Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
File: oiw84jcbnyHFfgw6V4fZWnNctQA.mft (raw, json)
Hash identifier: nZAyoBeTBqQz1lgen5JNHyxoqPc8QEaPB0FfYRabZIU=
Subject key identifier: 47:51:40:A9:A2:4B:49:A5:5F:F3:E5:8B:84:DC:3D:62:8A:B8:ED:3C
Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
Certificate issuer: /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Certificate serial: 01975D5CF781E28FEA7F6416EB391B51639C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
Manifest number: 0F81
Signing time: Wed 11 Jun 2025 05:01:03 +0000
Manifest this update: Wed 11 Jun 2025 05:01:03 +0000
Manifest next update: Thu 12 Jun 2025 05:01:03 +0000
Files and hashes: 1: U4H4DXiB1R3t2sbazcIxIzp8LJM.roa (hash: d9YRAg9H/qZYSSHmjXFBkp2EkGuj36QH5Z/4fdmKOEA=)
2: oiw84jcbnyHFfgw6V4fZWnNctQA.crl (hash: r1OcSo9O8f9Dc0j0LlGiuH85tHek0dIZnZVW8DUk5Os=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 05:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:5c:f7:81:e2:8f:ea:7f:64:16:eb:39:1b:51:63:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Validity
Not Before: Jun 11 05:01:03 2025 GMT
Not After : Jun 12 05:01:03 2025 GMT
Subject: CN=475140a9a24b49a55ff3e58b84dc3d628ab8ed3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:63:8e:9f:ac:a0:66:50:05:e5:8a:db:bf:03:
df:37:9a:a7:f5:30:67:b5:f1:96:fa:ad:5c:16:27:
ee:2f:52:3f:4f:53:3c:b2:1d:db:04:cd:c0:da:b6:
31:fe:e5:61:7b:2e:96:54:02:fb:bc:39:9a:75:df:
75:2a:0e:2e:2a:29:1f:fc:9f:28:26:bc:47:c0:8f:
00:3a:0b:ab:73:b7:52:70:c1:61:39:13:94:b8:59:
a4:bb:96:a8:a7:cd:5a:08:6e:fa:2f:c1:9b:cf:9d:
5c:9a:92:9e:f3:b4:f7:ec:14:9e:5f:61:5c:1c:03:
fb:15:c7:69:28:26:90:ad:51:12:f5:66:60:a0:3f:
11:2a:d5:df:0e:4c:e1:21:f4:3d:75:3f:95:73:23:
6b:2a:b3:3d:b2:23:f4:8c:52:8c:2e:64:86:21:6d:
00:06:69:d3:5e:5c:8b:8f:a0:cb:19:30:42:94:f6:
82:a1:e4:f1:df:75:17:a1:b1:61:4f:b6:26:8e:c3:
b2:1c:e5:9c:45:38:82:88:08:cc:76:ab:ab:e0:4d:
75:46:50:7d:cd:5c:3b:fd:a4:1e:88:87:0e:4d:91:
1b:3e:1d:cb:b6:d1:3f:bb:c6:5b:8e:7d:e0:9e:48:
45:cb:3c:b3:ad:1b:0e:cd:a5:52:74:9a:94:20:92:
32:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:51:40:A9:A2:4B:49:A5:5F:F3:E5:8B:84:DC:3D:62:8A:B8:ED:3C
X509v3 Authority Key Identifier:
keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:9b:d1:57:fd:8a:9b:84:1c:32:69:85:fa:19:ba:00:12:c6:
70:82:08:d2:b6:e1:d5:90:4e:35:2b:18:41:6d:e2:0e:20:ed:
c4:2e:a2:54:78:70:21:c4:fb:04:10:37:8e:0f:66:f9:77:f8:
97:52:a1:d9:4e:b5:7c:1d:5a:2b:3a:19:b5:f2:a8:43:46:31:
58:bf:ac:6b:7a:4a:be:cc:6a:b9:b2:26:1e:5f:ef:c1:59:dc:
45:f5:f1:16:02:fa:41:43:3f:37:99:df:88:c9:7a:a0:20:04:
1f:03:6a:9b:5d:d3:58:ce:68:bd:dc:e1:a7:2a:13:8d:3a:69:
00:b1:ce:1a:29:ad:1b:38:25:24:db:66:c0:46:18:14:d3:b2:
04:b8:9a:0b:49:50:7d:52:0b:b1:b7:54:10:a0:40:58:2e:56:
4c:7b:c6:56:e4:8a:92:bd:fd:4b:3d:6e:6b:dd:96:22:95:08:
4a:80:93:77:41:3d:d3:86:6d:0a:20:43:bc:73:a2:68:2c:47:
54:89:a7:cf:7a:58:d2:af:f3:fc:f4:06:c2:6f:57:a9:d5:ee:
72:37:c0:51:43:4a:86:d4:5b:3c:4a:06:fa:45:4c:ba:6c:33:
6e:f0:fc:41:a0:50:b9:86:81:a3:4b:39:c1:94:59:b5:24:4d:
69:0b:a2:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZddXPeB4o/qf2QW6zkbUWOcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyMmMzY2UyMzcxYjlmMjFjNTdlMGMzYTU3ODdkOTVhNzM1
Y2I1MDAwHhcNMjUwNjExMDUwMTAzWhcNMjUwNjEyMDUwMTAzWjAzMTEwLwYDVQQD
Eyg0NzUxNDBhOWEyNGI0OWE1NWZmM2U1OGI4NGRjM2Q2MjhhYjhlZDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WOOn6ygZlAF5YrbvwPfN5qn9TBn
tfGW+q1cFifuL1I/T1M8sh3bBM3A2rYx/uVhey6WVAL7vDmadd91Kg4uKikf/J8o
JrxHwI8AOgurc7dScMFhOROUuFmku5aop81aCG76L8Gbz51cmpKe87T37BSeX2Fc
HAP7FcdpKCaQrVES9WZgoD8RKtXfDkzhIfQ9dT+VcyNrKrM9siP0jFKMLmSGIW0A
BmnTXlyLj6DLGTBClPaCoeTx33UXobFhT7YmjsOyHOWcRTiCiAjMdqur4E11RlB9
zVw7/aQeiIcOTZEbPh3LttE/u8Zbjn3gnkhFyzyzrRsOzaVSdJqUIJIyfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEdRQKmiS0mlX/Pli4TcPWKKuO08MB8GA1UdIwQY
MBaAFKIsPOI3G58hxX4MOleH2VpzXLUAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2l3ODRqY2JueUhGZmd3NlY0ZlpXbk5jdFFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy81MDZlYzgtMTUwZi00Mjc1LWFjMDUt
MDUzOTNmMmIzYTQ3LzEvb2l3ODRqY2JueUhGZmd3NlY0ZlpXbk5jdFFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy81MDZlYzgtMTUwZi00Mjc1LWFjMDUtMDUzOTNmMmIzYTQ3
LzEvb2l3ODRqY2JueUhGZmd3NlY0ZlpXbk5jdFFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAspvRV/2K
m4QcMmmF+hm6ABLGcIII0rbh1ZBONSsYQW3iDiDtxC6iVHhwIcT7BBA3jg9m+Xf4
l1Kh2U61fB1aKzoZtfKoQ0YxWL+sa3pKvsxqubImHl/vwVncRfXxFgL6QUM/N5nf
iMl6oCAEHwNqm13TWM5ovdzhpyoTjTppALHOGimtGzglJNtmwEYYFNOyBLiaC0lQ
fVILsbdUEKBAWC5WTHvGVuSKkr39Sz1ua92WIpUISoCTd0E904ZtCiBDvHOiaCxH
VImnz3pY0q/z/PQGwm9XqdXucjfAUUNKhtRbPEoG+kVMumwzbvD8QaBQuYaBo0s5
wZRZtSRNaQuiCA==
-----END CERTIFICATE-----
Generated at Wed Jun 11 11:52:09 2025 by rpki-client