Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
File: o4SlYxesgXmFG1cPDjp6oEToCKY.mft (raw, json)
Hash identifier: V2vERg/YUDHkNoC2qGMklLXeryabFYxnlOae7sytLKI=
Subject key identifier: 9E:AD:41:8F:CB:3B:2B:92:AD:F6:0D:DD:EB:C4:24:98:57:4A:13:58
Authority key identifier: A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
Certificate issuer: /CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Certificate serial: 01974AB147B3A2BCE138A946D2B3A572CBFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
Manifest number: 039E
Signing time: Sat 07 Jun 2025 14:00:21 +0000
Manifest this update: Sat 07 Jun 2025 14:00:21 +0000
Manifest next update: Sun 08 Jun 2025 14:00:21 +0000
Files and hashes: 1: K7qTK9pIyiEZfe3oYQ_ZP0X2yEA.roa (hash: aRm9dSDweAWyai2Lyi7lBDWMUI5ncN0CehfI1VhjASU=)
2: o4SlYxesgXmFG1cPDjp6oEToCKY.crl (hash: PpO6mSRdazcPg0MKoSv/EZ0DL0Glj+90uWtdpkGY1u0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:47:b3:a2:bc:e1:38:a9:46:d2:b3:a5:72:cb:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Validity
Not Before: Jun 7 14:00:21 2025 GMT
Not After : Jun 8 14:00:21 2025 GMT
Subject: CN=9ead418fcb3b2b92adf60dddebc42498574a1358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:44:cc:7d:3f:7e:3c:65:04:5a:03:d8:c7:73:
e9:c7:d8:f7:37:4b:26:09:75:3a:13:97:99:45:db:
f5:67:6b:09:19:e3:01:5f:6b:a4:f5:27:a6:bf:d6:
64:ec:4e:e9:8e:0b:76:87:99:b4:a0:58:9b:3f:55:
63:3f:17:d8:85:71:19:28:45:51:4e:cd:dd:7b:73:
f7:e7:cb:c3:a1:ed:7b:cf:af:ad:6c:b1:08:e4:c6:
4f:25:04:07:43:a5:56:24:af:73:39:81:b4:e2:2b:
f8:8b:15:d2:c7:f3:4a:16:0b:e4:b4:f1:61:ff:30:
7a:3f:43:aa:0f:ed:3b:a4:2b:0a:8e:4a:b8:77:18:
ba:f9:dd:c8:7f:2b:c1:71:1b:36:98:f1:72:3e:85:
09:f3:fc:05:12:37:1f:32:4b:fb:04:db:53:e8:ec:
a7:94:43:33:e1:64:41:ff:30:40:bc:8b:0e:1f:d6:
76:96:88:f0:1f:26:0e:5b:59:b0:33:db:8a:5e:59:
60:da:36:2d:21:6e:11:90:d0:05:29:ea:63:ae:27:
e4:62:80:7f:1c:fe:63:e6:a5:36:7c:21:2c:e0:47:
e6:4c:40:59:fa:c4:0e:1b:61:c1:16:6b:56:e9:31:
7e:24:60:61:f4:77:97:06:54:ef:d5:ef:ad:8b:fc:
3b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:AD:41:8F:CB:3B:2B:92:AD:F6:0D:DD:EB:C4:24:98:57:4A:13:58
X509v3 Authority Key Identifier:
keyid:A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:22:0b:02:a6:96:9b:ba:8a:36:a9:be:91:b4:c8:22:41:a4:
ba:b6:f1:12:23:5f:7b:63:2c:8b:67:ab:05:7d:96:1c:65:34:
df:23:45:1a:16:a0:d2:b0:c8:0e:8e:3b:24:4b:01:4b:44:8b:
11:a4:c7:88:24:04:59:3a:05:96:98:9a:7b:89:4f:62:3f:2c:
04:55:e2:20:32:fb:85:50:44:a6:fb:7f:19:6c:77:24:7c:35:
80:25:43:97:89:c7:6b:de:55:55:18:03:f9:c6:20:72:31:27:
3e:5b:ae:bf:19:37:4b:a0:f9:6f:43:df:68:eb:12:da:b8:d4:
62:95:83:4b:0d:ba:a3:a8:9c:66:19:11:22:1e:0a:47:54:8f:
b3:44:05:bd:90:ca:18:fa:d5:bf:e5:32:86:2f:d7:0b:85:cc:
fe:77:ba:6f:d1:88:01:33:e8:59:93:ac:70:5e:24:a6:39:f7:
70:1d:73:f3:3b:ad:d1:49:01:2b:71:c4:1b:0d:eb:32:40:7f:
74:9b:4d:ba:af:78:ed:d2:8a:6f:d7:38:12:7e:a4:bf:2e:2f:
7b:fd:a2:24:1b:ec:c5:75:eb:c3:1f:f0:cf:4a:dc:ce:5e:67:
61:ff:d6:db:37:1e:57:00:8f:97:66:e5:2e:d6:e1:9b:c3:bb:
f2:83:d6:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKsUezorzhOKlG0rOlcsv7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzODRhNTYzMTdhYzgxNzk4NTFiNTcwZjBlM2E3YWEwNDRl
ODA4YTYwHhcNMjUwNjA3MTQwMDIxWhcNMjUwNjA4MTQwMDIxWjAzMTEwLwYDVQQD
Eyg5ZWFkNDE4ZmNiM2IyYjkyYWRmNjBkZGRlYmM0MjQ5ODU3NGExMzU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxUTMfT9+PGUEWgPYx3Ppx9j3N0sm
CXU6E5eZRdv1Z2sJGeMBX2uk9Semv9Zk7E7pjgt2h5m0oFibP1VjPxfYhXEZKEVR
Ts3de3P358vDoe17z6+tbLEI5MZPJQQHQ6VWJK9zOYG04iv4ixXSx/NKFgvktPFh
/zB6P0OqD+07pCsKjkq4dxi6+d3IfyvBcRs2mPFyPoUJ8/wFEjcfMkv7BNtT6Oyn
lEMz4WRB/zBAvIsOH9Z2lojwHyYOW1mwM9uKXllg2jYtIW4RkNAFKepjrifkYoB/
HP5j5qU2fCEs4EfmTEBZ+sQOG2HBFmtW6TF+JGBh9HeXBlTv1e+ti/w7YQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ6tQY/LOyuSrfYN3evEJJhXShNYMB8GA1UdIwQY
MBaAFKOEpWMXrIF5hRtXDw46eqBE6AimMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzRTbFl4ZXNnWG1GRzFjUERqcDZvRVRvQ0tZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9jMmZiZTEtZGQ5ZC00MjA0LTkwNjYt
ZTIyNWEyNDkzNzhlLzEvbzRTbFl4ZXNnWG1GRzFjUERqcDZvRVRvQ0tZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9jMmZiZTEtZGQ5ZC00MjA0LTkwNjYtZTIyNWEyNDkzNzhl
LzEvbzRTbFl4ZXNnWG1GRzFjUERqcDZvRVRvQ0tZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlSILAqaW
m7qKNqm+kbTIIkGkurbxEiNfe2Msi2erBX2WHGU03yNFGhag0rDIDo47JEsBS0SL
EaTHiCQEWToFlpiae4lPYj8sBFXiIDL7hVBEpvt/GWx3JHw1gCVDl4nHa95VVRgD
+cYgcjEnPluuvxk3S6D5b0PfaOsS2rjUYpWDSw26o6icZhkRIh4KR1SPs0QFvZDK
GPrVv+Uyhi/XC4XM/ne6b9GIATPoWZOscF4kpjn3cB1z8zut0UkBK3HEGw3rMkB/
dJtNuq947dKKb9c4En6kvy4ve/2iJBvsxXXrwx/wz0rczl5nYf/W2zceVwCPl2bl
Ltbhm8O78oPWfg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 17:26:42 2025 by rpki-client