Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
File: Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft (raw, json)
Hash identifier: ifVGFwebg1O6swOeYnuQ5GkkcUG+HRP3FYUAWSrH6ZI=
Subject key identifier: 0E:2B:58:79:12:38:14:9C:46:D7:04:2F:DB:FC:44:DE:C0:EF:DD:FF
Authority key identifier: 3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
Certificate issuer: /CN=3aa9e9832ed25de78c3ce0501208261066281f51
Certificate serial: 019748FA99467750EA1A2D335E3FB16C5ACF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
Manifest number: 0FC4
Signing time: Sat 07 Jun 2025 06:01:12 +0000
Manifest this update: Sat 07 Jun 2025 06:01:12 +0000
Manifest next update: Sun 08 Jun 2025 06:01:12 +0000
Files and hashes: 1: Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl (hash: 0uN2pDoARr1vzRzEh5XIgLU5fVpzPtCEi2n4GZG2m2s=)
2: aWYIXcaJkiVxLLibbCxl3jRBEqg.roa (hash: is1rfoaga6D1caCReE6B6u2V3E2PMjX4LQvHyaYSnhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:99:46:77:50:ea:1a:2d:33:5e:3f:b1:6c:5a:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aa9e9832ed25de78c3ce0501208261066281f51
Validity
Not Before: Jun 7 06:01:12 2025 GMT
Not After : Jun 8 06:01:12 2025 GMT
Subject: CN=0e2b58791238149c46d7042fdbfc44dec0efddff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:48:95:6e:b9:be:61:5e:1d:31:e9:fe:f4:37:
16:15:4b:9c:22:f7:b2:50:69:52:da:68:7d:d4:ba:
b1:87:55:51:b7:af:ab:29:ff:cb:b0:f3:be:a8:89:
eb:11:37:91:4b:52:19:56:0e:c3:18:01:e1:ba:05:
2d:2f:41:1b:f3:ab:ad:23:c8:e1:dd:e0:8b:a4:84:
85:22:c8:5a:7a:1d:a9:4c:9a:29:0a:92:da:c9:da:
ca:cb:a3:22:07:14:8c:73:dd:9a:8e:2a:ef:6c:75:
d3:70:0d:ae:f5:cc:04:1c:6c:3a:0c:4f:e8:31:f9:
f9:f5:d3:2b:60:ce:95:08:ee:86:c2:05:bc:f7:49:
28:f5:1f:b5:b5:63:c6:21:24:4d:bd:9a:d9:d1:26:
0e:b9:6f:27:5e:e7:8b:21:44:40:82:aa:2b:f9:40:
3c:29:e2:8f:8f:9c:b8:c1:ec:f8:14:59:45:94:17:
d2:f5:93:28:a3:f9:5f:d2:0a:b7:99:54:bf:23:1a:
b9:65:c3:90:a3:29:6e:13:a1:75:c1:59:24:47:ee:
89:9e:de:5d:11:1e:6f:5a:83:ab:23:f8:5a:fb:52:
31:56:96:84:04:30:fd:40:9a:f4:08:58:61:78:f0:
0c:05:ce:3b:fd:9c:04:01:55:4f:d6:2f:5b:fc:97:
45:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:2B:58:79:12:38:14:9C:46:D7:04:2F:DB:FC:44:DE:C0:EF:DD:FF
X509v3 Authority Key Identifier:
keyid:3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:e2:26:1a:50:66:52:2a:50:6d:0e:46:77:f0:10:d5:3a:5e:
00:de:b5:23:40:42:7e:78:77:70:c9:37:3f:4f:a0:d7:74:0e:
fc:ab:7e:35:06:e9:2a:a4:55:e4:11:e5:c1:3a:8f:77:cc:ba:
3c:ec:0c:67:21:ba:4e:28:92:c0:b3:f2:b9:60:ef:81:0e:60:
48:c4:22:35:fd:27:99:50:00:f6:35:5d:40:e3:3a:28:c2:9a:
b4:0f:9f:9e:ad:d5:34:50:c6:00:8a:30:da:67:61:cb:c7:b3:
5a:89:fe:81:ee:b9:54:e3:e6:10:ea:9a:a8:4e:08:02:b0:18:
3c:36:da:86:89:04:a0:46:8e:53:db:e6:fc:3c:81:d3:de:2c:
31:df:63:aa:fe:0c:dd:66:dd:f3:16:93:09:79:7f:43:b9:53:
7d:53:97:0e:30:e5:1a:81:89:59:21:f1:46:54:bc:2e:4e:85:
14:95:09:b8:1a:1f:47:2b:85:58:db:2b:45:dd:7a:2d:c4:14:
51:3c:74:a5:46:73:51:02:19:32:09:42:1a:24:4b:97:8e:5b:
8d:16:08:96:ae:5f:f5:32:75:1d:69:d9:16:c8:b0:3a:66:9d:
bd:f9:18:60:68:71:3a:01:c8:ae:01:93:0c:17:72:76:77:77:
1e:08:cd:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+plGd1DqGi0zXj+xbFrPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhYTllOTgzMmVkMjVkZTc4YzNjZTA1MDEyMDgyNjEwNjYy
ODFmNTEwHhcNMjUwNjA3MDYwMTEyWhcNMjUwNjA4MDYwMTEyWjAzMTEwLwYDVQQD
EygwZTJiNTg3OTEyMzgxNDljNDZkNzA0MmZkYmZjNDRkZWMwZWZkZGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4EiVbrm+YV4dMen+9DcWFUucIvey
UGlS2mh91Lqxh1VRt6+rKf/LsPO+qInrETeRS1IZVg7DGAHhugUtL0Eb86utI8jh
3eCLpISFIshaeh2pTJopCpLaydrKy6MiBxSMc92ajirvbHXTcA2u9cwEHGw6DE/o
Mfn59dMrYM6VCO6GwgW890ko9R+1tWPGISRNvZrZ0SYOuW8nXueLIURAgqor+UA8
KeKPj5y4wez4FFlFlBfS9ZMoo/lf0gq3mVS/Ixq5ZcOQoyluE6F1wVkkR+6Jnt5d
ER5vWoOrI/ha+1IxVpaEBDD9QJr0CFhhePAMBc47/ZwEAVVP1i9b/JdFDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA4rWHkSOBScRtcEL9v8RN7A793/MB8GA1UdIwQY
MBaAFDqp6YMu0l3njDzgUBIIJhBmKB9RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3FucGd5N1NYZWVNUE9CUUVnZ21FR1lvSDFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy81ZmQyNzMtZjNhOS00NzU1LWIyM2Et
M2JiZDg4N2QwNWMyLzEvT3FucGd5N1NYZWVNUE9CUUVnZ21FR1lvSDFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy81ZmQyNzMtZjNhOS00NzU1LWIyM2EtM2JiZDg4N2QwNWMy
LzEvT3FucGd5N1NYZWVNUE9CUUVnZ21FR1lvSDFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANuImGlBm
UipQbQ5Gd/AQ1TpeAN61I0BCfnh3cMk3P0+g13QO/Kt+NQbpKqRV5BHlwTqPd8y6
POwMZyG6TiiSwLPyuWDvgQ5gSMQiNf0nmVAA9jVdQOM6KMKatA+fnq3VNFDGAIow
2mdhy8ezWon+ge65VOPmEOqaqE4IArAYPDbahokEoEaOU9vm/DyB094sMd9jqv4M
3Wbd8xaTCXl/Q7lTfVOXDjDlGoGJWSHxRlS8Lk6FFJUJuBofRyuFWNsrRd16LcQU
UTx0pUZzUQIZMglCGiRLl45bjRYIlq5f9TJ1HWnZFsiwOmadvfkYYGhxOgHIrgGT
DBdydnd3HgjNzQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:13:37 2025 by rpki-client