Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: 8zd7OemVP6rYzPNvDK1yHRNojrty9jA3ncO9XDhRTUo=
Subject key identifier: 6A:76:C4:9D:6F:9E:FD:2D:73:9D:A9:51:07:DE:9F:2F:7C:07:59:25
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 019893366EA4A411037F9BBC800FF991FD1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 0DC3
Signing time: Sun 10 Aug 2025 09:01:14 +0000
Manifest this update: Sun 10 Aug 2025 09:01:14 +0000
Manifest next update: Mon 11 Aug 2025 09:01:14 +0000
Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=)
2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: DMmNHCSldf7v8iPXZqPqgf9/sB0dlu26SZS0jpbuMVM=)
3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=)
4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=)
5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:36:6e:a4:a4:11:03:7f:9b:bc:80:0f:f9:91:fd:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Aug 10 09:01:14 2025 GMT
Not After : Aug 11 09:01:14 2025 GMT
Subject: CN=6a76c49d6f9efd2d739da95107de9f2f7c075925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:98:7e:23:e5:5e:81:1a:e0:5a:16:36:4d:3f:
91:2f:6c:c9:09:4e:33:6c:c8:88:0f:97:3f:46:33:
36:53:87:35:5f:06:34:80:41:5a:e2:ae:2a:b5:c6:
4f:e8:d1:0a:09:a4:74:44:71:6b:f0:f2:8f:ed:1d:
49:9e:03:59:5b:fe:80:ab:83:4c:13:be:c3:db:2d:
2c:3f:8c:d3:8a:60:6e:38:34:12:71:8e:50:b7:35:
d3:42:45:09:da:dc:fa:fd:6e:b8:b3:3f:c9:07:3d:
a5:30:d0:c4:a2:84:01:d9:b6:df:19:fc:78:a3:e9:
eb:40:bb:d3:f6:3a:89:0f:6a:b3:a1:ce:14:8d:39:
2f:43:0b:ea:27:5c:00:ee:8f:4f:e3:de:92:9f:6f:
86:5d:6b:24:64:4e:34:64:d9:a8:b9:39:ed:72:25:
6c:03:22:ff:90:17:16:3d:b4:ea:76:00:ca:fd:81:
3a:e5:f4:1f:e0:95:84:1a:7c:15:4f:6f:7c:05:d8:
bf:4b:cd:22:4b:06:7f:a5:47:10:14:18:c2:9d:87:
62:fa:19:a6:e4:d0:56:16:de:70:f6:4d:eb:f2:41:
03:f6:b2:97:06:76:18:97:c5:74:0d:16:90:db:a2:
07:9f:a2:77:22:04:b3:f6:da:1d:84:38:34:cf:db:
99:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:76:C4:9D:6F:9E:FD:2D:73:9D:A9:51:07:DE:9F:2F:7C:07:59:25
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:ab:1d:99:b7:5b:58:7f:9b:a5:22:c3:a1:ed:27:92:16:3e:
b4:47:5d:11:42:ae:10:52:94:d2:00:89:ed:61:44:25:1a:b3:
9a:92:8f:7b:88:26:99:b9:94:e0:d0:63:be:f5:03:33:ab:68:
5d:28:28:27:7a:ac:9d:97:b4:b6:64:5d:4f:ac:32:40:a4:d5:
b5:66:45:ac:1b:9b:b3:25:d4:a0:d7:77:40:62:16:ed:f7:a9:
17:3b:7d:a2:05:59:8b:c1:56:5e:a6:de:0e:f5:18:a0:53:af:
59:78:db:cf:49:82:ac:79:00:6d:5e:77:2a:38:f9:aa:de:8f:
71:a0:e8:4f:85:c7:1d:06:89:ee:46:bb:62:28:ba:2a:1b:48:
7e:c1:9a:b0:72:20:88:5f:78:83:40:d4:fe:cd:18:b5:45:1f:
34:57:16:5a:cd:47:1c:1d:79:14:80:c2:ca:6d:f1:b8:14:3c:
63:94:82:00:3d:7f:e1:88:7b:b1:8f:97:5c:fb:5f:b7:ee:9a:
0a:d9:f9:f8:46:cf:b4:c2:5e:9a:0c:f3:b9:11:15:68:2d:ac:
53:2f:3a:d0:97:27:a3:78:24:e2:46:45:dc:42:81:f7:7f:02:
89:7e:6a:99:60:e5:f4:44:4d:30:bd:93:71:66:99:d0:2f:29:
43:53:e4:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiTNm6kpBEDf5u8gA/5kf0eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMzQ4ODkyNTFlN2NiMTMzZTkwNmM3MDg5MWJhMWEwNDk1
ZWQ4NjAwHhcNMjUwODEwMDkwMTE0WhcNMjUwODExMDkwMTE0WjAzMTEwLwYDVQQD
Eyg2YTc2YzQ5ZDZmOWVmZDJkNzM5ZGE5NTEwN2RlOWYyZjdjMDc1OTI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15h+I+VegRrgWhY2TT+RL2zJCU4z
bMiID5c/RjM2U4c1XwY0gEFa4q4qtcZP6NEKCaR0RHFr8PKP7R1JngNZW/6Aq4NM
E77D2y0sP4zTimBuODQScY5QtzXTQkUJ2tz6/W64sz/JBz2lMNDEooQB2bbfGfx4
o+nrQLvT9jqJD2qzoc4UjTkvQwvqJ1wA7o9P496Sn2+GXWskZE40ZNmouTntciVs
AyL/kBcWPbTqdgDK/YE65fQf4JWEGnwVT298Bdi/S80iSwZ/pUcQFBjCnYdi+hmm
5NBWFt5w9k3r8kED9rKXBnYYl8V0DRaQ26IHn6J3IgSz9todhDg0z9uZIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGp2xJ1vnv0tc52pUQfeny98B1klMB8GA1UdIwQY
MBaAFDo0iJJR58sTPpBscIkboaBJXthgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS85MTE4MmEtZjM0Yi00YTE1LWIzNjMt
ODRmOWVkODdhYzMxLzEvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS85MTE4MmEtZjM0Yi00YTE1LWIzNjMtODRmOWVkODdhYzMx
LzEvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjqsdmbdb
WH+bpSLDoe0nkhY+tEddEUKuEFKU0gCJ7WFEJRqzmpKPe4gmmbmU4NBjvvUDM6to
XSgoJ3qsnZe0tmRdT6wyQKTVtWZFrBubsyXUoNd3QGIW7fepFzt9ogVZi8FWXqbe
DvUYoFOvWXjbz0mCrHkAbV53Kjj5qt6PcaDoT4XHHQaJ7ka7Yii6KhtIfsGasHIg
iF94g0DU/s0YtUUfNFcWWs1HHB15FIDCym3xuBQ8Y5SCAD1/4Yh7sY+XXPtft+6a
Ctn5+EbPtMJemgzzuREVaC2sUy860Jcno3gk4kZF3EKB938CiX5qmWDl9ERNML2T
cWaZ0C8pQ1Pkag==
-----END CERTIFICATE-----
Generated at Sun Aug 10 13:44:40 2025 by rpki-client