Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: UWMVEH3sAPhJh2boGcTrOUs11r1mSopm2wm2kMeVuYs=
Subject key identifier: 7C:73:8B:DD:B5:BB:6C:C3:39:10:3E:26:17:F0:64:99:08:28:67:10
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 019748C324365213E0DA81522C13B96E1B44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 05:00:37 +0000
Manifest this update: Sat 07 Jun 2025 05:00:37 +0000
Manifest next update: Sun 08 Jun 2025 05:00:37 +0000
Files and hashes: 1: e7noKfAbhqxWKb_WV7vm2kP8eVk.roa (hash: hWpS0joUiL0TvCY+c8SO6LZjwhfmBfd8ch+Qp+RpKHk=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: ZjgUfWuQD9q+d/wR43DTGLkeEdsujB/ukwDAY0wimmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:24:36:52:13:e0:da:81:52:2c:13:b9:6e:1b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Jun 7 05:00:37 2025 GMT
Not After : Jun 8 05:00:37 2025 GMT
Subject: CN=7c738bddb5bb6cc339103e2617f0649908286710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3f:6a:67:eb:0c:5d:bd:9a:d9:b7:71:d5:3e:
60:44:cc:c1:a6:30:de:59:ff:61:10:5c:32:ce:41:
2e:8d:88:ce:2c:18:ec:d0:59:36:9a:5c:6a:5e:4a:
95:5b:53:63:af:ac:d5:86:ec:22:a7:16:93:0a:4a:
11:46:dc:66:ee:9e:22:5a:26:65:df:00:87:27:d9:
0b:f9:ce:91:e0:7b:24:54:3c:e5:f0:0f:47:8a:1b:
5e:61:41:1c:6d:ae:4e:55:cb:21:94:e6:29:20:ed:
6f:e3:ec:dc:b5:43:21:7a:7a:01:7a:b4:7a:7e:ac:
69:ad:ba:eb:c2:96:f7:e2:93:84:6e:d0:66:51:6b:
e3:1a:79:b7:ee:d1:3c:53:d6:3c:c3:f1:c4:25:2e:
1f:0a:b1:28:28:ce:9b:e4:b0:76:44:ff:76:5b:e5:
e6:8f:f9:c7:cd:0b:04:4c:81:28:d7:2c:d4:42:65:
83:32:b0:9c:78:72:f1:d1:9b:57:4e:83:0d:6b:65:
09:56:40:99:92:fa:2a:1b:c5:02:a3:9d:02:f3:d6:
06:fc:c0:e2:46:26:5f:f5:8f:23:ee:a9:51:2c:9e:
af:85:79:d1:6f:d5:33:0d:c2:18:cd:29:6a:ac:54:
25:d9:af:f7:a2:43:1c:79:09:2a:7b:ba:73:86:99:
de:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:73:8B:DD:B5:BB:6C:C3:39:10:3E:26:17:F0:64:99:08:28:67:10
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:62:94:af:28:ca:a4:78:2d:6b:19:ec:16:f1:3d:de:01:e2:
e8:57:e3:9a:07:50:36:61:44:4f:09:9f:a4:9c:10:95:0d:37:
8e:89:21:32:81:ae:29:df:fa:1f:5c:cd:bd:dc:c4:f8:47:5a:
24:c0:1f:83:d1:9d:87:ea:7b:26:cf:42:7f:bc:1f:7c:5b:80:
52:bd:ef:f5:d9:95:38:1c:79:4f:5e:1f:4f:6c:1d:3f:77:20:
65:3e:cf:77:a8:22:3d:ab:3a:89:71:d1:de:cd:b1:47:5a:7e:
1c:56:e4:b6:92:ec:26:7e:13:d0:13:40:71:65:3c:8c:92:9e:
1c:23:0e:47:3e:68:b0:f6:eb:8d:f6:36:e8:61:be:bd:ee:d1:
2a:54:0f:96:b5:0d:45:ce:18:7b:8e:5f:87:7f:7e:6e:17:f8:
34:ca:a8:4a:b3:49:45:36:2f:ec:e4:fb:a5:4b:b1:74:f3:4d:
20:41:09:bb:b8:31:2c:68:bb:cd:3d:f6:72:23:9c:d1:79:02:
39:fc:8c:ee:32:6e:0c:9f:ca:a4:03:2f:1c:39:30:af:a1:04:
6c:14:22:aa:2d:43:d3:ee:10:ea:bb:78:46:b3:30:26:8e:12:
bd:14:83:3f:e8:04:bd:e9:48:e2:da:eb:bd:6c:96:f1:7d:d7:
d7:94:b4:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIwyQ2UhPg2oFSLBO5bhtEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOWQ2NWI5MjZmZGQ3NDNkYTViNDczZDM0MTg1ZmUxMDFi
MDVhMjgwHhcNMjUwNjA3MDUwMDM3WhcNMjUwNjA4MDUwMDM3WjAzMTEwLwYDVQQD
Eyg3YzczOGJkZGI1YmI2Y2MzMzkxMDNlMjYxN2YwNjQ5OTA4Mjg2NzEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwD9qZ+sMXb2a2bdx1T5gRMzBpjDe
Wf9hEFwyzkEujYjOLBjs0Fk2mlxqXkqVW1Njr6zVhuwipxaTCkoRRtxm7p4iWiZl
3wCHJ9kL+c6R4HskVDzl8A9HihteYUEcba5OVcshlOYpIO1v4+zctUMhenoBerR6
fqxprbrrwpb34pOEbtBmUWvjGnm37tE8U9Y8w/HEJS4fCrEoKM6b5LB2RP92W+Xm
j/nHzQsETIEo1yzUQmWDMrCceHLx0ZtXToMNa2UJVkCZkvoqG8UCo50C89YG/MDi
RiZf9Y8j7qlRLJ6vhXnRb9UzDcIYzSlqrFQl2a/3okMceQkqe7pzhpne7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHxzi921u2zDORA+JhfwZJkIKGcQMB8GA1UdIwQY
MBaAFKCdZbkm/ddD2ltHPTQYX+EBsFooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9jYmVjMzMtMDMyNS00MWU3LTgyNjYt
NzlhN2VhYTdhZTU4LzEvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9jYmVjMzMtMDMyNS00MWU3LTgyNjYtNzlhN2VhYTdhZTU4
LzEvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJWKUryjK
pHgtaxnsFvE93gHi6FfjmgdQNmFETwmfpJwQlQ03jokhMoGuKd/6H1zNvdzE+Eda
JMAfg9Gdh+p7Js9Cf7wffFuAUr3v9dmVOBx5T14fT2wdP3cgZT7Pd6giPas6iXHR
3s2xR1p+HFbktpLsJn4T0BNAcWU8jJKeHCMORz5osPbrjfY26GG+ve7RKlQPlrUN
Rc4Ye45fh39+bhf4NMqoSrNJRTYv7OT7pUuxdPNNIEEJu7gxLGi7zT32ciOc0XkC
OfyM7jJuDJ/KpAMvHDkwr6EEbBQiqi1D0+4Q6rt4RrMwJo4SvRSDP+gEvelI4trr
vWyW8X3X15S0Sw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:16:35 2025 by rpki-client