Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
File: iOpSVfiNS5VxicFC-KxWgcUMaKY.mft (raw, json)
Hash identifier: +/9anK8nyusYwWeFlkFHqOrSHZ4i0CwQrGzF08ff+QE=
Subject key identifier: F7:16:89:00:C5:02:4B:41:C8:81:08:CB:41:A9:55:E0:92:5E:1C:6F
Authority key identifier: 88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
Certificate issuer: /CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Certificate serial: 01978846A831510898FF182A2B3B921C96E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
Manifest number: 0821
Signing time: Thu 19 Jun 2025 13:00:21 +0000
Manifest this update: Thu 19 Jun 2025 13:00:21 +0000
Manifest next update: Fri 20 Jun 2025 13:00:21 +0000
Files and hashes: 1: OdavAlmZTVSUEn8DEUG0x7Aup4c.roa (hash: zvm6Bet4M7SswbKtgyqQXpZEDV7VAUhO/RsUj5lDxjA=)
2: iOpSVfiNS5VxicFC-KxWgcUMaKY.crl (hash: EXvZDBBoQmgkhssBIYED+WfUynZLIKal2hmR8QK9ZQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 10:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:88:46:a8:31:51:08:98:ff:18:2a:2b:3b:92:1c:96:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Validity
Not Before: Jun 19 13:00:21 2025 GMT
Not After : Jun 20 13:00:21 2025 GMT
Subject: CN=f7168900c5024b41c88108cb41a955e0925e1c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8d:53:fd:92:c9:41:3b:94:4c:b1:41:6a:05:
ef:bd:85:c7:6f:6f:79:cc:90:d4:79:70:e6:a3:34:
fa:5f:d3:42:c3:65:b2:58:59:67:d8:5a:67:0b:6e:
33:ea:a8:85:00:94:1b:ac:a9:5d:bd:18:c1:7a:47:
05:20:3a:5b:99:55:f5:b4:e8:c9:04:4d:a5:c2:5b:
d9:c1:53:6f:3a:b1:d9:f7:44:48:ac:f3:77:dd:4b:
de:c0:9b:a5:1e:85:27:d4:7b:21:34:fe:58:e0:bf:
ed:0a:24:65:af:2e:99:77:b5:ff:04:bf:4c:4e:9d:
2b:02:02:ce:98:67:d4:be:bc:30:cf:26:63:e1:44:
68:df:c8:f2:50:3e:b3:35:0f:e3:70:db:59:1f:32:
4d:02:ac:48:40:21:cb:d5:90:ef:cc:e5:4f:e5:76:
f9:ee:1f:eb:82:2f:9e:7b:5e:25:13:7f:ca:c7:17:
9e:44:92:66:80:d3:6a:a7:b2:95:85:16:4a:77:24:
c8:17:cd:2b:b5:74:2f:b2:3e:69:ec:1e:0c:28:9f:
6b:62:99:6e:ec:5a:61:4f:b4:9b:82:32:3e:b0:15:
35:b6:50:1c:38:41:bd:df:63:0c:e5:0b:e2:8d:74:
cd:00:27:c9:03:1e:55:03:c1:1e:e9:c7:6f:5f:4f:
a7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:16:89:00:C5:02:4B:41:C8:81:08:CB:41:A9:55:E0:92:5E:1C:6F
X509v3 Authority Key Identifier:
keyid:88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:d2:d8:da:59:e4:a7:51:30:e8:ba:11:4e:7d:cb:11:e0:c4:
af:95:9d:51:b4:78:bf:00:6c:19:c0:74:24:6a:2c:2e:87:ee:
98:9f:7d:18:d6:94:d6:6e:8d:59:cd:81:4e:20:f0:93:f4:5a:
85:c9:2e:87:33:86:cd:9e:15:a5:b2:8f:c2:e7:03:09:0e:da:
8a:0c:c7:a2:65:45:f2:be:3f:2a:89:9d:61:16:58:c8:7b:e8:
83:5f:d1:aa:62:2a:45:52:51:43:f0:15:c0:9d:69:04:53:74:
c6:2f:72:5d:15:cf:a5:91:74:42:20:d2:d1:d0:04:71:6d:49:
ad:a0:e2:11:de:2b:17:7c:4f:2f:65:a3:b6:43:ce:cc:77:f8:
11:fc:fa:31:32:34:11:a0:ae:b6:df:fe:ec:d7:61:19:ba:8f:
2f:65:22:94:3a:13:4d:48:8f:70:19:95:22:cf:7d:75:01:93:
77:70:a1:af:a4:ac:82:ed:37:90:03:89:73:48:fa:fa:c7:7a:
f1:fd:f1:6b:d7:34:21:2f:1a:31:10:87:71:46:17:48:0e:f6:
ad:ea:e8:38:fa:25:a1:69:36:93:28:0d:0f:5b:fc:0f:9d:de:
b5:d4:d5:32:7e:cd:84:0f:3b:93:06:d9:fb:b2:92:92:e8:ac:
0a:65:c8:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeIRqgxUQiY/xgqKzuSHJbpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZWE1MjU1Zjg4ZDRiOTU3MTg5YzE0MmY4YWM1NjgxYzUw
YzY4YTYwHhcNMjUwNjE5MTMwMDIxWhcNMjUwNjIwMTMwMDIxWjAzMTEwLwYDVQQD
EyhmNzE2ODkwMGM1MDI0YjQxYzg4MTA4Y2I0MWE5NTVlMDkyNWUxYzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvI1T/ZLJQTuUTLFBagXvvYXHb295
zJDUeXDmozT6X9NCw2WyWFln2FpnC24z6qiFAJQbrKldvRjBekcFIDpbmVX1tOjJ
BE2lwlvZwVNvOrHZ90RIrPN33UvewJulHoUn1HshNP5Y4L/tCiRlry6Zd7X/BL9M
Tp0rAgLOmGfUvrwwzyZj4URo38jyUD6zNQ/jcNtZHzJNAqxIQCHL1ZDvzOVP5Xb5
7h/rgi+ee14lE3/KxxeeRJJmgNNqp7KVhRZKdyTIF80rtXQvsj5p7B4MKJ9rYplu
7FphT7SbgjI+sBU1tlAcOEG932MM5QvijXTNACfJAx5VA8Ee6cdvX0+nWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPcWiQDFAktByIEIy0GpVeCSXhxvMB8GA1UdIwQY
MBaAFIjqUlX4jUuVcYnBQvisVoHFDGimMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaU9wU1ZmaU5TNVZ4aWNGQy1LeFdnY1VNYUtZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iYjg3MjctNzhmNy00MDFmLTkzMzkt
ZTdjZTI2ODg0YmU2LzEvaU9wU1ZmaU5TNVZ4aWNGQy1LeFdnY1VNYUtZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iYjg3MjctNzhmNy00MDFmLTkzMzktZTdjZTI2ODg0YmU2
LzEvaU9wU1ZmaU5TNVZ4aWNGQy1LeFdnY1VNYUtZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV9LY2lnk
p1Ew6LoRTn3LEeDEr5WdUbR4vwBsGcB0JGosLofumJ99GNaU1m6NWc2BTiDwk/Ra
hckuhzOGzZ4VpbKPwucDCQ7aigzHomVF8r4/KomdYRZYyHvog1/RqmIqRVJRQ/AV
wJ1pBFN0xi9yXRXPpZF0QiDS0dAEcW1JraDiEd4rF3xPL2WjtkPOzHf4Efz6MTI0
EaCutt/+7NdhGbqPL2UilDoTTUiPcBmVIs99dQGTd3Chr6Ssgu03kAOJc0j6+sd6
8f3xa9c0IS8aMRCHcUYXSA72reroOPoloWk2kygND1v8D53etdTVMn7NhA87kwbZ
+7KSkuisCmXIiA==
-----END CERTIFICATE-----
Generated at Thu Jun 19 19:49:47 2025 by rpki-client