Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json)
Hash identifier: ijktRWcZQVjVpeXwLVJTPj0/+ULRg6vNcA+Rj0MIUG0=
Subject key identifier: 4F:79:83:68:B9:E5:98:60:90:54:62:1B:F7:D9:0B:3B:D4:E2:70:5E
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 01976D06C6CF0F6B176AF4E6E836F0547E6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
Manifest number: 1581
Signing time: Sat 14 Jun 2025 06:00:49 +0000
Manifest this update: Sat 14 Jun 2025 06:00:49 +0000
Manifest next update: Sun 15 Jun 2025 06:00:49 +0000
Files and hashes: 1: JQFRevUesYnGzWy86if_lRLWdpc.roa (hash: t3BYwJZyAAH5HRBi+AIKc99FxTLmFzwx0nZw4AplB88=)
2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: B4fO6AMB8/BDtjMPnM3Q/SPyFvUmyscc3Oi1HM10vKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:c6:cf:0f:6b:17:6a:f4:e6:e8:36:f0:54:7e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Jun 14 06:00:49 2025 GMT
Not After : Jun 15 06:00:49 2025 GMT
Subject: CN=4f798368b9e598609054621bf7d90b3bd4e2705e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:96:36:7f:d8:a1:47:b8:24:43:dd:7f:7e:ee:
d6:37:81:5a:72:fa:c4:8e:cd:67:73:f8:dc:cd:bc:
a6:71:9f:7f:ea:c8:47:28:4a:20:85:09:7a:fe:95:
35:07:96:1e:4c:10:e5:f6:13:fa:c9:2d:62:67:f2:
e7:91:c9:de:c8:1d:66:3c:c2:1a:38:b3:95:61:31:
8a:17:66:4d:58:37:1a:16:51:e3:1d:e9:5a:7c:1e:
b8:1c:bb:39:de:a4:c9:c1:4c:d1:ef:7f:d3:86:07:
20:94:ed:fc:0c:7e:ae:60:04:47:1c:ee:30:61:d7:
0b:5e:27:8f:36:9d:35:0b:c8:55:ae:6b:60:52:e9:
0c:a0:2d:aa:3f:89:bb:e4:88:c5:7c:ef:62:de:8f:
19:0c:bf:dc:a7:1b:b3:78:2e:d7:4c:72:fe:0a:06:
c0:a8:2d:ee:19:a6:01:35:2b:ff:86:3e:9e:2d:a1:
06:27:d3:e5:d1:95:2f:16:fd:6e:ce:7a:16:5d:1f:
ed:12:8c:91:ea:20:66:cc:18:7d:74:f7:55:d3:38:
af:df:7e:c4:12:de:7a:23:87:2a:ca:d9:91:0b:32:
e0:a2:99:71:de:ae:10:31:a5:c0:eb:f8:8d:3e:89:
f1:2b:c1:6d:f4:30:df:24:02:85:d2:47:81:d5:4a:
3e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:79:83:68:B9:E5:98:60:90:54:62:1B:F7:D9:0B:3B:D4:E2:70:5E
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:a6:4f:0c:43:0a:dc:c1:cf:85:c3:4a:a3:30:d1:0e:d8:51:
f4:25:e7:07:5c:54:b0:3f:6f:a3:5d:bc:60:6f:45:17:ca:f0:
1b:53:a6:7b:da:18:39:bd:a7:21:89:9e:9d:1c:2c:3c:d4:d5:
56:7a:27:67:7e:b4:6d:e4:f3:b0:43:ea:49:b3:fc:cc:4d:4e:
54:bd:51:c7:a4:ba:ca:7c:1f:f8:46:a9:27:e4:fa:8c:67:93:
e4:c4:a9:eb:8e:83:6f:0d:d3:2b:1b:8f:40:5b:87:30:93:f6:
89:11:90:3c:99:5e:4e:ea:42:92:a2:17:e1:d8:83:13:bc:e1:
48:e9:96:95:b5:73:6f:f3:77:5c:92:5c:c8:4f:22:d4:9d:3b:
f1:0b:ef:9b:9d:3f:dc:e8:20:df:00:69:8a:2d:0e:56:77:c8:
a8:79:03:cc:81:37:35:85:55:9c:9b:f6:19:b6:8e:92:04:44:
0d:ba:02:67:e1:52:e0:5a:5f:05:bd:12:eb:0f:06:98:20:f6:
68:2e:ed:f2:08:b8:0a:ea:17:6a:e1:65:41:c5:84:40:2d:85:
5b:54:02:88:7f:df:d3:11:a4:bd:7d:54:fb:86:80:a7:05:c6:
6c:4e:f4:51:2a:27:50:e8:a1:9c:a1:23:e0:8e:d6:fd:11:11:
53:8b:79:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtBsbPD2sXavTm6DbwVH5tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNjZmMzViYWM2MWEwYWJmNzFkMThkNmIxMDYzZDVjOTMz
YTI0YWIwHhcNMjUwNjE0MDYwMDQ5WhcNMjUwNjE1MDYwMDQ5WjAzMTEwLwYDVQQD
Eyg0Zjc5ODM2OGI5ZTU5ODYwOTA1NDYyMWJmN2Q5MGIzYmQ0ZTI3MDVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJY2f9ihR7gkQ91/fu7WN4FacvrE
js1nc/jczbymcZ9/6shHKEoghQl6/pU1B5YeTBDl9hP6yS1iZ/LnkcneyB1mPMIa
OLOVYTGKF2ZNWDcaFlHjHelafB64HLs53qTJwUzR73/ThgcglO38DH6uYARHHO4w
YdcLXiePNp01C8hVrmtgUukMoC2qP4m75IjFfO9i3o8ZDL/cpxuzeC7XTHL+CgbA
qC3uGaYBNSv/hj6eLaEGJ9Pl0ZUvFv1uznoWXR/tEoyR6iBmzBh9dPdV0ziv337E
Et56I4cqytmRCzLgoplx3q4QMaXA6/iNPonxK8Ft9DDfJAKF0keB1Uo+dQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE95g2i55ZhgkFRiG/fZCzvU4nBeMB8GA1UdIwQY
MBaAFKNm81usYaCr9x0Y1rEGPVyTOiSrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzJielc2eGhvS3YzSFJqV3NRWTlYSk02SktzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC80Y2Y4MTQtNzliNS00Nzg2LWFjNTEt
MzE5MDc5NWU4NjNiLzEvbzJielc2eGhvS3YzSFJqV3NRWTlYSk02SktzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC80Y2Y4MTQtNzliNS00Nzg2LWFjNTEtMzE5MDc5NWU4NjNi
LzEvbzJielc2eGhvS3YzSFJqV3NRWTlYSk02SktzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOKZPDEMK
3MHPhcNKozDRDthR9CXnB1xUsD9vo128YG9FF8rwG1Ome9oYOb2nIYmenRwsPNTV
VnonZ360beTzsEPqSbP8zE1OVL1Rx6S6ynwf+EapJ+T6jGeT5MSp646Dbw3TKxuP
QFuHMJP2iRGQPJleTupCkqIX4diDE7zhSOmWlbVzb/N3XJJcyE8i1J078Qvvm50/
3Ogg3wBpii0OVnfIqHkDzIE3NYVVnJv2GbaOkgREDboCZ+FS4FpfBb0S6w8GmCD2
aC7t8gi4CuoXauFlQcWEQC2FW1QCiH/f0xGkvX1U+4aApwXGbE70USonUOihnKEj
4I7W/RERU4t5vg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 10:05:19 2025 by rpki-client