Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: xvmdpAoPv1C0t7zwq/lR8oaB6EEUIs+nyXfgi5vWqdo=
Subject key identifier: BE:6E:55:66:F4:6C:22:EC:11:FA:2A:FC:DC:AE:E6:ED:4E:06:43:87
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 01974931624BC8EFEA0769A7F0120F4192FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 0545
Signing time: Sat 07 Jun 2025 07:01:02 +0000
Manifest this update: Sat 07 Jun 2025 07:01:02 +0000
Manifest next update: Sun 08 Jun 2025 07:01:02 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: hkW7EyuDnEXcL84hCUKyvev2mwC0r14bKbEhasmj/w8=)
2: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=)
3: Uw9JbudeiyQ7Eqq4TZWKYitXR5Q.roa (hash: PECjzeRoLCDiJc+fMhDdhpnjzdeMhIqjV/edQ5qJgEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:62:4b:c8:ef:ea:07:69:a7:f0:12:0f:41:92:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Jun 7 07:01:02 2025 GMT
Not After : Jun 8 07:01:02 2025 GMT
Subject: CN=be6e5566f46c22ec11fa2afcdcaee6ed4e064387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c5:85:d0:86:71:79:d5:80:19:48:d7:94:fd:
78:b5:23:38:22:8d:dc:cb:91:95:3b:e0:80:0d:54:
c5:61:b8:2a:83:78:ad:ea:c9:7f:45:b0:0e:2c:0f:
fe:4f:d3:e1:65:79:75:84:74:2c:35:24:ea:a2:d6:
68:e5:1a:6a:1f:f2:ed:d7:43:48:a6:ad:8e:5d:db:
ca:57:30:55:c5:cf:36:2b:92:b6:d5:e6:25:ef:fc:
bb:c0:37:f4:b7:74:ad:7c:a2:0d:45:90:f1:93:ec:
ba:8a:5d:7b:a8:26:b9:65:29:47:3a:2d:b2:94:4c:
ce:55:19:d1:ef:28:f3:af:b7:64:b2:0e:eb:11:03:
a4:83:2e:d4:44:1e:79:5f:75:f6:96:ad:8e:df:c1:
a7:3f:e7:c1:5a:c6:d2:25:91:20:39:50:d6:a5:bb:
e3:84:9a:24:c8:ef:91:04:75:4e:8b:3f:2e:9e:a9:
4d:1f:bd:8d:7f:b2:2f:82:70:8f:50:4c:8c:47:fa:
1e:18:3f:42:4a:43:a7:84:44:dc:6e:03:17:05:3e:
f0:80:3c:bb:fd:71:f4:d4:2a:84:d2:ab:e4:c5:60:
d3:2a:36:c3:09:83:ac:54:c1:e3:75:f6:cb:13:d8:
87:b1:c2:ff:f2:59:44:0e:43:1d:45:ed:e7:a7:75:
9b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:6E:55:66:F4:6C:22:EC:11:FA:2A:FC:DC:AE:E6:ED:4E:06:43:87
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:52:c8:45:69:e8:53:82:dd:94:02:d8:93:70:e2:82:be:e5:
31:05:60:7e:6c:24:1f:29:d3:5a:65:db:82:92:39:de:71:4d:
0a:df:43:90:d4:61:86:62:1b:fb:20:91:dc:27:73:d3:0c:35:
90:32:a0:c1:20:ab:d4:35:7f:b0:29:50:b8:83:5f:81:97:51:
6b:d0:17:90:7b:6c:e8:8b:b3:71:b5:a6:5b:28:a6:78:6e:5c:
8b:d5:41:45:fd:0a:7d:24:96:c8:ac:c1:04:a3:72:f8:4a:70:
63:0f:46:bc:ea:79:12:6a:ec:c5:36:d8:d5:71:5f:b3:56:51:
51:2c:4b:43:84:8f:c7:77:01:d1:06:96:5a:05:c0:f8:1d:0a:
32:01:ca:a6:55:54:29:ca:ff:fe:76:97:6b:88:29:dc:5e:b2:
a1:cf:3f:bb:41:dd:06:7f:36:25:6d:f6:ea:ab:e5:0f:2b:5e:
44:52:3a:f4:2a:d7:94:7d:7a:e7:d6:c6:c2:ae:97:f0:18:95:
00:e1:5e:b7:71:a8:b8:d6:c8:7a:95:24:b9:97:3a:4f:d8:a6:
27:47:3b:fe:56:3a:14:6a:45:68:8e:8d:94:e7:c3:43:cb:58:
8f:e1:2c:c3:85:a5:f6:09:ce:23:07:39:c3:6b:59:e8:e0:24:
ae:58:ea:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMWJLyO/qB2mn8BIPQZL6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhODM5OTM2YWVlZmYyODg2NzhlNzcyNjMzMDIwZmEyNTli
ZDljZjIwHhcNMjUwNjA3MDcwMTAyWhcNMjUwNjA4MDcwMTAyWjAzMTEwLwYDVQQD
EyhiZTZlNTU2NmY0NmMyMmVjMTFmYTJhZmNkY2FlZTZlZDRlMDY0Mzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjMWF0IZxedWAGUjXlP14tSM4Io3c
y5GVO+CADVTFYbgqg3it6sl/RbAOLA/+T9PhZXl1hHQsNSTqotZo5RpqH/Lt10NI
pq2OXdvKVzBVxc82K5K21eYl7/y7wDf0t3StfKINRZDxk+y6il17qCa5ZSlHOi2y
lEzOVRnR7yjzr7dksg7rEQOkgy7URB55X3X2lq2O38GnP+fBWsbSJZEgOVDWpbvj
hJokyO+RBHVOiz8unqlNH72Nf7IvgnCPUEyMR/oeGD9CSkOnhETcbgMXBT7wgDy7
/XH01CqE0qvkxWDTKjbDCYOsVMHjdfbLE9iHscL/8llEDkMdRe3np3WbWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL5uVWb0bCLsEfoq/Nyu5u1OBkOHMB8GA1UdIwQY
MBaAFDqDmTau7/KIZ453JjMCD6JZvZzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQt
ODM1ZjRlMzcyODNjLzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQtODM1ZjRlMzcyODNj
LzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaFLIRWno
U4LdlALYk3Digr7lMQVgfmwkHynTWmXbgpI53nFNCt9DkNRhhmIb+yCR3Cdz0ww1
kDKgwSCr1DV/sClQuINfgZdRa9AXkHts6IuzcbWmWyimeG5ci9VBRf0KfSSWyKzB
BKNy+EpwYw9GvOp5EmrsxTbY1XFfs1ZRUSxLQ4SPx3cB0QaWWgXA+B0KMgHKplVU
Kcr//naXa4gp3F6yoc8/u0HdBn82JW326qvlDyteRFI69CrXlH1659bGwq6X8BiV
AOFet3GouNbIepUkuZc6T9imJ0c7/lY6FGpFaI6NlOfDQ8tYj+Esw4Wl9gnOIwc5
w2tZ6OAkrljqLw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:49:11 2025 by rpki-client