Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
File: Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft (raw, json)
Hash identifier: 9KBLI4Ob0S5AYhN6RTtr1vAxxYuB8VT2jNWkFihE7Tk=
Subject key identifier: C1:54:A5:C8:EC:59:63:B1:03:D3:22:2F:DF:66:C0:D1:5B:F7:0F:63
Authority key identifier: 39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
Certificate issuer: /CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Certificate serial: 019875D06233C0B88CF9570B526C05B7B314
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
Manifest number: 1615
Signing time: Mon 04 Aug 2025 16:00:47 +0000
Manifest this update: Mon 04 Aug 2025 16:00:47 +0000
Manifest next update: Tue 05 Aug 2025 16:00:47 +0000
Files and hashes: 1: Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl (hash: n6ZkL6av10yB+mMR7nuApKZ6Lf+bG0WCEx3meljO/OI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d0:62:33:c0:b8:8c:f9:57:0b:52:6c:05:b7:b3:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Validity
Not Before: Aug 4 16:00:47 2025 GMT
Not After : Aug 5 16:00:47 2025 GMT
Subject: CN=c154a5c8ec5963b103d3222fdf66c0d15bf70f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0f:9a:5f:df:39:c3:eb:16:34:33:84:22:68:
1f:ca:be:ae:5b:8c:82:00:a1:b1:ae:5f:70:4b:c5:
b6:96:85:47:e1:8e:50:54:2b:f6:61:c1:e1:aa:85:
8c:da:73:51:e0:dd:35:87:21:7d:ac:17:de:23:fb:
7c:f6:fb:2d:83:e4:24:f2:9f:c8:3c:1f:4b:20:94:
3f:87:a1:65:e0:4b:96:00:b4:7f:f7:fa:dd:d4:e2:
dd:db:42:d3:d1:b3:54:27:a7:d0:f7:b6:3e:e9:77:
42:fb:fc:1a:d6:44:a0:35:c8:81:77:41:a0:61:95:
a0:50:38:66:ff:a8:58:42:cb:5f:3e:bd:69:1a:97:
f3:a0:7c:b2:27:1a:17:0c:eb:51:46:a0:ce:9b:bb:
33:4e:a2:fb:06:2f:bf:6c:da:95:72:02:fd:20:c9:
b7:0b:cd:31:cf:33:e9:19:98:94:4a:62:bd:10:17:
22:7e:af:c3:7c:63:15:ae:27:4e:2e:45:e3:0e:70:
5d:0c:6b:33:c1:84:68:d0:72:33:67:8d:65:4b:27:
cc:ef:3d:12:b1:98:ee:4d:c1:3a:22:7e:ba:c2:dd:
ec:57:ee:1f:05:3e:3a:83:d5:12:44:20:7c:1e:cc:
67:cd:4a:b7:94:ab:cf:4b:47:21:3d:3a:f4:5d:8b:
1b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:54:A5:C8:EC:59:63:B1:03:D3:22:2F:DF:66:C0:D1:5B:F7:0F:63
X509v3 Authority Key Identifier:
keyid:39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:d2:16:f7:f3:42:6b:1b:ea:8d:44:59:06:1c:60:03:e3:9b:
66:b9:18:12:75:2d:a5:6d:d4:29:87:25:9b:d5:a1:f1:0d:b8:
19:12:45:df:c9:dd:5c:62:4a:25:87:a6:2f:c0:65:4c:9b:c7:
4a:32:44:da:d3:67:1f:0c:82:40:56:79:c0:a5:09:20:63:65:
68:ea:19:84:6e:47:4b:67:d8:a8:85:e0:5f:48:ef:a4:b1:93:
da:ac:e2:f2:f7:2f:fc:12:02:d3:9a:20:8b:02:a5:ad:fb:33:
33:f6:21:8e:88:26:eb:03:c5:d1:97:05:77:3d:6b:dd:63:6c:
6d:f4:b4:ed:18:ad:c9:5b:3e:59:78:14:82:66:69:1d:9d:31:
c6:16:99:8d:e1:73:99:a5:20:f0:73:66:1f:ff:e6:da:a5:8d:
5e:7c:13:5c:a6:11:17:a4:59:4d:e1:3a:16:8c:aa:89:9e:b8:
60:4d:63:48:e9:40:11:84:35:58:6b:f7:f7:37:5d:49:24:3e:
b5:29:86:d9:93:3b:b4:01:eb:82:c5:d8:87:cc:dc:a4:1a:04:
10:6a:75:ed:86:4f:c5:c4:a7:0d:5b:b8:3b:d7:2b:7d:c8:f2:
98:e2:8e:2e:3a:83:ca:12:67:e7:69:ed:42:42:9d:54:e3:91:
a1:7d:da:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh10GIzwLiM+VcLUmwFt7MUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5Y2QxZDViYjg4OTU4YzY5Y2JkZGU5MGE5ZTA1NmI0OGM0
ZmFiZjgwHhcNMjUwODA0MTYwMDQ3WhcNMjUwODA1MTYwMDQ3WjAzMTEwLwYDVQQD
EyhjMTU0YTVjOGVjNTk2M2IxMDNkMzIyMmZkZjY2YzBkMTViZjcwZjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApg+aX985w+sWNDOEImgfyr6uW4yC
AKGxrl9wS8W2loVH4Y5QVCv2YcHhqoWM2nNR4N01hyF9rBfeI/t89vstg+Qk8p/I
PB9LIJQ/h6Fl4EuWALR/9/rd1OLd20LT0bNUJ6fQ97Y+6XdC+/wa1kSgNciBd0Gg
YZWgUDhm/6hYQstfPr1pGpfzoHyyJxoXDOtRRqDOm7szTqL7Bi+/bNqVcgL9IMm3
C80xzzPpGZiUSmK9EBcifq/DfGMVridOLkXjDnBdDGszwYRo0HIzZ41lSyfM7z0S
sZjuTcE6In66wt3sV+4fBT46g9USRCB8HsxnzUq3lKvPS0chPTr0XYsbkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMFUpcjsWWOxA9MiL99mwNFb9w9jMB8GA1UdIwQY
MBaAFDnNHVu4iVjGnL3ekKngVrSMT6v4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2MwZFc3aUpXTWFjdmQ2UXFlQld0SXhQcV9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi81N2FjN2YtZjVjOC00MGZmLTgyNWMt
NDZhODVhMjhlNzQ5LzEvT2MwZFc3aUpXTWFjdmQ2UXFlQld0SXhQcV9nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi81N2FjN2YtZjVjOC00MGZmLTgyNWMtNDZhODVhMjhlNzQ5
LzEvT2MwZFc3aUpXTWFjdmQ2UXFlQld0SXhQcV9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWNIW9/NC
axvqjURZBhxgA+ObZrkYEnUtpW3UKYclm9Wh8Q24GRJF38ndXGJKJYemL8BlTJvH
SjJE2tNnHwyCQFZ5wKUJIGNlaOoZhG5HS2fYqIXgX0jvpLGT2qzi8vcv/BIC05og
iwKlrfszM/Yhjogm6wPF0ZcFdz1r3WNsbfS07RityVs+WXgUgmZpHZ0xxhaZjeFz
maUg8HNmH//m2qWNXnwTXKYRF6RZTeE6FoyqiZ64YE1jSOlAEYQ1WGv39zddSSQ+
tSmG2ZM7tAHrgsXYh8zcpBoEEGp17YZPxcSnDVu4O9crfcjymOKOLjqDyhJn52nt
QkKdVOORoX3aWg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 18:59:15 2025 by rpki-client