Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: NEImzrAzSs7OzIRbgsYMiQ2e6KBHzihsedzQSu35MbE=
Subject key identifier: 7B:3F:66:2D:AE:3F:29:64:EA:20:56:7C:8E:77:9F:57:A0:87:CD:9C
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 0197729A93F655CF107BA983955312A0F063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 97
Signing time: Sun 15 Jun 2025 08:00:22 +0000
Manifest this update: Sun 15 Jun 2025 08:00:22 +0000
Manifest next update: Mon 16 Jun 2025 08:00:22 +0000
Files and hashes: 1: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: wQKtk8jaVdt8LqeE1TV2lXsgw+LxV2263yRZcjE23Tk=)
2: cvTvlJFXIrx4LNBKFN32BnQowu0.roa (hash: 2SQfqAvlePWceYDa/Gr4IqsSS7uQeMq3g8yyqM6DnK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:9a:93:f6:55:cf:10:7b:a9:83:95:53:12:a0:f0:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Jun 15 08:00:22 2025 GMT
Not After : Jun 16 08:00:22 2025 GMT
Subject: CN=7b3f662dae3f2964ea20567c8e779f57a087cd9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:82:dd:49:3f:95:d0:db:2f:4d:f0:45:34:26:
78:8b:bf:e3:9f:3c:fb:8a:54:30:c6:17:3d:30:fa:
1f:35:a5:d8:0b:33:d5:4f:09:b1:1a:3c:b8:6d:24:
92:ed:26:2e:53:d1:16:5a:2e:ef:22:a0:6f:ba:58:
a4:09:41:37:27:af:2b:31:3c:b1:ba:d5:07:f2:93:
e0:60:90:9a:13:5e:6f:46:f0:b5:87:de:c1:00:0f:
65:f2:9a:95:94:8b:70:71:24:6e:2d:a9:23:cf:1c:
68:4a:c6:6c:b9:55:33:31:52:dc:b3:d1:29:10:19:
fa:0a:09:02:5e:0c:27:8c:01:1c:cc:e1:08:54:68:
0d:a0:68:12:77:f3:db:57:d3:9c:79:7e:ac:0f:3f:
7d:88:d3:5e:32:d2:ef:70:23:07:86:6e:26:3b:a6:
c0:3c:fb:84:ae:b9:ef:cf:63:d4:d8:55:c3:46:78:
f0:69:26:42:1c:c6:da:0d:d4:74:f0:c9:30:5a:d8:
5d:20:20:b6:fd:6d:95:ee:bb:38:af:54:76:4b:f4:
77:90:ab:c2:cf:49:33:ad:4b:81:9a:3d:d2:65:16:
44:e5:37:0b:10:99:c1:e6:15:26:2a:5a:f7:87:c6:
d6:5e:0d:be:33:7c:92:1a:14:fb:fc:f7:1e:ff:db:
8d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:3F:66:2D:AE:3F:29:64:EA:20:56:7C:8E:77:9F:57:A0:87:CD:9C
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:cd:81:0b:a8:11:9a:3e:6d:8d:64:24:0b:7e:f6:3b:eb:fd:
aa:cc:40:a4:f8:20:ca:e2:16:fd:78:5c:5d:82:76:db:da:4a:
d3:95:75:2f:da:68:3c:e3:b1:26:2a:8a:97:c8:04:86:4d:72:
eb:45:6e:f6:cd:42:12:a6:bd:7d:a4:c4:82:29:b1:81:f4:6c:
82:71:da:95:54:2f:5d:84:a6:26:39:c0:14:ba:10:ca:42:e8:
12:84:22:56:e4:4d:f4:0e:5f:70:58:02:b8:16:3f:5c:50:b7:
ae:a4:f5:23:b7:14:7e:a7:f8:3b:5c:d9:eb:2b:22:6d:e1:bb:
6a:9b:2d:42:05:c0:f8:f7:33:87:fb:cb:3f:72:b2:67:8b:2d:
f5:be:5f:c8:72:97:0a:6e:f8:51:92:ea:21:ee:db:e0:21:2e:
ca:5e:f6:ed:a4:b9:f6:09:e1:60:8f:02:2f:e0:4b:3d:1d:de:
b6:4a:f3:93:ef:69:7e:29:55:e6:e7:62:a3:fa:54:e5:d4:30:
89:d5:20:cb:6b:59:9f:fa:a8:ac:af:de:98:f9:76:cc:c9:72:
6e:52:17:bc:3d:bd:0b:1b:06:e2:d4:14:08:cb:93:2e:76:72:
11:86:8a:09:6c:43:bc:e4:ba:3b:22:d9:6e:16:e8:87:00:a9:
bb:79:24:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdympP2Vc8Qe6mDlVMSoPBjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NjZmNzM4NTAwNWQ1YmU2MTAxNzI3Mzg4ZTFiMzI3MWY2
NDRkZTQwHhcNMjUwNjE1MDgwMDIyWhcNMjUwNjE2MDgwMDIyWjAzMTEwLwYDVQQD
Eyg3YjNmNjYyZGFlM2YyOTY0ZWEyMDU2N2M4ZTc3OWY1N2EwODdjZDljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYLdST+V0NsvTfBFNCZ4i7/jnzz7
ilQwxhc9MPofNaXYCzPVTwmxGjy4bSSS7SYuU9EWWi7vIqBvulikCUE3J68rMTyx
utUH8pPgYJCaE15vRvC1h97BAA9l8pqVlItwcSRuLakjzxxoSsZsuVUzMVLcs9Ep
EBn6CgkCXgwnjAEczOEIVGgNoGgSd/PbV9OceX6sDz99iNNeMtLvcCMHhm4mO6bA
PPuErrnvz2PU2FXDRnjwaSZCHMbaDdR08MkwWthdICC2/W2V7rs4r1R2S/R3kKvC
z0kzrUuBmj3SZRZE5TcLEJnB5hUmKlr3h8bWXg2+M3ySGhT7/Pce/9uNQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHs/Zi2uPylk6iBWfI53n1egh82cMB8GA1UdIwQY
MBaAFDhm9zhQBdW+YQFyc4jhsycfZE3kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUt
ZTAxNWJmM2YzM2Q3LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUtZTAxNWJmM2YzM2Q3
LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABM2BC6gR
mj5tjWQkC372O+v9qsxApPggyuIW/XhcXYJ229pK05V1L9poPOOxJiqKl8gEhk1y
60Vu9s1CEqa9faTEgimxgfRsgnHalVQvXYSmJjnAFLoQykLoEoQiVuRN9A5fcFgC
uBY/XFC3rqT1I7cUfqf4O1zZ6ysibeG7apstQgXA+Pczh/vLP3KyZ4st9b5fyHKX
Cm74UZLqIe7b4CEuyl727aS59gnhYI8CL+BLPR3etkrzk+9pfilV5udio/pU5dQw
idUgy2tZn/qorK/emPl2zMlyblIXvD29CxsG4tQUCMuTLnZyEYaKCWxDvOS6OyLZ
bhbohwCpu3kkxg==
-----END CERTIFICATE-----
Generated at Sun Jun 15 11:42:54 2025 by rpki-client