Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
File: Ony1ktfk7HG2eFXR38VdnQZwVHE.mft (raw, json)
Hash identifier: mIXhuXCTuFD0ERHe+5sjK1AghsvknWdcuW2hwX8lUK4=
Subject key identifier: D1:F6:4D:C7:1A:4A:36:C2:E9:2B:DE:01:AF:2B:43:0F:30:07:D5:C4
Authority key identifier: 3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
Certificate issuer: /CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Certificate serial: 01976F998CB1801AD8125BB830B4277DBB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
Manifest number: 0C77
Signing time: Sat 14 Jun 2025 18:00:23 +0000
Manifest this update: Sat 14 Jun 2025 18:00:23 +0000
Manifest next update: Sun 15 Jun 2025 18:00:23 +0000
Files and hashes: 1: 5FA6usbApR1_cX5AgsEzHiEcMB4.roa (hash: 7OuczURaJl5BP/q53z8kXUiqcwX3Z4OY7NVnaBx1Pg0=)
2: Ony1ktfk7HG2eFXR38VdnQZwVHE.crl (hash: Vdw0jdf8Elt8UCHFRvqgJ4i6iqnl7uDzSJcn+N83Yqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:99:8c:b1:80:1a:d8:12:5b:b8:30:b4:27:7d:bb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Validity
Not Before: Jun 14 18:00:23 2025 GMT
Not After : Jun 15 18:00:23 2025 GMT
Subject: CN=d1f64dc71a4a36c2e92bde01af2b430f3007d5c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e0:c6:10:e7:a9:eb:9d:87:f2:61:ec:da:99:
2e:fb:3f:a7:4a:fc:e1:7a:42:76:76:0c:08:a2:6e:
82:88:69:52:35:59:0c:af:8f:a1:0d:d5:68:f9:7a:
52:ca:bd:cb:e8:8c:51:18:12:2d:36:d0:d1:ba:d9:
61:6e:b0:65:43:04:da:54:7e:ef:5c:e4:69:24:cf:
17:f5:05:db:79:75:09:55:3e:45:ab:d7:12:27:db:
35:7a:e1:a1:1a:6b:ba:a5:a0:0d:9f:bc:54:39:68:
94:17:7d:73:7d:6d:1a:69:20:c7:67:f4:a8:a7:fd:
8b:4f:4c:34:38:04:73:f0:4c:e2:a9:90:fa:ce:06:
ba:44:8f:b5:b4:1c:14:7d:fa:b1:de:94:5f:33:0b:
37:87:ae:93:69:0d:ff:5e:04:64:ca:9e:aa:8b:45:
8c:38:eb:ef:63:5a:9c:78:b7:bb:49:78:6f:19:45:
97:09:86:dd:18:bb:8d:52:ac:20:cf:6e:84:03:c2:
22:6c:f4:01:f6:92:cd:19:b3:c6:75:ea:03:8f:5e:
0b:45:ca:e0:d4:6a:ac:a8:e6:22:c3:40:1e:b1:8f:
3d:1e:59:89:a7:23:a0:80:b3:da:b7:23:34:ed:f7:
ea:49:58:55:e7:b2:a0:8c:45:bd:29:e1:d6:8c:59:
c5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F6:4D:C7:1A:4A:36:C2:E9:2B:DE:01:AF:2B:43:0F:30:07:D5:C4
X509v3 Authority Key Identifier:
keyid:3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:a3:87:d6:bf:ce:7a:fc:91:30:22:78:2a:86:3b:68:7a:33:
0f:b8:a3:de:9e:cc:26:5a:d8:21:4c:22:ee:3b:ef:74:2c:3e:
dd:8c:1b:06:db:bd:c4:f4:73:03:61:10:34:5d:e2:3e:bf:4e:
48:f7:de:53:9e:cc:aa:3e:73:98:9f:de:d4:1d:4d:4e:57:4a:
cc:89:f2:ef:94:7f:2a:34:10:38:65:1d:60:f0:46:10:89:23:
44:43:65:60:7b:3f:63:97:8e:68:18:42:05:70:ed:a1:68:90:
eb:44:d2:d9:ef:f7:0d:a5:c2:0b:69:35:75:8b:fd:f6:6e:ec:
27:ed:b6:7f:1c:be:30:d0:b5:c6:6d:5b:26:1b:5a:ea:f2:e8:
34:80:be:ef:84:b0:d2:d8:ed:07:b6:c2:24:73:73:ff:05:ac:
dc:8f:7a:76:12:ab:89:82:a3:3c:54:49:07:3b:10:dc:1c:b4:
20:22:7c:a9:d7:ae:77:5a:9b:e1:20:8a:3c:da:24:f7:21:55:
29:a2:26:2a:23:a7:a7:0c:9f:96:ae:30:00:a9:43:82:6e:9a:
c3:8f:9e:22:39:4f:08:d0:96:52:1e:41:88:0a:e3:34:32:0f:
ea:47:20:e3:68:08:bf:ae:6c:a0:19:dd:02:99:c3:cb:c6:89:
df:39:48:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvmYyxgBrYElu4MLQnfbtdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhN2NiNTkyZDdlNGVjNzFiNjc4NTVkMWRmYzU1ZDlkMDY3
MDU0NzEwHhcNMjUwNjE0MTgwMDIzWhcNMjUwNjE1MTgwMDIzWjAzMTEwLwYDVQQD
EyhkMWY2NGRjNzFhNGEzNmMyZTkyYmRlMDFhZjJiNDMwZjMwMDdkNWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuDGEOep652H8mHs2pku+z+nSvzh
ekJ2dgwIom6CiGlSNVkMr4+hDdVo+XpSyr3L6IxRGBItNtDRutlhbrBlQwTaVH7v
XORpJM8X9QXbeXUJVT5Fq9cSJ9s1euGhGmu6paANn7xUOWiUF31zfW0aaSDHZ/So
p/2LT0w0OARz8EziqZD6zga6RI+1tBwUffqx3pRfMws3h66TaQ3/XgRkyp6qi0WM
OOvvY1qceLe7SXhvGUWXCYbdGLuNUqwgz26EA8IibPQB9pLNGbPGdeoDj14LRcrg
1GqsqOYiw0AesY89HlmJpyOggLPatyM07ffqSVhV57KgjEW9KeHWjFnFNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNH2TccaSjbC6SveAa8rQw8wB9XEMB8GA1UdIwQY
MBaAFDp8tZLX5OxxtnhV0d/FXZ0GcFRxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT255MWt0Zms3SEcyZUZYUjM4VmRuUVp3VkhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jZjRhYTYtMjhjYS00ZTcxLThhYWEt
M2NjNTkyODk4Nzg5LzEvT255MWt0Zms3SEcyZUZYUjM4VmRuUVp3VkhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9jZjRhYTYtMjhjYS00ZTcxLThhYWEtM2NjNTkyODk4Nzg5
LzEvT255MWt0Zms3SEcyZUZYUjM4VmRuUVp3VkhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAKOH1r/O
evyRMCJ4KoY7aHozD7ij3p7MJlrYIUwi7jvvdCw+3YwbBtu9xPRzA2EQNF3iPr9O
SPfeU57Mqj5zmJ/e1B1NTldKzIny75R/KjQQOGUdYPBGEIkjRENlYHs/Y5eOaBhC
BXDtoWiQ60TS2e/3DaXCC2k1dYv99m7sJ+22fxy+MNC1xm1bJhta6vLoNIC+74Sw
0tjtB7bCJHNz/wWs3I96dhKriYKjPFRJBzsQ3By0ICJ8qdeud1qb4SCKPNok9yFV
KaImKiOnpwyflq4wAKlDgm6aw4+eIjlPCNCWUh5BiArjNDIP6kcg42gIv65soBnd
ApnDy8aJ3zlINA==
-----END CERTIFICATE-----
Generated at Sun Jun 15 04:01:55 2025 by rpki-client