Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
File: OFBtgKtZLee-CjMbv0-gBo1BQIo.mft (raw, json)
Hash identifier: 56AYImKQ3DuqE6h+fgDFKwb3zbjkKB9sJQ9zuBpdjsc=
Subject key identifier: 84:01:CF:35:F9:57:2D:C8:00:17:47:41:09:34:96:68:1C:B6:AF:49
Authority key identifier: 38:50:6D:80:AB:59:2D:E7:BE:0A:33:1B:BF:4F:A0:06:8D:41:40:8A
Certificate issuer: /CN=38506d80ab592de7be0a331bbf4fa0068d41408a
Certificate serial: 0197722CA5B01124861B5FA3B4A895DD9CBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
Manifest number: 1486
Signing time: Sun 15 Jun 2025 06:00:18 +0000
Manifest this update: Sun 15 Jun 2025 06:00:18 +0000
Manifest next update: Mon 16 Jun 2025 06:00:18 +0000
Files and hashes: 1: 8fjGJEbNOKgjtgGvG0x5bdVrRFo.roa (hash: 6ZZJ4QGkpbcq3hIOVhgvm79JeONPbl5ojVu1zQKUgnU=)
2: LiZI8DHKt2cl3ZGAwMQs7hzSWLY.roa (hash: YZv7B4YQ18wMpKvjotc88oKaw7AFVr3K3Ln8F9meSnc=)
3: OFBtgKtZLee-CjMbv0-gBo1BQIo.crl (hash: EzqqLuCspKGQo3kh6j+rF1ThkiKU4tfalsx2vb1SIMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2c:a5:b0:11:24:86:1b:5f:a3:b4:a8:95:dd:9c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38506d80ab592de7be0a331bbf4fa0068d41408a
Validity
Not Before: Jun 15 06:00:18 2025 GMT
Not After : Jun 16 06:00:18 2025 GMT
Subject: CN=8401cf35f9572dc800174741093496681cb6af49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:0f:cd:6e:c6:2c:c5:dd:66:df:fd:f9:67:
d2:33:64:5d:65:49:88:23:c2:34:d9:0d:f1:4e:4c:
ee:49:ff:37:e2:f5:d2:f7:68:aa:36:19:5e:3c:7c:
67:a1:10:8f:b0:66:e7:94:77:16:9a:03:91:a2:f3:
bd:16:e3:a8:da:46:28:ca:85:d7:39:ad:3b:b0:69:
9f:32:79:ae:70:d5:8c:0d:67:03:af:14:c3:49:33:
aa:1c:e4:83:60:a1:d1:91:cd:9b:9b:29:0a:38:19:
2e:0f:8a:dc:b7:a2:62:94:61:41:29:49:c5:91:0b:
2d:99:7b:ca:ea:da:da:73:51:54:c9:49:76:26:0f:
91:86:21:fe:d3:13:7c:0a:42:89:7b:92:08:ce:f8:
76:c6:d6:43:26:c6:0e:c9:53:29:2a:bd:15:b6:a3:
93:dc:35:46:d8:75:90:ec:a9:dd:96:a9:94:b7:d4:
9d:de:e4:fa:8d:15:cd:ee:a5:eb:68:51:e7:8d:60:
77:d0:81:68:43:6d:3a:b8:32:e6:ee:97:24:de:e8:
c9:b7:25:db:73:6f:79:ed:de:86:eb:7e:5f:28:67:
54:3a:2c:9f:4b:d8:5a:24:e2:ab:f4:2f:53:27:ad:
10:42:c4:84:ef:81:0d:c1:92:39:dd:b8:b3:a8:78:
4e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:01:CF:35:F9:57:2D:C8:00:17:47:41:09:34:96:68:1C:B6:AF:49
X509v3 Authority Key Identifier:
keyid:38:50:6D:80:AB:59:2D:E7:BE:0A:33:1B:BF:4F:A0:06:8D:41:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFBtgKtZLee-CjMbv0-gBo1BQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f94f78-f262-4207-8f18-8df8af3001bc/1/OFBtgKtZLee-CjMbv0-gBo1BQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:dd:e7:1f:07:c4:bc:e5:c0:79:08:5c:92:59:bb:7e:43:d1:
24:4a:4f:83:d5:fd:2a:e9:5e:01:59:b1:e8:dd:82:d9:fe:46:
7d:8b:9e:19:ac:7d:c9:5c:50:9d:5f:17:fd:22:a6:2b:85:33:
dc:e0:13:43:9e:01:c9:bc:78:2a:b1:51:6a:c3:cf:fa:fe:8b:
88:d6:b5:0c:ff:e8:02:5b:b1:03:f5:7e:11:27:49:8a:38:6e:
63:89:de:37:c3:7a:6a:d6:87:c3:6d:af:64:23:1a:f6:31:12:
28:47:bb:dc:de:36:da:40:fe:59:85:07:3e:b0:d1:e6:64:91:
ed:68:0b:16:5b:ff:d8:ba:55:53:6c:77:c9:6c:21:13:d2:e7:
79:f5:13:7c:06:1e:cb:dd:34:7c:ff:e4:8e:54:ce:6f:af:bf:
4c:a4:f4:09:e9:d9:37:9d:cd:02:21:e9:fa:44:9b:3f:02:09:
d0:67:20:53:dd:83:95:df:23:db:2d:79:f0:06:a7:6a:4d:2f:
db:63:6f:c1:18:50:77:1a:2d:bc:8b:cc:a4:f9:d8:0c:65:74:
ef:ab:76:36:20:03:b8:a8:36:da:38:34:16:6d:25:49:5e:11:
66:a3:19:aa:d1:75:60:50:d8:a7:81:a1:0b:5d:4b:62:d3:91:
7d:c0:20:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdyLKWwESSGG1+jtKiV3Zy7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NTA2ZDgwYWI1OTJkZTdiZTBhMzMxYmJmNGZhMDA2OGQ0
MTQwOGEwHhcNMjUwNjE1MDYwMDE4WhcNMjUwNjE2MDYwMDE4WjAzMTEwLwYDVQQD
Eyg4NDAxY2YzNWY5NTcyZGM4MDAxNzQ3NDEwOTM0OTY2ODFjYjZhZjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZkPzW7GLMXdZt/9+WfSM2RdZUmI
I8I02Q3xTkzuSf834vXS92iqNhlePHxnoRCPsGbnlHcWmgORovO9FuOo2kYoyoXX
Oa07sGmfMnmucNWMDWcDrxTDSTOqHOSDYKHRkc2bmykKOBkuD4rct6JilGFBKUnF
kQstmXvK6trac1FUyUl2Jg+RhiH+0xN8CkKJe5IIzvh2xtZDJsYOyVMpKr0VtqOT
3DVG2HWQ7KndlqmUt9Sd3uT6jRXN7qXraFHnjWB30IFoQ206uDLm7pck3ujJtyXb
c2957d6G635fKGdUOiyfS9haJOKr9C9TJ60QQsSE74ENwZI53bizqHhOxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIQBzzX5Vy3IABdHQQk0lmgctq9JMB8GA1UdIwQY
MBaAFDhQbYCrWS3nvgozG79PoAaNQUCKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0ZCdGdLdFpMZWUtQ2pNYnYwLWdCbzFCUUlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9mOTRmNzgtZjI2Mi00MjA3LThmMTgt
OGRmOGFmMzAwMWJjLzEvT0ZCdGdLdFpMZWUtQ2pNYnYwLWdCbzFCUUlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9mOTRmNzgtZjI2Mi00MjA3LThmMTgtOGRmOGFmMzAwMWJj
LzEvT0ZCdGdLdFpMZWUtQ2pNYnYwLWdCbzFCUUlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALd3nHwfE
vOXAeQhcklm7fkPRJEpPg9X9KuleAVmx6N2C2f5GfYueGax9yVxQnV8X/SKmK4Uz
3OATQ54Bybx4KrFRasPP+v6LiNa1DP/oAluxA/V+ESdJijhuY4neN8N6ataHw22v
ZCMa9jESKEe73N422kD+WYUHPrDR5mSR7WgLFlv/2LpVU2x3yWwhE9LnefUTfAYe
y900fP/kjlTOb6+/TKT0CenZN53NAiHp+kSbPwIJ0GcgU92Dld8j2y158Aanak0v
22NvwRhQdxotvIvMpPnYDGV076t2NiADuKg22jg0Fm0lSV4RZqMZqtF1YFDYp4Gh
C11LYtORfcAg8Q==
-----END CERTIFICATE-----
Generated at Sun Jun 15 07:42:30 2025 by rpki-client