Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
File: 1OKXHl2BaclArwINsCe-2tiZFZA.mft (raw, json)
Hash identifier: Q5w3xoR0+GIth54czm7eYTWpNanooKX67iYfmxufkNU=
Subject key identifier: 2C:47:13:FB:70:99:67:BB:6B:1D:6B:E4:63:C2:9B:24:D7:73:83:5A
Authority key identifier: D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
Certificate issuer: /CN=d4e2971e5d8169c940af020db027bedad8991590
Certificate serial: 01976A05AB83E9431787BC9914B5E203C66C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
Manifest number: 1591
Signing time: Fri 13 Jun 2025 16:00:45 +0000
Manifest this update: Fri 13 Jun 2025 16:00:45 +0000
Manifest next update: Sat 14 Jun 2025 16:00:45 +0000
Files and hashes: 1: 1OKXHl2BaclArwINsCe-2tiZFZA.crl (hash: g1TS6Snv6uvItcZIreGrCFayMoJjlKQX1Y/lw9q6N08=)
2: JSqJ02JsxZMyq1FZ1Ds1WnAXfzM.roa (hash: FrjQUqzgc9bbbA26gpxWpuyB85Zjnu+GzKv9yBO8vww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:ab:83:e9:43:17:87:bc:99:14:b5:e2:03:c6:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2971e5d8169c940af020db027bedad8991590
Validity
Not Before: Jun 13 16:00:45 2025 GMT
Not After : Jun 14 16:00:45 2025 GMT
Subject: CN=2c4713fb709967bb6b1d6be463c29b24d773835a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:94:34:01:bc:fb:7d:89:aa:0a:f1:22:60:d4:
45:14:1a:e1:f4:be:1a:73:73:60:53:19:75:50:66:
cb:55:cd:60:13:72:e8:a6:84:33:54:69:a6:1b:62:
e4:8d:e3:96:91:83:b6:56:59:85:cf:0a:48:ba:0a:
05:28:04:08:95:16:ce:b3:49:45:6a:1f:b9:fc:aa:
cb:68:b6:e7:cc:71:32:47:88:27:7a:94:65:b6:a1:
5e:f6:85:6d:fc:32:81:a8:7d:f8:6a:de:26:65:5a:
4f:80:d6:cb:11:db:d1:b4:51:17:56:e7:b5:11:44:
03:9c:b6:a1:9f:07:9c:44:8b:08:2b:45:83:19:c4:
4c:61:1c:42:67:8e:c9:3c:f7:46:53:63:2a:43:1c:
79:dc:ce:8c:ba:70:f7:f4:b2:7c:46:d3:0a:9f:7f:
42:1f:d9:63:6d:2b:3d:91:ab:dc:f6:89:b6:1c:8f:
da:8d:14:08:e9:8c:9c:ca:18:e2:93:23:38:f4:39:
fe:eb:0a:f5:0a:16:04:21:2a:1e:f8:0a:eb:00:f0:
fa:04:da:ee:a6:b8:d5:5e:58:0f:d4:cf:84:28:01:
e7:67:6f:3a:a9:9e:5c:7e:d5:02:bc:48:1e:8b:a0:
02:f4:ca:a2:cc:dd:be:5f:5e:a4:44:3a:e1:48:20:
38:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:47:13:FB:70:99:67:BB:6B:1D:6B:E4:63:C2:9B:24:D7:73:83:5A
X509v3 Authority Key Identifier:
keyid:D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:4e:b9:6c:ce:71:aa:d4:b0:9c:d6:af:d6:72:e9:dd:f2:39:
3e:e7:d5:b9:17:9e:50:af:ca:76:48:9e:95:46:33:a3:df:d3:
29:58:25:38:09:03:69:c5:37:6b:ed:76:a9:d3:1d:3f:0d:a2:
37:54:fe:cb:05:fc:80:20:e5:8e:3c:2d:dd:3e:63:09:65:1d:
7e:0a:66:cb:ca:19:44:a5:62:d3:d7:73:6a:0b:58:48:cf:d6:
a2:f5:a1:81:6b:f0:97:56:98:02:1b:d7:a8:0f:4f:31:ef:fb:
ab:3f:3d:54:6d:25:8f:e2:3c:07:f6:9c:1e:11:8a:5d:70:48:
69:4a:f4:47:d6:5a:e2:cf:b7:c0:1a:77:f4:99:b7:d9:f0:41:
e3:e7:38:65:17:6e:be:3e:a4:83:28:c6:ce:d1:ab:90:11:d1:
eb:cc:ec:23:e4:5b:3a:bf:a5:62:63:9f:63:ed:cf:93:9c:1f:
e1:fc:15:a4:49:77:f9:25:fc:53:72:ae:a6:59:b5:09:92:87:
99:c8:5b:59:8e:d6:98:4b:67:5e:ec:16:0a:d0:a9:56:21:5b:
d9:a8:80:13:db:d4:9c:ff:f5:5f:82:9f:30:70:f0:a8:a5:ac:
74:55:c4:aa:c9:94:e6:8e:ef:49:4a:7b:e8:ed:b3:3e:04:b0:
17:35:60:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdqBauD6UMXh7yZFLXiA8ZsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZTI5NzFlNWQ4MTY5Yzk0MGFmMDIwZGIwMjdiZWRhZDg5
OTE1OTAwHhcNMjUwNjEzMTYwMDQ1WhcNMjUwNjE0MTYwMDQ1WjAzMTEwLwYDVQQD
EygyYzQ3MTNmYjcwOTk2N2JiNmIxZDZiZTQ2M2MyOWIyNGQ3NzM4MzVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJQ0Abz7fYmqCvEiYNRFFBrh9L4a
c3NgUxl1UGbLVc1gE3LopoQzVGmmG2LkjeOWkYO2VlmFzwpIugoFKAQIlRbOs0lF
ah+5/KrLaLbnzHEyR4gnepRltqFe9oVt/DKBqH34at4mZVpPgNbLEdvRtFEXVue1
EUQDnLahnwecRIsIK0WDGcRMYRxCZ47JPPdGU2MqQxx53M6MunD39LJ8RtMKn39C
H9ljbSs9kavc9om2HI/ajRQI6YycyhjikyM49Dn+6wr1ChYEISoe+ArrAPD6BNru
prjVXlgP1M+EKAHnZ286qZ5cftUCvEgei6AC9MqizN2+X16kRDrhSCA4sQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCxHE/twmWe7ax1r5GPCmyTXc4NaMB8GA1UdIwQY
MBaAFNTilx5dgWnJQK8CDbAnvtrYmRWQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU9LWEhsMkJhY2xBcndJTnNDZS0ydGlaRlpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80NzhhZWEtNmI5NC00OWEzLWFhN2Yt
MTg5NDkwZDYwZWE2LzEvMU9LWEhsMkJhY2xBcndJTnNDZS0ydGlaRlpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80NzhhZWEtNmI5NC00OWEzLWFhN2YtMTg5NDkwZDYwZWE2
LzEvMU9LWEhsMkJhY2xBcndJTnNDZS0ydGlaRlpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmk65bM5x
qtSwnNav1nLp3fI5PufVuReeUK/KdkielUYzo9/TKVglOAkDacU3a+12qdMdPw2i
N1T+ywX8gCDljjwt3T5jCWUdfgpmy8oZRKVi09dzagtYSM/WovWhgWvwl1aYAhvX
qA9PMe/7qz89VG0lj+I8B/acHhGKXXBIaUr0R9Za4s+3wBp39Jm32fBB4+c4ZRdu
vj6kgyjGztGrkBHR68zsI+RbOr+lYmOfY+3Pk5wf4fwVpEl3+SX8U3Kuplm1CZKH
mchbWY7WmEtnXuwWCtCpViFb2aiAE9vUnP/1X4KfMHDwqKWsdFXEqsmU5o7vSUp7
6O2zPgSwFzVgoQ==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:07:49 2025 by rpki-client