Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: zZtf5W97XWrPpTO5kDUBqjG8aF4Am8gySonCFRAPiBM=
Subject key identifier: 9C:46:10:B3:6B:28:E8:5B:A0:F2:80:97:52:C0:B8:F2:ED:8D:2B:87
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 01974E8E17835409B45EA78AF22D9B8D5D3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 052A
Signing time: Sun 08 Jun 2025 08:00:24 +0000
Manifest this update: Sun 08 Jun 2025 08:00:24 +0000
Manifest next update: Mon 09 Jun 2025 08:00:24 +0000
Files and hashes: 1: lG9M0ytelOsltsM45OHzpDj8VA0.roa (hash: NbXxBP1wpUJzGfc6WpWH6JS4IiG1rIjC9o+D9ASG5hQ=)
2: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: ziQYS6L0bI0aAvRSfn6a1EWQsIoL4mspHMggzhPfcWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:17:83:54:09:b4:5e:a7:8a:f2:2d:9b:8d:5d:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Jun 8 08:00:24 2025 GMT
Not After : Jun 9 08:00:24 2025 GMT
Subject: CN=9c4610b36b28e85ba0f2809752c0b8f2ed8d2b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8c:d2:1b:73:25:26:3d:da:76:ae:e5:67:0e:
4f:f1:1d:a4:26:1a:a2:4c:8b:c2:4f:24:4c:50:e9:
cd:92:3e:75:45:cd:af:f2:65:a0:26:af:69:40:6e:
06:40:6f:55:23:12:6d:b2:e5:60:74:8f:85:23:9d:
f4:a9:25:9a:13:db:9e:f3:45:83:72:6d:95:5d:84:
7c:c8:4b:36:c4:40:48:f1:a1:89:78:e0:61:f2:2d:
cc:f2:c2:e8:6f:b0:1b:47:01:f6:bb:bf:eb:c8:43:
62:95:f3:64:c2:78:db:0f:89:49:86:8b:08:7a:88:
d7:67:5b:82:7c:1c:10:48:a2:d0:ca:3d:0d:a9:c5:
ad:7b:80:76:f4:67:e4:3e:cd:49:1d:5c:e7:43:75:
a5:bf:0f:78:da:29:dc:11:8e:71:e7:9b:90:08:07:
75:69:1e:7c:74:9a:28:22:8f:69:6d:8d:e8:97:22:
51:80:d2:cb:9b:71:58:78:c0:c2:4e:eb:1d:ed:78:
a6:21:d1:42:df:dc:34:3c:e3:3b:17:56:0c:2f:46:
a9:04:73:24:53:a2:7a:a8:08:c4:02:26:18:f8:9c:
27:f3:07:b3:b6:fa:1e:b1:bf:d0:be:bb:75:82:2d:
da:11:3a:36:47:eb:d6:3a:9b:85:d2:83:3a:e8:5c:
4e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:46:10:B3:6B:28:E8:5B:A0:F2:80:97:52:C0:B8:F2:ED:8D:2B:87
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:e5:24:71:6c:a6:89:fe:df:0a:4c:ff:df:0f:8a:ff:88:1a:
4d:12:c6:94:94:62:5c:c9:b3:1f:40:47:0a:e4:3e:a9:a0:51:
c9:60:d4:e6:61:1e:83:9a:80:e9:ba:69:02:8a:2a:11:74:de:
10:56:06:34:19:d5:d8:00:a7:57:c6:7e:db:79:33:0a:7e:f0:
fc:37:7b:be:0f:0b:08:ae:cb:8e:0c:14:e5:db:e8:a9:83:40:
ad:e1:2b:79:a7:7b:4c:81:a8:85:95:b6:78:67:97:48:f8:45:
df:47:6c:07:e5:51:64:93:02:50:6b:e2:db:87:16:e3:8b:4c:
af:d3:61:cf:7b:43:4c:1d:d6:14:8c:5b:85:46:0d:99:32:b9:
66:42:5c:17:28:f9:60:20:0d:34:99:5d:40:81:a9:96:94:55:
c0:96:a9:7d:56:fd:6d:a8:58:a8:44:bb:86:d6:04:11:b6:9b:
dd:70:97:87:d0:ad:a5:97:56:cd:71:d9:43:a1:64:f0:78:4f:
16:c8:8e:62:18:6f:f1:1e:04:9a:e4:d8:5d:87:1f:88:7a:de:
d0:b2:cc:f9:fb:9c:13:e8:17:9b:75:b8:52:d4:f7:e2:e6:bf:
f3:4b:19:26:e5:f5:87:17:c2:1b:49:87:8f:a0:a3:20:1c:92:
0e:bc:26:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOjheDVAm0XqeK8i2bjV08MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNDBmOTY4ZmE1MmU2Y2IyZmU2NTcxMDk3MDBmYTA3NGMx
OTBiODUwHhcNMjUwNjA4MDgwMDI0WhcNMjUwNjA5MDgwMDI0WjAzMTEwLwYDVQQD
Eyg5YzQ2MTBiMzZiMjhlODViYTBmMjgwOTc1MmMwYjhmMmVkOGQyYjg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYzSG3MlJj3adq7lZw5P8R2kJhqi
TIvCTyRMUOnNkj51Rc2v8mWgJq9pQG4GQG9VIxJtsuVgdI+FI530qSWaE9ue80WD
cm2VXYR8yEs2xEBI8aGJeOBh8i3M8sLob7AbRwH2u7/ryENilfNkwnjbD4lJhosI
eojXZ1uCfBwQSKLQyj0NqcWte4B29GfkPs1JHVznQ3Wlvw942incEY5x55uQCAd1
aR58dJooIo9pbY3olyJRgNLLm3FYeMDCTusd7XimIdFC39w0POM7F1YML0apBHMk
U6J6qAjEAiYY+Jwn8weztvoesb/Qvrt1gi3aETo2R+vWOpuF0oM66FxORQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJxGELNrKOhboPKAl1LAuPLtjSuHMB8GA1UdIwQY
MBaAFKBA+Wj6UubLL+ZXEJcA+gdMGQuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84OTU1MDItNGUxNC00OTYzLWEzMDUt
M2I2YjBhNTU1NWVmLzEvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC84OTU1MDItNGUxNC00OTYzLWEzMDUtM2I2YjBhNTU1NWVm
LzEvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ+UkcWym
if7fCkz/3w+K/4gaTRLGlJRiXMmzH0BHCuQ+qaBRyWDU5mEeg5qA6bppAooqEXTe
EFYGNBnV2ACnV8Z+23kzCn7w/Dd7vg8LCK7LjgwU5dvoqYNAreEread7TIGohZW2
eGeXSPhF30dsB+VRZJMCUGvi24cW44tMr9Nhz3tDTB3WFIxbhUYNmTK5ZkJcFyj5
YCANNJldQIGplpRVwJapfVb9bahYqES7htYEEbab3XCXh9CtpZdWzXHZQ6Fk8HhP
FsiOYhhv8R4EmuTYXYcfiHre0LLM+fucE+gXm3W4UtT34ua/80sZJuX1hxfCG0mH
j6CjIBySDrwmdQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 13:45:15 2025 by rpki-client