Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
File: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft (raw, json)
Hash identifier: wexo3yOCI0Z32vPaCyWsYNzw+ED0rZq0lO8SfNXlJb8=
Subject key identifier: 88:8B:CD:85:14:39:54:61:F2:71:F3:2E:71:5C:4A:6C:B3:77:29:3F
Authority key identifier: 3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
Certificate issuer: /CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Certificate serial: 01974EC5AAFD1A4EA736144AA39C869B75D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
Manifest number: 147F
Signing time: Sun 08 Jun 2025 09:01:06 +0000
Manifest this update: Sun 08 Jun 2025 09:01:06 +0000
Manifest next update: Mon 09 Jun 2025 09:01:06 +0000
Files and hashes: 1: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl (hash: raWU064+69z4xnONsDi5Bel5JruC9Tazs1noSoCA2fc=)
2: hE2ePAizZlQUV6uXdZuzIjMthNQ.roa (hash: +KNuL0RhbzwD+ZdqGTxpdbmElk+6cn62429cYK2AHFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:aa:fd:1a:4e:a7:36:14:4a:a3:9c:86:9b:75:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Validity
Not Before: Jun 8 09:01:06 2025 GMT
Not After : Jun 9 09:01:06 2025 GMT
Subject: CN=888bcd8514395461f271f32e715c4a6cb377293f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:17:3a:87:c8:b3:74:88:e6:4e:b7:8e:9d:a6:
78:84:dd:e2:4a:98:41:77:c7:f4:a3:41:bf:d7:6e:
4b:64:78:52:66:13:40:70:dc:17:32:7a:f9:60:a0:
c2:3b:de:b2:7e:4e:75:38:6a:be:e7:02:c2:0c:18:
b8:1a:5f:5d:6a:63:94:55:48:d2:c8:9c:e8:d8:81:
e2:33:c2:8e:68:a0:24:f2:4d:c7:8e:0b:82:b8:be:
11:81:ef:6c:c5:81:07:71:d1:c7:1a:8d:de:b4:b1:
44:33:18:11:0b:24:f1:4d:d7:49:6f:f6:b4:c2:0e:
dc:ae:4a:50:b1:27:e9:34:ae:f9:b7:55:dc:00:2a:
ff:29:88:58:e1:d6:88:7c:6f:13:9d:7d:24:c6:e9:
8d:14:01:14:60:1a:85:fe:94:f9:bb:61:cf:27:ef:
4f:8c:12:72:0a:0f:3a:15:a3:d6:33:44:6e:dc:a0:
8d:a0:dd:d2:51:52:0f:4a:0a:4d:e7:c0:dd:cf:a6:
fb:42:44:85:f6:e0:1f:94:79:bc:89:19:7c:f1:ad:
4a:07:39:5b:f9:f7:81:4d:cd:8b:b9:01:66:51:e1:
8d:30:fb:cf:e7:78:15:08:0f:c8:5e:e0:94:e9:9d:
0f:93:d2:a7:d6:fd:38:29:c7:a5:70:d3:9a:5f:84:
35:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:8B:CD:85:14:39:54:61:F2:71:F3:2E:71:5C:4A:6C:B3:77:29:3F
X509v3 Authority Key Identifier:
keyid:3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:e2:41:b1:21:d6:4a:45:11:80:18:3e:da:9a:56:f3:40:9e:
9b:f3:05:2b:31:a5:6e:ae:d0:bf:96:52:3e:13:23:46:3f:b6:
8d:e3:be:8a:07:d7:a0:18:89:79:16:cd:e6:ef:d0:14:c2:12:
8d:7a:25:02:a3:32:cd:8e:1d:30:50:7a:1a:47:41:d7:73:63:
f6:7a:a9:39:ee:63:15:c4:70:8b:6f:22:d6:25:01:7c:31:0b:
1c:6d:03:29:2f:9a:63:35:99:45:e1:59:ca:58:bb:72:1c:9b:
36:62:45:4a:2b:1f:bb:ad:c9:2f:ab:1c:86:86:d0:76:1c:79:
45:09:e1:f8:cd:c3:7f:cd:b4:84:77:14:74:c6:f9:a9:ec:6b:
0c:01:c1:14:c4:fc:4f:7e:26:b7:96:6a:b7:48:cb:32:0a:a9:
e7:d2:45:8a:49:84:57:00:4a:4f:95:4c:f1:88:60:9d:af:2f:
51:fc:ce:93:58:2a:8d:43:c2:d2:c8:6d:93:3b:16:fe:a4:49:
c0:5a:cd:76:2a:e6:8e:e2:24:e2:b5:0b:e1:2b:73:25:86:84:
25:e1:ef:99:dd:3b:c7:75:f0:42:5d:40:2f:0f:3b:79:6f:85:
da:f4:37:48:c7:c1:e3:8e:da:38:36:35:6b:2a:2e:2b:3e:3f:
97:b1:e8:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOxar9Gk6nNhRKo5yGm3XWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMTI4NTRhODQwMGQ4Yzg3ZWE0ZGU3YTIyZmRmMWJmNTc0
YTkwMzEwHhcNMjUwNjA4MDkwMTA2WhcNMjUwNjA5MDkwMTA2WjAzMTEwLwYDVQQD
Eyg4ODhiY2Q4NTE0Mzk1NDYxZjI3MWYzMmU3MTVjNGE2Y2IzNzcyOTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlBc6h8izdIjmTreOnaZ4hN3iSphB
d8f0o0G/125LZHhSZhNAcNwXMnr5YKDCO96yfk51OGq+5wLCDBi4Gl9damOUVUjS
yJzo2IHiM8KOaKAk8k3HjguCuL4Rge9sxYEHcdHHGo3etLFEMxgRCyTxTddJb/a0
wg7crkpQsSfpNK75t1XcACr/KYhY4daIfG8TnX0kxumNFAEUYBqF/pT5u2HPJ+9P
jBJyCg86FaPWM0Ru3KCNoN3SUVIPSgpN58Ddz6b7QkSF9uAflHm8iRl88a1KBzlb
+feBTc2LuQFmUeGNMPvP53gVCA/IXuCU6Z0Pk9Kn1v04KcelcNOaX4Q1OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIiLzYUUOVRh8nHzLnFcSmyzdyk/MB8GA1UdIwQY
MBaAFDoShUqEANjIfqTeeiL98b9XSpAxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2hLRlNvUUEyTWgtcE41Nkl2M3h2MWRLa0RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8yYjZlMTYtOWNlOC00OWRhLTllZDMt
NjgyOWQ2OGUyYTU0LzEvT2hLRlNvUUEyTWgtcE41Nkl2M3h2MWRLa0RFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8yYjZlMTYtOWNlOC00OWRhLTllZDMtNjgyOWQ2OGUyYTU0
LzEvT2hLRlNvUUEyTWgtcE41Nkl2M3h2MWRLa0RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANeJBsSHW
SkURgBg+2ppW80Cem/MFKzGlbq7Qv5ZSPhMjRj+2jeO+igfXoBiJeRbN5u/QFMIS
jXolAqMyzY4dMFB6GkdB13Nj9nqpOe5jFcRwi28i1iUBfDELHG0DKS+aYzWZReFZ
yli7chybNmJFSisfu63JL6schobQdhx5RQnh+M3Df820hHcUdMb5qexrDAHBFMT8
T34mt5Zqt0jLMgqp59JFikmEVwBKT5VM8Yhgna8vUfzOk1gqjUPC0shtkzsW/qRJ
wFrNdirmjuIk4rUL4StzJYaEJeHvmd07x3XwQl1ALw87eW+F2vQ3SMfB447aODY1
ayouKz4/l7HoYg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 12:42:47 2025 by rpki-client