Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
File: OJsvo2UTg6f8aoatulbHxiB9dWg.mft (raw, json)
Hash identifier: D6U5Fm7TQ86gOD6380WFkp24V6rJFtDM/xgSMKAIAPE=
Subject key identifier: FD:62:4C:78:E1:EF:EA:54:CD:2F:33:62:8C:B9:93:0B:E7:AE:95:9A
Authority key identifier: 38:9B:2F:A3:65:13:83:A7:FC:6A:86:AD:BA:56:C7:C6:20:7D:75:68
Certificate issuer: /CN=389b2fa3651383a7fc6a86adba56c7c6207d7568
Certificate serial: 01976F6304C58BDC69DB8A22B8D7F661C0DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
Manifest number: 0D79
Signing time: Sat 14 Jun 2025 17:00:49 +0000
Manifest this update: Sat 14 Jun 2025 17:00:49 +0000
Manifest next update: Sun 15 Jun 2025 17:00:49 +0000
Files and hashes: 1: LVniV-fBUsD2XHyiKXh59lNaKck.roa (hash: e7ROoJyN3pM39RDR+x9hRmjX8OTAnl8OOTQ8mCyFwtU=)
2: OJsvo2UTg6f8aoatulbHxiB9dWg.crl (hash: wbhkgkBUgwgM9DOhQQVCEnfHcPT5ac5Dttv+IoPwmzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 17:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:63:04:c5:8b:dc:69:db:8a:22:b8:d7:f6:61:c0:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389b2fa3651383a7fc6a86adba56c7c6207d7568
Validity
Not Before: Jun 14 17:00:49 2025 GMT
Not After : Jun 15 17:00:49 2025 GMT
Subject: CN=fd624c78e1efea54cd2f33628cb9930be7ae959a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f3:ca:e4:a8:8d:67:db:38:9e:72:64:3f:58:
5a:81:df:2c:2e:7d:61:8a:5e:43:38:e4:ad:4b:34:
d8:87:80:4f:ed:1a:7a:f1:d9:1e:d7:53:e7:3b:2c:
09:14:e7:11:ab:ba:d2:f3:26:10:17:47:24:d3:97:
9c:13:11:c2:f1:7f:89:48:a7:c9:a5:b1:8c:07:92:
b4:91:aa:05:58:c1:a5:6e:08:bb:78:40:13:4b:ab:
fa:85:21:f7:56:ce:dd:4a:5b:f4:1e:0f:7f:a0:e9:
8b:94:10:94:0d:09:0c:15:0b:88:df:09:fd:94:1b:
77:f1:83:dc:24:eb:c0:f9:41:c6:41:f6:9e:c0:60:
e0:bb:6f:51:e0:c2:02:1f:f5:a1:e2:54:e1:af:77:
87:84:e6:c1:ad:78:66:12:d8:c8:18:ad:fb:6e:e2:
23:d4:aa:79:fc:b7:35:a8:44:a4:11:94:d7:c1:30:
8d:4d:f4:51:14:19:d9:c4:2f:c6:da:04:61:ca:a7:
83:e1:93:a1:84:18:29:cf:4d:ae:a8:aa:35:11:49:
fc:ee:7b:31:68:03:d7:80:f6:2c:b4:33:33:27:3e:
a7:a2:e4:f0:9f:61:08:70:c6:96:4e:66:46:f2:0a:
d5:3e:c2:f4:60:0b:f7:c2:66:0e:b3:22:c0:16:58:
c3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:62:4C:78:E1:EF:EA:54:CD:2F:33:62:8C:B9:93:0B:E7:AE:95:9A
X509v3 Authority Key Identifier:
keyid:38:9B:2F:A3:65:13:83:A7:FC:6A:86:AD:BA:56:C7:C6:20:7D:75:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:a8:6e:02:83:40:30:38:7c:69:16:75:bf:1f:c4:48:38:c0:
56:ad:b0:47:4d:c9:db:3b:a5:8a:57:8b:ea:a3:ec:6f:5c:05:
df:a9:d4:57:35:e6:33:ce:70:32:40:e5:cf:49:9c:42:16:4e:
92:e3:55:27:ad:26:74:1f:8d:09:58:14:b1:5f:f5:96:ce:68:
f2:51:85:59:0b:e9:5e:60:b3:2f:a5:02:a4:e8:12:ac:11:a1:
16:1f:05:e8:ba:bd:d9:58:a0:44:ee:81:12:fc:d8:be:29:59:
b9:9e:84:61:f8:1d:8c:2d:c1:b0:79:43:99:20:8b:0b:47:88:
08:65:76:c2:70:1d:e1:c3:c4:07:63:6f:e9:17:37:1a:cc:a2:
17:e8:d8:78:e8:1e:b7:d4:95:89:d3:52:9e:c1:84:12:a7:22:
0b:6a:2b:3c:25:f8:11:17:e7:09:54:3b:ad:d7:a1:9c:52:e6:
51:0e:ad:65:7f:b9:7f:72:08:82:79:0a:b0:39:7e:88:ed:d5:
86:ed:b2:ac:36:3a:88:2c:1e:b1:f1:02:6e:36:bd:c2:85:5c:
74:27:e1:db:ca:ab:e5:3d:35:7f:7f:2b:6c:e5:47:44:8f:81:
aa:15:4c:55:e5:28:d1:24:2b:d8:e5:0b:03:54:b0:97:63:1a:
45:da:2d:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvYwTFi9xp24oiuNf2YcDeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4OWIyZmEzNjUxMzgzYTdmYzZhODZhZGJhNTZjN2M2MjA3
ZDc1NjgwHhcNMjUwNjE0MTcwMDQ5WhcNMjUwNjE1MTcwMDQ5WjAzMTEwLwYDVQQD
EyhmZDYyNGM3OGUxZWZlYTU0Y2QyZjMzNjI4Y2I5OTMwYmU3YWU5NTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmfPK5KiNZ9s4nnJkP1hagd8sLn1h
il5DOOStSzTYh4BP7Rp68dke11PnOywJFOcRq7rS8yYQF0ck05ecExHC8X+JSKfJ
pbGMB5K0kaoFWMGlbgi7eEATS6v6hSH3Vs7dSlv0Hg9/oOmLlBCUDQkMFQuI3wn9
lBt38YPcJOvA+UHGQfaewGDgu29R4MICH/Wh4lThr3eHhObBrXhmEtjIGK37buIj
1Kp5/Lc1qESkEZTXwTCNTfRRFBnZxC/G2gRhyqeD4ZOhhBgpz02uqKo1EUn87nsx
aAPXgPYstDMzJz6nouTwn2EIcMaWTmZG8grVPsL0YAv3wmYOsyLAFljDuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP1iTHjh7+pUzS8zYoy5kwvnrpWaMB8GA1UdIwQY
MBaAFDibL6NlE4On/GqGrbpWx8YgfXVoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0pzdm8yVVRnNmY4YW9hdHVsYkh4aUI5ZFdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS8xYWQyNmYtYTMzZS00MDY5LWE4MDIt
MzczYjUyMmE4MjFkLzEvT0pzdm8yVVRnNmY4YW9hdHVsYkh4aUI5ZFdnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS8xYWQyNmYtYTMzZS00MDY5LWE4MDItMzczYjUyMmE4MjFk
LzEvT0pzdm8yVVRnNmY4YW9hdHVsYkh4aUI5ZFdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwKhuAoNA
MDh8aRZ1vx/ESDjAVq2wR03J2zulileL6qPsb1wF36nUVzXmM85wMkDlz0mcQhZO
kuNVJ60mdB+NCVgUsV/1ls5o8lGFWQvpXmCzL6UCpOgSrBGhFh8F6Lq92VigRO6B
EvzYvilZuZ6EYfgdjC3BsHlDmSCLC0eICGV2wnAd4cPEB2Nv6Rc3GsyiF+jYeOge
t9SVidNSnsGEEqciC2orPCX4ERfnCVQ7rdehnFLmUQ6tZX+5f3IIgnkKsDl+iO3V
hu2yrDY6iCwesfECbja9woVcdCfh28qr5T01f38rbOVHRI+BqhVMVeUo0SQr2OUL
A1Swl2MaRdotSA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 23:46:30 2025 by rpki-client