Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
File: OspQhYoYVv-gLpE1bxQjbnw4uFo.mft (raw, json)
Hash identifier: 5WdN84q6JMoHzk5tI5zS29CKxL0htcieASLigC7aBDA=
Subject key identifier: 3B:4D:67:64:15:D6:39:EC:29:CB:CD:7C:6F:E5:23:20:3C:8F:FD:63
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 01978169639BF55A94D610BB2F0C65DB988E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
Manifest number: 159F
Signing time: Wed 18 Jun 2025 05:00:56 +0000
Manifest this update: Wed 18 Jun 2025 05:00:56 +0000
Manifest next update: Thu 19 Jun 2025 05:00:56 +0000
Files and hashes: 1: 0i27NjvnFtlwbFJL8brWgH_dw8U.roa (hash: YML80PmXT345DJiCwX4apNsJ7UtnB8nEMX5Dpv2Ctsw=)
2: 1kY2nGT8PP1V1pxbzH8gDFZHRGw.roa (hash: pbZtP+N8idLMQTinI/aHUKYzG+cdVac5nacfjqhyPdo=)
3: OfxxmNtzJcdCBkWeVovM4im8aiY.roa (hash: WRZK3jUR3eiSqkPuuJOy87KYkFs/X19TJQecAHmPTCA=)
4: OspQhYoYVv-gLpE1bxQjbnw4uFo.crl (hash: +T3ajtdQojSpq+Z+Vbn6IwSeM8p+vYFSb/EguIICWJM=)
5: ct0UdU9tbjVu5vnRCDtuTGBSo4c.roa (hash: 2wetSh/WjuBgx0H+sbj7Aow3E9vqoUt+MG+BDwetShE=)
6: pZwUUb6x4Lez1tW_jvxd_X_PyY8.roa (hash: weF+c7Ta8anbMKz4f67ACPq7m1FTdbmyMymH/ZhAy3g=)
7: vFVZ9av3BvQ-ws_7EVciDYDt6Rw.roa (hash: 1s2dWFQ6yIEmp8FiTPqLYuMVpLoqmko/eqoHIt276/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:81:69:63:9b:f5:5a:94:d6:10:bb:2f:0c:65:db:98:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: Jun 18 05:00:56 2025 GMT
Not After : Jun 19 05:00:56 2025 GMT
Subject: CN=3b4d676415d639ec29cbcd7c6fe523203c8ffd63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ef:51:94:04:94:0e:4b:c3:a6:8e:3e:a6:36:
2f:f3:b9:44:ee:3d:bb:86:9c:8a:d3:dc:74:e5:23:
7a:40:59:4e:80:a4:f1:bf:67:f1:64:a9:79:41:35:
fa:92:51:fe:34:e0:0d:c0:8c:25:06:53:e8:ef:18:
a2:26:81:92:bf:23:bd:ee:a8:60:c4:92:bf:2f:46:
4c:36:03:1f:5e:bf:e8:12:60:47:00:04:20:79:e0:
94:83:5c:b5:db:10:e8:9d:16:78:1c:78:2d:d1:cf:
ef:9f:44:14:a5:c9:b3:db:e9:e3:df:c3:05:b8:9d:
06:86:a5:76:6b:f5:55:35:bb:72:88:17:ff:71:b5:
15:66:34:2b:f2:af:e8:e8:57:aa:b8:54:d8:a2:70:
cb:fc:d3:f2:b5:ca:a0:70:4c:8e:60:f0:17:8f:6b:
ad:37:2d:1a:68:8e:3a:dd:b4:a7:8d:7a:5b:cb:76:
86:e2:e2:75:94:63:83:76:0f:c8:75:b9:59:3f:bc:
25:50:99:b9:92:81:64:a8:ae:11:98:3b:a4:03:d8:
dd:21:ba:d1:21:2c:db:50:52:f3:2d:0e:15:8a:82:
83:19:44:93:1a:bb:2f:0b:ad:70:31:1e:d6:be:4f:
63:d9:95:04:6a:22:42:2a:df:06:fa:6d:75:a1:aa:
ef:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:4D:67:64:15:D6:39:EC:29:CB:CD:7C:6F:E5:23:20:3C:8F:FD:63
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:4c:8c:f4:02:85:cc:d6:c5:57:37:c8:7f:e6:f2:e6:34:a2:
39:ce:e8:f3:b3:b1:fd:bd:98:1f:08:13:b6:da:eb:31:9e:e9:
01:3c:0e:48:d9:9d:05:e5:13:be:c4:6f:00:bb:01:b6:40:f1:
c9:1e:d2:91:86:8c:0d:0b:2b:bd:c3:fd:52:4a:a3:61:6b:1b:
ea:6a:15:b3:f9:4b:86:a6:d2:34:89:8e:c2:2b:be:64:1c:dd:
ed:e8:91:a2:b7:3d:04:42:5e:a5:21:0d:99:24:e5:88:82:a0:
52:db:bf:77:84:ba:4e:5f:dc:e3:79:af:f1:c8:e4:d2:c8:ee:
03:b3:05:e2:4a:bb:72:c3:0c:c3:d1:5a:54:1a:28:1c:60:c2:
45:d4:a4:dc:fe:a3:1f:f1:0c:29:61:c2:b3:bf:ce:98:a7:60:
1a:09:dd:e1:03:8a:49:ea:fa:28:50:0c:05:b9:fd:77:4b:2b:
ff:11:47:f1:b3:ea:0e:38:7d:3a:99:8f:71:dd:0f:10:89:98:
81:b2:70:ce:c6:a4:88:79:a3:be:fc:b6:45:5b:32:05:cf:0b:
33:2b:37:92:79:66:ac:11:43:91:d9:dd:a4:32:32:f4:f1:ac:
8e:50:89:5d:6a:d2:63:19:d5:e2:df:52:b6:c9:83:92:d3:cd:
ba:17:f3:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeBaWOb9VqU1hC7Lwxl25iOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhY2E1MDg1OGExODU2ZmZhMDJlOTEzNTZmMTQyMzZlN2Mz
OGI4NWEwHhcNMjUwNjE4MDUwMDU2WhcNMjUwNjE5MDUwMDU2WjAzMTEwLwYDVQQD
EygzYjRkNjc2NDE1ZDYzOWVjMjljYmNkN2M2ZmU1MjMyMDNjOGZmZDYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApu9RlASUDkvDpo4+pjYv87lE7j27
hpyK09x05SN6QFlOgKTxv2fxZKl5QTX6klH+NOANwIwlBlPo7xiiJoGSvyO97qhg
xJK/L0ZMNgMfXr/oEmBHAAQgeeCUg1y12xDonRZ4HHgt0c/vn0QUpcmz2+nj38MF
uJ0GhqV2a/VVNbtyiBf/cbUVZjQr8q/o6FequFTYonDL/NPytcqgcEyOYPAXj2ut
Ny0aaI463bSnjXpby3aG4uJ1lGODdg/IdblZP7wlUJm5koFkqK4RmDukA9jdIbrR
ISzbUFLzLQ4VioKDGUSTGrsvC61wMR7Wvk9j2ZUEaiJCKt8G+m11oarv8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDtNZ2QV1jnsKcvNfG/lIyA8j/1jMB8GA1UdIwQY
MBaAFDrKUIWKGFb/oC6RNW8UI258OLhaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3NwUWhZb1lWdi1nTHBFMWJ4UWpibnc0dUZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8xMmI5MzctODkwZC00N2I1LWEwNDEt
MzMxZDdmYzc3YmQ0LzEvT3NwUWhZb1lWdi1nTHBFMWJ4UWpibnc0dUZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8xMmI5MzctODkwZC00N2I1LWEwNDEtMzMxZDdmYzc3YmQ0
LzEvT3NwUWhZb1lWdi1nTHBFMWJ4UWpibnc0dUZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAREyM9AKF
zNbFVzfIf+by5jSiOc7o87Ox/b2YHwgTttrrMZ7pATwOSNmdBeUTvsRvALsBtkDx
yR7SkYaMDQsrvcP9UkqjYWsb6moVs/lLhqbSNImOwiu+ZBzd7eiRorc9BEJepSEN
mSTliIKgUtu/d4S6Tl/c43mv8cjk0sjuA7MF4kq7csMMw9FaVBooHGDCRdSk3P6j
H/EMKWHCs7/OmKdgGgnd4QOKSer6KFAMBbn9d0sr/xFH8bPqDjh9OpmPcd0PEImY
gbJwzsakiHmjvvy2RVsyBc8LMys3knlmrBFDkdndpDIy9PGsjlCJXWrSYxnV4t9S
tsmDktPNuhfzQQ==
-----END CERTIFICATE-----
Generated at Wed Jun 18 07:52:46 2025 by rpki-client