:48:ca:f1:
4d:5e:59:99:ff:ff:6f:9a:65:7c:3c:fe:04:8f:98:
8d:3e:f8:d4:d8:c6:51:79:65:2d:0f:e1:06:06:14:
02:f9:d3:b4:99:79:0d:ad:9f:71:1a:c9:92:64:1c:
f2:74:0c:01:0b:2d:e9:70:2b:d6:30:42:2d:06:b6:
e5:0c:9f:4f:f7:46:e7:5d:32:bc:2c:85:43:59:18:
a4:25:b8:12:fa:d7:8c:54:b9:82:57:9d:ff:2e:69:
3e:b6:c1:ca:b0:66:11:12:fd:ca:10:e9:a0:01:6c:
4c:40:07:07:14:be:ee:78:e6:67:bd:cd:3c:0f:0b:
33:3f:1a:b1:0c:36:cb:9f:d8:1e:b6:86:41:26:f5:
6b:ce:b0:91:9d:31:9a:7d:0a:fd:a8:65:f2:88:5a:
1e:b9:c0:5d:b8:94:c4:6d:03:93:7d:aa:89:67:46:
84:13:e1:93:a2:e6:fd:df:22:8d:23:21:38:6a:a3:
90:2b:9b:63:23:b1:4c:3e:cc:75:ce:65:c1:49:91:
f1:7e:31:8e:85:8f:b9:7d:66:64:bc:60:34:5b:65:
1b:63:f4:f9:9d:7e:12:d3:77:ee:c7:67:cf:5b:ba:
99:17:ed:51:5f:4e:f3:1c:9e:7c:55:d9:85:c9:b1:
90:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E0:77:B8:BD:3B:E0:92:4D:E9:47:05:B5:6F:C2:EF:A2:1C:FB:C2
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:f2:f7:c6:44:d0:f4:4a:ec:93:81:c7:20:2d:1e:e1:b4:e3:
13:a6:65:6d:8b:c4:1a:00:41:56:1b:0f:26:a0:24:ea:83:7e:
29:a8:52:55:dc:cd:8c:0e:a6:fc:b7:c4:61:a7:67:14:b4:17:
2d:75:3e:ac:f4:1c:bb:69:6c:90:17:a9:a3:07:4a:c5:5e:5b:
e4:41:8b:6e:68:ec:43:5a:05:79:22:4f:6f:44:f5:ad:f8:31:
56:8c:65:2e:22:64:a5:ed:35:22:b4:44:28:89:61:2e:5a:b5:
3b:e4:4a:c7:c4:ed:25:3c:5e:1a:f6:df:b2:e6:ef:c9:e2:69:
ed:24:0b:21:58:86:7c:37:98:68:97:33:d5:5d:f9:3b:48:c1:
a3:75:a1:c3:b4:a9:1b:00:08:cc:33:f6:7d:3c:9a:c5:d4:31:
23:73:ee:3e:7e:4e:af:f0:8d:8e:e1:44:08:e6:de:ea:ae:b5:
9e:f8:b2:3e:0c:03:90:8c:10:c0:ef:6e:2b:73:e5:7a:10:82:
b1:9a:0d:16:3e:b2:01:f5:e1:d6:e8:b6:95:5e:6e:c6:34:81:
a7:20:f4:da:37:77:85:77:e7:99:9d:7b:ba:28:d0:43:72:55:
c5:fe:d4:28:33:6b:ca:51:61:bb:83:ff:36:01:c5:f5:fe:90:
e1:97:09:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa8NzS5J27aq9rW/XVsb/NPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNjI0ZTkwOGM3NDk4ZmRiNjEzNTQyNzUzZWY1NmM3NWNk
NzA0YmQwHhcNMjUwNTEwMjIwMDU2WhcNMjUwNTExMjIwMDU2WjAzMTEwLwYDVQQD
EyhhYWUwNzdiOGJkM2JlMDkyNGRlOTQ3MDViNTZmYzJlZmEyMWNmYmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfCUjSxDtygW6nxIyvFNXlmZ//9v
mmV8PP4Ej5iNPvjU2MZReWUtD+EGBhQC+dO0mXkNrZ9xGsmSZBzydAwBCy3pcCvW
MEItBrblDJ9P90bnXTK8LIVDWRikJbgS+teMVLmCV53/Lmk+tsHKsGYREv3KEOmg
AWxMQAcHFL7ueOZnvc08DwszPxqxDDbLn9getoZBJvVrzrCRnTGafQr9qGXyiFoe
ucBduJTEbQOTfaqJZ0aEE+GToub93yKNIyE4aqOQK5tjI7FMPsx1zmXBSZHxfjGO
hY+5fWZkvGA0W2UbY/T5nX4S03fux2fPW7qZF+1RX07zHJ58VdmFybGQNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKrgd7i9O+CSTelHBbVvwu+iHPvCMB8GA1UdIwQY
MBaAFNNiTpCMdJj9thNUJ1PvVsdc1wS9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDJKT2tJeDBtUDIyRTFRblUtOVd4MXpYQkwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC80MmVmMWItMTBjNy00ZGFjLTljMTMt
NjQ1MGYxODQxMTIyLzEvMDJKT2tJeDBtUDIyRTFRblUtOVd4MXpYQkwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC80MmVmMWItMTBjNy00ZGFjLTljMTMtNjQ1MGYxODQxMTIy
LzEvMDJKT2tJeDBtUDIyRTFRblUtOVd4MXpYQkwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj/L3xkTQ
9Ersk4HHIC0e4bTjE6ZlbYvEGgBBVhsPJqAk6oN+KahSVdzNjA6m/LfEYadnFLQX
LXU+rPQcu2lskBepowdKxV5b5EGLbmjsQ1oFeSJPb0T1rfgxVoxlLiJkpe01IrRE
KIlhLlq1O+RKx8TtJTxeGvbfsubvyeJp7SQLIViGfDeYaJcz1V35O0jBo3Whw7Sp
GwAIzDP2fTyaxdQxI3PuPn5Or/CNjuFECObe6q61nviyPgwDkIwQwO9uK3PlehCC
sZoNFj6yAfXh1ui2lV5uxjSBpyD02jd3hXfnmZ17uijQQ3JVxf7UKDNrylFhu4P/
NgHF9f6Q4ZcJ3Q==
-----END CERTIFICATE-----
Generated at Sun May 11 00:17:05 2025 by rpki-client