Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: KEoSKNVATjE6PlZj8aFa74mv+/p2NG9mh0ytOTQlzM8=
Subject key identifier: B9:8A:1E:65:6A:10:AD:16:8F:AC:7C:7A:41:CC:87:1A:4B:41:7E:8D
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 019783574A5FC45513DF532B3A46D3D731E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 117D
Signing time: Wed 18 Jun 2025 14:00:25 +0000
Manifest this update: Wed 18 Jun 2025 14:00:25 +0000
Manifest next update: Thu 19 Jun 2025 14:00:25 +0000
Files and hashes: 1: 3oKx6h0eBr3yZ2nfockvN65K1_o.roa (hash: geWao+6sgTP3cLFpfRuFIKY1lyLCLqYJA9Pcg4p46Gs=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: oWlHSPGgrEgQtgtVlRkMLSWR6iRQVW635pvYoR5Di/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:83:57:4a:5f:c4:55:13:df:53:2b:3a:46:d3:d7:31:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: Jun 18 14:00:25 2025 GMT
Not After : Jun 19 14:00:25 2025 GMT
Subject: CN=b98a1e656a10ad168fac7c7a41cc871a4b417e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:be:b3:dd:1b:a2:84:f6:75:d1:81:0f:f2:3c:
40:02:6c:02:46:01:f8:24:f4:57:e2:e4:48:8f:2a:
53:9e:49:93:b5:05:0e:c1:b3:eb:c9:a9:90:70:85:
06:ca:85:99:1c:3d:1a:6b:1e:02:f3:24:06:82:c8:
29:04:9b:eb:bc:89:db:d0:05:83:1b:76:31:83:11:
7a:3a:81:53:83:36:e2:92:d8:68:3d:df:54:2d:ec:
d1:a8:2b:15:ce:a1:a3:42:cf:23:a4:81:53:1d:44:
3e:55:6e:16:e0:30:35:99:da:f7:d6:3d:38:c3:d2:
e7:a3:b4:9d:85:e4:53:74:40:56:79:2d:4e:4a:c5:
1f:4a:51:f6:55:58:5a:a6:2f:55:9f:07:d1:9d:c0:
18:b1:92:1a:ab:2e:be:e2:7a:d5:a4:c4:ca:f1:08:
cd:e9:39:2d:26:b9:34:6a:7b:e1:54:24:27:cc:e4:
ec:20:b2:9b:34:b8:8f:3c:14:33:c1:9c:16:d4:5e:
f9:af:67:e0:06:86:2b:32:37:2f:09:b9:cb:08:53:
d5:f2:7e:25:c8:13:0f:5c:dd:2f:c1:a8:e7:6d:4e:
23:e3:45:84:b9:d2:6b:d0:69:3b:e5:a6:99:c3:ad:
e0:61:fa:5c:f8:ba:4b:5c:22:34:05:27:b2:0e:63:
d1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:8A:1E:65:6A:10:AD:16:8F:AC:7C:7A:41:CC:87:1A:4B:41:7E:8D
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:7b:c4:8d:f6:cc:13:36:bc:07:da:35:b0:ba:e7:99:82:ca:
7e:0b:5b:2c:6d:94:95:ab:ed:11:68:d1:78:64:a9:8f:c4:36:
66:c8:6c:3e:0f:38:b3:a8:c9:5f:1e:1a:b3:5b:9b:fb:6a:7d:
0e:9d:86:e3:fe:fc:3d:8e:d7:03:29:21:42:55:69:54:b3:ad:
2c:5f:28:3b:15:2d:75:ab:26:71:b1:66:b0:38:b6:08:1a:90:
cd:2f:b7:43:f1:91:14:1d:ef:73:42:ce:2f:39:3e:9e:a2:bb:
25:8f:b3:da:fc:a5:e4:f7:ef:7f:c2:0a:a7:59:1c:68:5a:cd:
5b:b5:bc:ed:49:60:6b:b0:50:23:c7:1f:18:cf:05:71:ef:4c:
62:1f:95:80:13:b2:46:0c:20:24:6b:a4:90:05:7c:a3:06:d3:
c9:f0:d9:38:05:0e:0a:6e:ac:a4:2b:da:21:de:ba:09:4d:fd:
b4:0a:f7:f1:14:fd:32:96:68:44:21:22:fb:ab:85:01:d3:4a:
2a:ec:a6:81:6a:fe:87:48:12:45:90:23:ff:ef:c1:1f:3c:c4:
26:42:bc:b6:3d:aa:3b:98:f1:fc:a6:16:11:82:6b:48:fe:e0:
df:f9:3e:d3:7f:7d:eb:41:c6:9e:67:7d:4e:a0:06:d0:e0:bb:
f2:7f:1d:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeDV0pfxFUT31MrOkbT1zHhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNGRlODc1MDFjN2QzMDgyYzc2NjU5ZjRkZWJkOTQyODg0
M2I0Y2IwHhcNMjUwNjE4MTQwMDI1WhcNMjUwNjE5MTQwMDI1WjAzMTEwLwYDVQQD
EyhiOThhMWU2NTZhMTBhZDE2OGZhYzdjN2E0MWNjODcxYTRiNDE3ZThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk76z3RuihPZ10YEP8jxAAmwCRgH4
JPRX4uRIjypTnkmTtQUOwbPryamQcIUGyoWZHD0aax4C8yQGgsgpBJvrvInb0AWD
G3YxgxF6OoFTgzbikthoPd9ULezRqCsVzqGjQs8jpIFTHUQ+VW4W4DA1mdr31j04
w9Lno7SdheRTdEBWeS1OSsUfSlH2VVhapi9VnwfRncAYsZIaqy6+4nrVpMTK8QjN
6TktJrk0anvhVCQnzOTsILKbNLiPPBQzwZwW1F75r2fgBoYrMjcvCbnLCFPV8n4l
yBMPXN0vwajnbU4j40WEudJr0Gk75aaZw63gYfpc+LpLXCI0BSeyDmPREQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLmKHmVqEK0Wj6x8ekHMhxpLQX6NMB8GA1UdIwQY
MBaAFKBN6HUBx9MILHZln03r2UKIQ7TLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80NjVjOTAtNzBmYi00MDE1LWI5Njkt
NzQ4Zjc4NzgzODhhLzEvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS80NjVjOTAtNzBmYi00MDE1LWI5NjktNzQ4Zjc4NzgzODhh
LzEvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkHvEjfbM
Eza8B9o1sLrnmYLKfgtbLG2UlavtEWjReGSpj8Q2ZshsPg84s6jJXx4as1ub+2p9
Dp2G4/78PY7XAykhQlVpVLOtLF8oOxUtdasmcbFmsDi2CBqQzS+3Q/GRFB3vc0LO
Lzk+nqK7JY+z2vyl5Pfvf8IKp1kcaFrNW7W87Ulga7BQI8cfGM8Fce9MYh+VgBOy
RgwgJGukkAV8owbTyfDZOAUOCm6spCvaId66CU39tAr38RT9MpZoRCEi+6uFAdNK
KuymgWr+h0gSRZAj/+/BHzzEJkK8tj2qO5jx/KYWEYJrSP7g3/k+039960HGnmd9
TqAG0OC78n8dsg==
-----END CERTIFICATE-----
Generated at Wed Jun 18 21:45:06 2025 by rpki-client