Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
File: Ony1ktfk7HG2eFXR38VdnQZwVHE.mft (raw, json)
Hash identifier: o89oyhBgWlAr2qUuqXXFQGr8HGPht35Lr7y04JId6S0=
Subject key identifier: 56:64:8A:A2:D7:CB:5F:CE:A3:0D:8D:33:5B:AB:A6:66:E2:02:D6:92
Authority key identifier: 3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
Certificate issuer: /CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Certificate serial: 01974EC59973B7BFE034795CB50C845B9FDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
Manifest number: 0C66
Signing time: Sun 08 Jun 2025 09:01:02 +0000
Manifest this update: Sun 08 Jun 2025 09:01:02 +0000
Manifest next update: Mon 09 Jun 2025 09:01:02 +0000
Files and hashes: 1: 5FA6usbApR1_cX5AgsEzHiEcMB4.roa (hash: 7OuczURaJl5BP/q53z8kXUiqcwX3Z4OY7NVnaBx1Pg0=)
2: Ony1ktfk7HG2eFXR38VdnQZwVHE.crl (hash: kv5/ua8v8NjObpqgDMlGAa3XcLfjjh0S3Z6nqtmeH0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 09:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:99:73:b7:bf:e0:34:79:5c:b5:0c:84:5b:9f:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Validity
Not Before: Jun 8 09:01:02 2025 GMT
Not After : Jun 9 09:01:02 2025 GMT
Subject: CN=56648aa2d7cb5fcea30d8d335baba666e202d692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5c:1c:4a:f2:ad:1a:86:97:f6:14:93:6c:ae:
8b:38:5e:2a:e5:87:3e:6b:e8:90:65:19:59:5c:8d:
84:61:2a:c3:03:b1:a6:7a:15:30:9e:ad:b3:7b:4c:
4d:d0:58:59:d9:e9:e9:64:20:de:90:88:c7:fe:37:
f7:66:14:7a:c6:f3:54:df:38:34:a0:8f:d1:68:a8:
0b:22:8a:c9:4c:b7:29:71:f1:42:ca:9d:e6:ff:fc:
9c:92:b3:8a:58:c9:e5:d8:89:ce:90:0d:de:22:d1:
ca:6c:99:38:78:b3:1f:12:71:ba:10:6f:5a:94:f1:
d0:72:46:ee:d4:a8:8b:67:80:24:dd:75:c4:49:53:
e1:c4:42:dc:20:b3:32:ee:00:68:12:d9:30:4c:74:
f5:71:38:6b:eb:a1:fd:57:39:47:1f:db:0b:a4:11:
92:be:65:da:31:9e:07:d7:00:b0:2a:c0:37:93:be:
1f:6a:f6:8e:63:c6:61:8e:db:4c:3e:43:a6:11:81:
b3:32:18:87:a9:2e:72:9e:2e:62:0e:ed:47:a7:99:
9d:d3:6f:b1:c6:f8:5d:0b:ad:4f:e8:b0:d3:1a:5d:
1c:39:bf:e1:7a:39:0e:e0:af:73:1c:0a:78:7a:ab:
23:a9:8f:d5:fb:bf:d7:76:ab:04:2b:7f:d0:53:a4:
51:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:64:8A:A2:D7:CB:5F:CE:A3:0D:8D:33:5B:AB:A6:66:E2:02:D6:92
X509v3 Authority Key Identifier:
keyid:3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:fe:c3:4f:35:52:4d:46:b9:6f:31:c4:95:1f:fa:e0:e5:ac:
a9:c5:70:1c:cf:62:6e:94:55:83:8b:4e:de:b3:1c:7c:2f:b3:
86:b0:87:47:fc:d7:08:13:3e:f4:12:2b:6d:66:1a:77:5b:bd:
06:10:ed:87:d4:0c:8f:c5:5a:a9:e5:b8:34:4d:09:d6:bc:c1:
04:04:29:fb:8b:ae:f3:a9:5e:e8:06:b6:3e:64:a2:1e:37:45:
0a:33:86:4d:a6:f0:32:9c:65:90:8c:24:49:ac:e3:d4:46:fc:
2b:70:bc:75:75:73:ec:e0:5f:72:85:11:47:bb:be:4a:2e:cf:
45:e7:0c:14:8c:14:d4:95:e7:e5:68:99:17:3e:72:41:73:08:
dd:cf:e5:7e:bf:92:94:5e:4a:89:d8:65:a9:22:d8:9e:28:0c:
37:c2:8d:8d:46:c6:0b:31:e6:24:69:bc:22:73:e5:ef:4a:58:
df:7a:58:64:e1:cc:4e:5c:96:4c:e7:8a:c8:50:45:c4:2d:3b:
9c:06:47:bb:60:e7:40:e7:20:e5:ab:be:75:e8:50:55:35:ac:
3b:9b:94:fc:ce:18:b8:b7:61:c2:45:ba:56:60:09:47:f8:83:
08:90:fc:87:64:41:fa:d0:c8:db:d7:bf:4a:57:fa:5f:39:7c:
9c:09:55:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOxZlzt7/gNHlctQyEW5/dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhN2NiNTkyZDdlNGVjNzFiNjc4NTVkMWRmYzU1ZDlkMDY3
MDU0NzEwHhcNMjUwNjA4MDkwMTAyWhcNMjUwNjA5MDkwMTAyWjAzMTEwLwYDVQQD
Eyg1NjY0OGFhMmQ3Y2I1ZmNlYTMwZDhkMzM1YmFiYTY2NmUyMDJkNjkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVwcSvKtGoaX9hSTbK6LOF4q5Yc+
a+iQZRlZXI2EYSrDA7GmehUwnq2ze0xN0FhZ2enpZCDekIjH/jf3ZhR6xvNU3zg0
oI/RaKgLIorJTLcpcfFCyp3m//yckrOKWMnl2InOkA3eItHKbJk4eLMfEnG6EG9a
lPHQckbu1KiLZ4Ak3XXESVPhxELcILMy7gBoEtkwTHT1cThr66H9VzlHH9sLpBGS
vmXaMZ4H1wCwKsA3k74favaOY8ZhjttMPkOmEYGzMhiHqS5yni5iDu1Hp5md02+x
xvhdC61P6LDTGl0cOb/hejkO4K9zHAp4eqsjqY/V+7/XdqsEK3/QU6RReQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFZkiqLXy1/Oow2NM1urpmbiAtaSMB8GA1UdIwQY
MBaAFDp8tZLX5OxxtnhV0d/FXZ0GcFRxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT255MWt0Zms3SEcyZUZYUjM4VmRuUVp3VkhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jZjRhYTYtMjhjYS00ZTcxLThhYWEt
M2NjNTkyODk4Nzg5LzEvT255MWt0Zms3SEcyZUZYUjM4VmRuUVp3VkhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9jZjRhYTYtMjhjYS00ZTcxLThhYWEtM2NjNTkyODk4Nzg5
LzEvT255MWt0Zms3SEcyZUZYUjM4VmRuUVp3VkhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOf7DTzVS
TUa5bzHElR/64OWsqcVwHM9ibpRVg4tO3rMcfC+zhrCHR/zXCBM+9BIrbWYad1u9
BhDth9QMj8VaqeW4NE0J1rzBBAQp+4uu86le6Aa2PmSiHjdFCjOGTabwMpxlkIwk
Sazj1Eb8K3C8dXVz7OBfcoURR7u+Si7PRecMFIwU1JXn5WiZFz5yQXMI3c/lfr+S
lF5KidhlqSLYnigMN8KNjUbGCzHmJGm8InPl70pY33pYZOHMTlyWTOeKyFBFxC07
nAZHu2DnQOcg5au+dehQVTWsO5uU/M4YuLdhwkW6VmAJR/iDCJD8h2RB+tDI29e/
Slf6Xzl8nAlVeA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 19:18:05 2025 by rpki-client