Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
File: oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json)
Hash identifier: DYjfG3Lp1YcDo5nA8m09NvwO76GXuiGDfGAfGhAiptc=
Subject key identifier: 5A:2A:FE:83:02:92:8F:E9:4D:28:5C:05:A0:9E:8B:C9:5F:0E:99:E7
Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
Certificate issuer: /CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Certificate serial: 01977978B1E027D835ABA0A4BC58FF4A53AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
Manifest number: 02DF
Signing time: Mon 16 Jun 2025 16:00:42 +0000
Manifest this update: Mon 16 Jun 2025 16:00:42 +0000
Manifest next update: Tue 17 Jun 2025 16:00:42 +0000
Files and hashes: 1: 0BmC-81HN_hGVStiVWyBsG7yPOQ.roa (hash: 1DBUkLbwQ3sH8OPXtfdrx6wa0RdQ3lqLVqMY8QCHCK8=)
2: 58QzCphRddJsBqi71H5oisOTtGM.roa (hash: K7oZA9oPzuB3kuDmCdohN1gPlNbeKKgYedD/MB4pxbM=)
3: K5VqopWIERNLlg6XYIHxbSMQwf8.roa (hash: 6CqhTE0o4WqNXO4cXlNrVv+QBipio9ZfLg1pbcvRhvU=)
4: Qt9hOGMkdfDH8ID_bHwfLmJlE60.roa (hash: ARZiY2rT8rE43lKmT9EIHjzaS4HpYkA+YcbbFMZTS4E=)
5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: MBcKRqldNdSUulSRfrJhMQqd65j9cVlGTdjxhqBSJZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:78:b1:e0:27:d8:35:ab:a0:a4:bc:58:ff:4a:53:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Validity
Not Before: Jun 16 16:00:42 2025 GMT
Not After : Jun 17 16:00:42 2025 GMT
Subject: CN=5a2afe8302928fe94d285c05a09e8bc95f0e99e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f5:ab:83:d9:f2:29:58:47:f7:23:ae:03:ac:
96:6b:42:85:f1:25:03:3e:61:14:3a:90:b2:e8:7c:
74:20:8c:1b:c0:24:2a:9d:7a:c7:4a:96:25:e5:9d:
09:11:64:66:08:ba:e9:fa:e6:2f:cc:ee:56:46:cb:
de:0c:38:4c:b2:b9:a9:c1:99:1e:b8:b0:96:99:fe:
97:4a:65:2b:a5:50:b1:b8:35:34:9e:05:0d:77:34:
0a:c6:83:78:58:33:97:4f:ee:6e:3d:e4:7a:a6:8c:
57:66:74:34:32:cd:74:bd:5b:b1:f3:bd:8b:c2:60:
a6:8b:ed:99:59:05:73:bb:80:28:8d:ac:71:22:05:
80:72:97:68:32:5b:d2:eb:29:f5:a9:f4:79:93:e5:
89:ec:1b:05:e7:6f:ac:6c:db:3e:65:d7:8f:46:0a:
a1:96:18:f1:d2:74:c9:d0:9a:a4:73:73:c4:a3:65:
a2:3c:85:77:34:c2:4f:d3:1b:e7:9a:3f:e5:da:0b:
57:d9:69:ab:f9:4a:67:3f:06:79:4e:27:93:cd:43:
3c:b3:cd:21:30:05:f0:05:30:94:7c:db:80:18:cc:
c4:68:e8:96:28:8c:ee:60:e2:7e:19:77:c5:d4:8f:
2a:57:7a:b4:34:6e:36:71:5e:bf:e8:0a:1a:99:19:
a9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:2A:FE:83:02:92:8F:E9:4D:28:5C:05:A0:9E:8B:C9:5F:0E:99:E7
X509v3 Authority Key Identifier:
keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:7a:ad:69:20:68:7d:0f:47:7c:80:34:ba:fb:71:38:a1:b3:
a6:13:61:7d:9e:8b:57:62:2a:be:d5:68:0b:4a:95:1b:5b:a6:
98:d1:1a:13:25:eb:ff:74:e4:6a:47:21:e7:d0:35:c9:18:55:
30:d5:26:6b:cf:87:12:49:28:f4:aa:cd:34:a9:17:5b:05:c9:
d3:f1:e5:db:eb:9f:01:56:2a:29:71:fa:79:67:72:29:57:b3:
79:63:31:ac:37:9f:82:02:d6:f2:0c:f1:16:cb:9b:21:be:e6:
ce:91:94:bd:c2:3d:8d:0f:38:b3:67:25:b7:76:76:11:02:da:
d2:8b:7a:28:f7:ce:28:04:1d:02:a8:1c:9b:30:38:e8:7d:0b:
fb:6d:d5:0d:45:8f:ec:ad:5a:c7:c8:89:66:24:a4:6c:d5:f9:
cf:06:b7:7c:6b:46:c8:66:d5:13:6f:aa:29:a8:fb:7c:b1:7f:
2d:3c:13:95:a2:74:57:df:ff:e4:ee:2d:62:31:41:e0:d0:e7:
b9:81:16:30:6c:d3:53:3b:37:5c:f7:97:e9:1d:06:6e:0a:e0:
bc:65:7b:2d:a9:b6:0f:19:03:e3:17:10:62:39:32:bc:29:1e:
3e:44:0a:ac:60:88:d5:d3:66:34:4c:f6:55:d0:c6:40:aa:cd:
1e:bf:10:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd5eLHgJ9g1q6CkvFj/SlOvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExZWJmNTRkMDI4ZWU0NzY0ZjYyZjc4YWQ4NzFkYmYwMjYy
Mjg3ODgwHhcNMjUwNjE2MTYwMDQyWhcNMjUwNjE3MTYwMDQyWjAzMTEwLwYDVQQD
Eyg1YTJhZmU4MzAyOTI4ZmU5NGQyODVjMDVhMDllOGJjOTVmMGU5OWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6PWrg9nyKVhH9yOuA6yWa0KF8SUD
PmEUOpCy6Hx0IIwbwCQqnXrHSpYl5Z0JEWRmCLrp+uYvzO5WRsveDDhMsrmpwZke
uLCWmf6XSmUrpVCxuDU0ngUNdzQKxoN4WDOXT+5uPeR6poxXZnQ0Ms10vVux872L
wmCmi+2ZWQVzu4AojaxxIgWAcpdoMlvS6yn1qfR5k+WJ7BsF52+sbNs+ZdePRgqh
lhjx0nTJ0Jqkc3PEo2WiPIV3NMJP0xvnmj/l2gtX2Wmr+UpnPwZ5TieTzUM8s80h
MAXwBTCUfNuAGMzEaOiWKIzuYOJ+GXfF1I8qV3q0NG42cV6/6AoamRmpGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFoq/oMCko/pTShcBaCei8lfDpnnMB8GA1UdIwQY
MBaAFKHr9U0CjuR2T2L3ithx2/AmIoeIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8xYjE3MmEtNjFkMS00MjBjLWEzZGQt
NDdhNWJmNWIzMTNkLzEvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS8xYjE3MmEtNjFkMS00MjBjLWEzZGQtNDdhNWJmNWIzMTNk
LzEvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm3qtaSBo
fQ9HfIA0uvtxOKGzphNhfZ6LV2IqvtVoC0qVG1ummNEaEyXr/3Tkakch59A1yRhV
MNUma8+HEkko9KrNNKkXWwXJ0/Hl2+ufAVYqKXH6eWdyKVezeWMxrDefggLW8gzx
FsubIb7mzpGUvcI9jQ84s2clt3Z2EQLa0ot6KPfOKAQdAqgcmzA46H0L+23VDUWP
7K1ax8iJZiSkbNX5zwa3fGtGyGbVE2+qKaj7fLF/LTwTlaJ0V9//5O4tYjFB4NDn
uYEWMGzTUzs3XPeX6R0GbgrgvGV7Lam2DxkD4xcQYjkyvCkePkQKrGCI1dNmNEz2
VdDGQKrNHr8Qww==
-----END CERTIFICATE-----
Generated at Mon Jun 16 21:16:45 2025 by rpki-client