Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
File: OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft (raw, json)
Hash identifier: 5HOumqye7Bmnx5/5UD1Ot69HOTPoVTZ6TfVbd0N3zpY=
Subject key identifier: E9:41:A4:FA:74:B3:28:A1:A0:8E:0A:34:71:08:77:75:DE:1B:36:60
Authority key identifier: 38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
Certificate issuer: /CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Certificate serial: 01974967A80FB0592D4B110FA5D89A11DFDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
Manifest number: 0AC3
Signing time: Sat 07 Jun 2025 08:00:19 +0000
Manifest this update: Sat 07 Jun 2025 08:00:19 +0000
Manifest next update: Sun 08 Jun 2025 08:00:19 +0000
Files and hashes: 1: KI_OzKHWNWDApgfZA8fhKRHWYNw.roa (hash: KgInzOYraW/0zKTqbj1OirpA4x6saReBh+LdfK4ZXdI=)
2: OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl (hash: 1BqlQbNS8VcyRuRUx46hmZJv5d1zd2kDPsMW6l46sEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:a8:0f:b0:59:2d:4b:11:0f:a5:d8:9a:11:df:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Validity
Not Before: Jun 7 08:00:19 2025 GMT
Not After : Jun 8 08:00:19 2025 GMT
Subject: CN=e941a4fa74b328a1a08e0a3471087775de1b3660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d8:3b:7e:39:58:57:e6:96:3c:9a:e5:4f:6f:
5b:ae:63:37:fa:f5:9a:a4:a4:1d:67:23:33:c4:1c:
fb:40:4a:a2:e2:8d:2d:75:6c:92:58:68:36:78:66:
0c:af:5c:8b:02:9b:f0:e7:1f:63:86:24:b4:2e:06:
4e:06:dc:ee:6b:6f:54:be:42:2e:4c:00:a3:8f:e8:
ed:7a:3b:7f:86:9b:ad:1f:8b:cc:1a:aa:d6:49:e0:
5a:ac:99:b5:66:6b:56:17:6a:c9:13:49:65:26:58:
3b:ce:e4:ff:79:71:80:04:c9:8e:54:33:a8:b0:29:
16:db:50:fc:9f:9b:fb:12:b8:3f:5c:08:bd:88:8c:
e4:ab:7a:3f:e1:de:d3:ab:77:a5:ce:8b:54:89:d5:
58:5a:de:8f:e9:1d:b1:b9:8e:ec:6b:96:4b:53:be:
83:6f:de:c8:fe:78:8c:f0:8c:c2:93:39:f8:2b:ad:
78:e1:02:26:00:94:86:3b:51:f2:3d:6a:4f:9b:16:
c6:50:5b:0e:26:8c:6b:a7:11:2f:21:54:21:a6:b3:
14:ec:a6:7c:3a:39:6d:f5:bf:29:12:e6:8e:4b:cb:
b4:6a:6d:b7:5d:13:72:fd:32:24:73:d6:69:70:30:
f1:24:6a:51:8b:51:47:bc:25:6f:23:31:40:2e:6b:
34:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:41:A4:FA:74:B3:28:A1:A0:8E:0A:34:71:08:77:75:DE:1B:36:60
X509v3 Authority Key Identifier:
keyid:38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:c7:9e:d0:95:75:90:d2:24:10:5d:d4:c0:ed:0e:2a:1e:25:
57:75:ce:12:c2:65:3b:01:c1:9a:ab:2f:a0:18:0b:0b:ee:26:
fc:0f:fe:54:dd:af:15:d5:72:19:18:0e:eb:a4:06:70:9f:95:
af:0f:96:6a:7c:98:cb:75:28:4f:27:4e:69:e2:62:be:ba:9a:
ec:48:8d:9f:f1:03:12:9b:e4:42:5d:e8:97:df:f5:b3:41:24:
d9:ca:af:30:1a:10:c2:33:d0:2c:77:8f:e6:c5:62:c2:d8:4c:
69:ed:f8:c0:45:8b:32:53:fa:c2:88:7e:a5:be:27:77:b4:3c:
e4:26:70:3c:21:99:fb:ec:3a:73:93:de:52:30:db:e9:b6:61:
e3:32:ff:40:fd:df:29:fa:f9:ae:67:39:a6:9b:c6:94:dd:9e:
e1:9b:30:4c:10:5e:65:64:fc:6d:03:15:10:bd:4b:fa:1e:af:
9b:d8:58:51:1d:c0:02:96:07:f5:d8:92:09:bf:e3:3f:eb:51:
2c:8b:29:f3:01:1b:c3:9a:c5:1c:60:41:bd:d2:ef:a7:83:e6:
09:89:71:25:01:4a:f9:88:67:fb:5e:0d:46:39:c3:69:53:24:
26:92:02:bf:4d:85:6b:9d:0c:80:dc:d0:f9:55:41:7a:bc:7d:
e1:79:e9:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJZ6gPsFktSxEPpdiaEd/aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NWNmNDkzOWJlZWVhZWFmNDQwOWMyODQwZWIzNDRjYWIw
ODUwZTAwHhcNMjUwNjA3MDgwMDE5WhcNMjUwNjA4MDgwMDE5WjAzMTEwLwYDVQQD
EyhlOTQxYTRmYTc0YjMyOGExYTA4ZTBhMzQ3MTA4Nzc3NWRlMWIzNjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4tg7fjlYV+aWPJrlT29brmM3+vWa
pKQdZyMzxBz7QEqi4o0tdWySWGg2eGYMr1yLApvw5x9jhiS0LgZOBtzua29UvkIu
TACjj+jtejt/hputH4vMGqrWSeBarJm1ZmtWF2rJE0llJlg7zuT/eXGABMmOVDOo
sCkW21D8n5v7Erg/XAi9iIzkq3o/4d7Tq3elzotUidVYWt6P6R2xuY7sa5ZLU76D
b97I/niM8IzCkzn4K6144QImAJSGO1HyPWpPmxbGUFsOJoxrpxEvIVQhprMU7KZ8
Ojlt9b8pEuaOS8u0am23XRNy/TIkc9ZpcDDxJGpRi1FHvCVvIzFALms0fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOlBpPp0syihoI4KNHEId3XeGzZgMB8GA1UdIwQY
MBaAFDhc9JOb7urq9ECcKEDrNEyrCFDgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQt
N2I3NjE1ZmYwZTk2LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQtN2I3NjE1ZmYwZTk2
LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVMee0JV1
kNIkEF3UwO0OKh4lV3XOEsJlOwHBmqsvoBgLC+4m/A/+VN2vFdVyGRgO66QGcJ+V
rw+WanyYy3UoTydOaeJivrqa7EiNn/EDEpvkQl3ol9/1s0Ek2cqvMBoQwjPQLHeP
5sViwthMae34wEWLMlP6woh+pb4nd7Q85CZwPCGZ++w6c5PeUjDb6bZh4zL/QP3f
Kfr5rmc5ppvGlN2e4ZswTBBeZWT8bQMVEL1L+h6vm9hYUR3AApYH9diSCb/jP+tR
LIsp8wEbw5rFHGBBvdLvp4PmCYlxJQFK+Yhn+14NRjnDaVMkJpICv02Fa50MgNzQ
+VVBerx94Xnp1Q==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:41:35 2025 by rpki-client