Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: 5zzBeoycHKYGzCoksqugNXHzqLmlIrU+Dfec5RU8w5s=
Subject key identifier: F0:D3:09:60:47:91:E0:6D:D5:72:21:A9:14:33:A0:C8:1C:81:46:39
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 01974AE908AD820D705B4E967FDD51017F33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 0FD0
Signing time: Sat 07 Jun 2025 15:01:15 +0000
Manifest this update: Sat 07 Jun 2025 15:01:15 +0000
Manifest next update: Sun 08 Jun 2025 15:01:15 +0000
Files and hashes: 1: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: cu8pD0A3t9xV2zBStDoocNqRM3tYUhdAVa6mhp2XAnk=)
2: SyALsZDSYtge1NmYRoKzwbP5Vv8.roa (hash: rjh76rxbo7HoAknp3g/P2hhQiBIAvMqHmifN8tVtg/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e9:08:ad:82:0d:70:5b:4e:96:7f:dd:51:01:7f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Jun 7 15:01:15 2025 GMT
Not After : Jun 8 15:01:15 2025 GMT
Subject: CN=f0d309604791e06dd57221a91433a0c81c814639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dd:8d:62:90:29:49:99:1a:f2:12:6a:f4:31:
40:33:d2:61:87:1a:27:90:d8:7b:82:51:b9:9a:e7:
fd:85:98:bd:eb:5a:b2:7f:b9:9d:4a:09:fb:8d:62:
30:33:9c:40:6b:9f:f4:cf:64:99:27:14:50:e3:7d:
81:6d:62:3e:f9:af:cd:99:89:6e:89:6e:06:87:17:
c5:75:1a:b4:c9:72:d6:34:22:66:49:4e:63:b2:6b:
4b:0b:77:d7:68:82:39:7d:9d:19:86:db:05:e3:d3:
42:50:93:a4:d1:4d:78:56:6e:3d:7c:41:4d:e3:51:
b4:37:e7:35:67:d6:fe:f3:38:30:a6:ec:70:c3:f8:
c1:62:90:3f:0b:e7:c8:62:87:47:b5:ce:95:68:99:
37:ce:0f:5f:cf:17:db:ee:52:be:86:ec:4e:f0:6d:
86:0a:01:fa:ec:60:d5:84:73:f5:72:0d:15:9c:43:
34:7c:0f:02:34:60:af:35:ac:fd:c0:57:16:a1:0c:
af:3e:cf:0f:1c:c5:62:35:19:33:26:25:93:e8:2a:
9f:17:ae:8a:fe:81:31:0d:c7:63:7d:81:cc:43:68:
21:8f:f0:4d:b6:68:8b:c0:7c:b1:0b:73:b8:9a:1e:
ed:8a:61:21:c0:89:a0:b8:0d:8a:47:00:42:84:fe:
1b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D3:09:60:47:91:E0:6D:D5:72:21:A9:14:33:A0:C8:1C:81:46:39
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:fe:fc:48:cc:1d:29:cc:f0:31:16:a5:b3:18:76:7a:8e:dd:
e8:f5:6e:bb:64:44:cf:1d:9a:a9:c0:dd:a2:f0:c5:32:03:35:
44:a7:58:e2:ab:e4:70:8c:46:92:35:60:bf:73:48:fe:e4:21:
3b:fa:01:cb:fa:c3:d9:56:15:6f:54:ca:f8:51:eb:ab:4d:e2:
b9:c6:0f:a1:a7:22:00:f6:31:d9:27:6e:c5:56:4d:ee:37:35:
1d:da:6b:b7:05:37:de:57:0a:05:1f:fd:41:2f:3e:f7:85:84:
f9:c7:45:0e:a2:9b:31:b0:1c:2d:1f:2b:f4:7b:ac:2f:f4:11:
e4:f7:48:91:32:b4:e9:05:3f:6f:0f:93:45:f9:c3:01:45:73:
8b:6b:97:1f:c2:b4:ee:67:69:60:22:fc:65:9e:a8:95:d3:03:
98:75:27:4c:d1:57:ac:4e:0e:ec:ae:a5:81:cc:af:0c:1b:63:
e9:fa:1e:ae:65:f2:5d:dc:e6:79:5a:79:98:3b:80:fb:d2:d6:
84:fa:5b:5b:b8:34:97:85:2a:10:cd:cb:bc:4e:b8:4f:a4:e6:
80:a7:dd:d2:a2:db:c7:a8:35:5e:fb:5c:8b:41:22:61:bf:6d:
5b:22:af:c0:24:f1:15:bf:6a:8c:05:06:1c:5d:72:a6:82:56:
4b:0d:c6:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6Qitgg1wW06Wf91RAX8zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MzhhODFhNDQxMjc3NDFkOTQ5YTM1NWE0N2YzY2I1OTkz
ODlhNzgwHhcNMjUwNjA3MTUwMTE1WhcNMjUwNjA4MTUwMTE1WjAzMTEwLwYDVQQD
EyhmMGQzMDk2MDQ3OTFlMDZkZDU3MjIxYTkxNDMzYTBjODFjODE0NjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArN2NYpApSZka8hJq9DFAM9Jhhxon
kNh7glG5muf9hZi961qyf7mdSgn7jWIwM5xAa5/0z2SZJxRQ432BbWI++a/NmYlu
iW4GhxfFdRq0yXLWNCJmSU5jsmtLC3fXaII5fZ0ZhtsF49NCUJOk0U14Vm49fEFN
41G0N+c1Z9b+8zgwpuxww/jBYpA/C+fIYodHtc6VaJk3zg9fzxfb7lK+huxO8G2G
CgH67GDVhHP1cg0VnEM0fA8CNGCvNaz9wFcWoQyvPs8PHMViNRkzJiWT6CqfF66K
/oExDcdjfYHMQ2ghj/BNtmiLwHyxC3O4mh7timEhwImguA2KRwBChP4bbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPDTCWBHkeBt1XIhqRQzoMgcgUY5MB8GA1UdIwQY
MBaAFDk4qBpEEndB2UmjVaR/PLWZOJp4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1Rpb0drUVNkMEhaU2FOVnBIODh0Wms0bW5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wMmNhYjUtNTliNC00ZDkwLWE1ZGIt
ZmQyMTRjYWNmYjYyLzEvT1Rpb0drUVNkMEhaU2FOVnBIODh0Wms0bW5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wMmNhYjUtNTliNC00ZDkwLWE1ZGItZmQyMTRjYWNmYjYy
LzEvT1Rpb0drUVNkMEhaU2FOVnBIODh0Wms0bW5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUP78SMwd
KczwMRalsxh2eo7d6PVuu2REzx2aqcDdovDFMgM1RKdY4qvkcIxGkjVgv3NI/uQh
O/oBy/rD2VYVb1TK+FHrq03iucYPoaciAPYx2SduxVZN7jc1HdprtwU33lcKBR/9
QS8+94WE+cdFDqKbMbAcLR8r9HusL/QR5PdIkTK06QU/bw+TRfnDAUVzi2uXH8K0
7mdpYCL8ZZ6oldMDmHUnTNFXrE4O7K6lgcyvDBtj6foermXyXdzmeVp5mDuA+9LW
hPpbW7g0l4UqEM3LvE64T6TmgKfd0qLbx6g1Xvtci0EiYb9tWyKvwCTxFb9qjAUG
HF1ypoJWSw3Gjg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 20:28:42 2025 by rpki-client