Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: fzYIUWWty3VVwr/7gw6OSBZL0iXQica34Nm96uJbnFU=
Subject key identifier: BC:17:CB:93:57:4C:1A:EB:24:D6:A4:1F:EB:EC:17:25:3E:B6:A9:24
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 01984AAF14D197E7B1AD756A5DAC2D3B3FB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 0813
Signing time: Sun 27 Jul 2025 07:00:44 +0000
Manifest this update: Sun 27 Jul 2025 07:00:44 +0000
Manifest next update: Mon 28 Jul 2025 07:00:44 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: lSH8QEKX1pZSe7AzoLD3NplrOffdIpBDk07/zN0sxDs=)
2: _QTwS8nAMSFeKK0ZzzPsIxYgPqo.roa (hash: Q/O46iBV3y1aR3ABGTzdA2RTNwov3wLVP1w6lO4+h/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:af:14:d1:97:e7:b1:ad:75:6a:5d:ac:2d:3b:3f:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: Jul 27 07:00:44 2025 GMT
Not After : Jul 28 07:00:44 2025 GMT
Subject: CN=bc17cb93574c1aeb24d6a41febec17253eb6a924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:01:2f:6e:71:a6:bb:9c:82:cc:a4:bb:d4:a2:
ae:9f:c5:b5:a9:23:f0:d1:a1:f8:0d:05:60:bb:c3:
7a:a4:6b:65:ae:df:f1:03:dd:fc:a3:33:1c:aa:b3:
f8:67:85:31:51:72:af:f9:50:41:83:43:f2:04:b5:
9b:b4:3f:25:fa:55:29:1f:bb:f8:a1:be:bc:de:dc:
10:db:e3:61:bb:7d:c7:3e:39:65:e7:ae:d9:17:a7:
6d:a4:35:a3:f8:e1:0d:21:c7:99:24:1e:96:cd:25:
e7:b2:3c:fc:bb:17:25:53:57:be:4b:fa:67:f8:5d:
f1:59:6e:2e:d0:3e:e4:42:19:02:8c:8f:77:bc:20:
7f:c8:eb:55:56:f8:1c:80:5c:a5:9f:90:83:0f:25:
8f:0d:a6:4c:b5:6d:87:f6:1a:af:a4:47:99:ff:df:
59:21:69:ee:e1:85:56:f3:c2:16:8b:5d:e1:40:6e:
97:43:d3:30:e2:75:b5:c8:45:1a:ff:01:08:e5:c0:
96:21:f1:4c:df:ec:15:5e:71:0c:96:27:d1:ea:45:
18:13:10:c2:24:f9:de:a7:53:81:49:72:fc:92:b8:
99:b4:c3:9e:21:37:7a:d7:3b:a7:3b:81:22:75:65:
32:fc:4c:68:80:79:45:5f:b4:e5:f1:e5:ac:4f:95:
6f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:17:CB:93:57:4C:1A:EB:24:D6:A4:1F:EB:EC:17:25:3E:B6:A9:24
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:e4:00:94:0e:eb:b3:bb:4b:e3:62:20:29:3a:66:a3:0e:78:
7f:ee:e7:a7:2b:d3:6f:04:f4:3b:15:fe:19:51:8c:df:fc:5e:
8e:6f:e4:45:1f:15:ef:92:03:65:09:81:bd:61:53:fe:6c:cc:
53:ea:9a:b4:91:7e:28:79:eb:fe:e8:dc:34:3c:77:43:b8:30:
de:da:b8:e3:71:b9:67:69:33:78:e2:f4:ca:8e:81:67:6f:58:
bb:88:a7:86:0f:f0:79:e9:0b:ca:5c:5b:0f:2f:8c:77:8a:73:
39:57:d8:28:cf:1a:c2:7f:cb:45:9b:85:6a:62:a8:cf:34:f0:
5c:85:8e:25:df:2f:f4:69:cd:d9:5d:3f:78:3d:51:4c:e0:bd:
06:7c:87:62:15:0e:3d:a0:ad:99:a1:4b:13:0a:33:86:19:62:
a7:7f:1f:46:aa:b8:38:c5:06:2e:b8:70:8e:2f:6d:4f:34:c1:
4a:70:fa:8e:86:6a:d3:05:bd:f4:d8:9d:e4:f8:32:74:fc:d3:
f3:6b:e1:35:cf:2b:6f:fa:26:04:cf:bd:27:fd:69:5c:c0:a8:
ee:89:f3:fb:b6:dd:7c:c8:70:0e:d8:fd:3e:6f:0c:b6:8a:37:
f3:12:d5:15:33:e2:de:93:24:a8:95:cc:b5:33:79:aa:76:cc:
cb:18:de:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhKrxTRl+exrXVqXawtOz+xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5Y2FhMGJkMjU0ZDFhODdmNGJiMzBkYjNiNTEzZmRiOWFm
NjI1ZjYwHhcNMjUwNzI3MDcwMDQ0WhcNMjUwNzI4MDcwMDQ0WjAzMTEwLwYDVQQD
EyhiYzE3Y2I5MzU3NGMxYWViMjRkNmE0MWZlYmVjMTcyNTNlYjZhOTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3gEvbnGmu5yCzKS71KKun8W1qSPw
0aH4DQVgu8N6pGtlrt/xA938ozMcqrP4Z4UxUXKv+VBBg0PyBLWbtD8l+lUpH7v4
ob683twQ2+Nhu33HPjll567ZF6dtpDWj+OENIceZJB6WzSXnsjz8uxclU1e+S/pn
+F3xWW4u0D7kQhkCjI93vCB/yOtVVvgcgFyln5CDDyWPDaZMtW2H9hqvpEeZ/99Z
IWnu4YVW88IWi13hQG6XQ9Mw4nW1yEUa/wEI5cCWIfFM3+wVXnEMlifR6kUYExDC
JPnep1OBSXL8kriZtMOeITd61zunO4EidWUy/ExogHlFX7Tl8eWsT5VvjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLwXy5NXTBrrJNakH+vsFyU+tqkkMB8GA1UdIwQY
MBaAFDnKoL0lTRqH9Lsw2ztRP9ua9iX2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xZjA5NTUtNGQ2Mi00MzNiLWIxOGMt
N2MzN2U2MzliZjBmLzEvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8xZjA5NTUtNGQ2Mi00MzNiLWIxOGMtN2MzN2U2MzliZjBm
LzEvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtuQAlA7r
s7tL42IgKTpmow54f+7npyvTbwT0OxX+GVGM3/xejm/kRR8V75IDZQmBvWFT/mzM
U+qatJF+KHnr/ujcNDx3Q7gw3tq443G5Z2kzeOL0yo6BZ29Yu4inhg/weekLylxb
Dy+Md4pzOVfYKM8awn/LRZuFamKozzTwXIWOJd8v9GnN2V0/eD1RTOC9BnyHYhUO
PaCtmaFLEwozhhlip38fRqq4OMUGLrhwji9tTzTBSnD6joZq0wW99Nid5PgydPzT
82vhNc8rb/omBM+9J/1pXMCo7onz+7bdfMhwDtj9Pm8Mtoo38xLVFTPi3pMkqJXM
tTN5qnbMyxjetQ==
-----END CERTIFICATE-----
Generated at Sun Jul 27 12:21:49 2025 by rpki-client