Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
File: rkopxhOOLZPVSjYyi5TLH4o4Kms.mft (raw, json)
Hash identifier: Y0+MYcmDBMDGJRhlUUGJbSGX08eXKFPMBxelwxebsrU=
Subject key identifier: D9:36:0E:04:31:B3:9F:4F:2E:87:91:23:88:59:85:1A:9B:47:B2:C2
Authority key identifier: AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
Certificate issuer: /CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Certificate serial: 0197488CA0EFFCDFC47FC2B612BB9787775D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
Manifest number: 0A3A
Signing time: Sat 07 Jun 2025 04:01:05 +0000
Manifest this update: Sat 07 Jun 2025 04:01:05 +0000
Manifest next update: Sun 08 Jun 2025 04:01:05 +0000
Files and hashes: 1: BrYhHrEUiC6KPPt0z5zIenofLis.roa (hash: DE5/RvrYo8fEFuVG34PaeU1d6iLiNdb+LH6pRfnNAg0=)
2: rkopxhOOLZPVSjYyi5TLH4o4Kms.crl (hash: rd1kQbK7XNUXgeMKalTMbrtEVbGYDS99yaTLgfcHAm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:a0:ef:fc:df:c4:7f:c2:b6:12:bb:97:87:77:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Validity
Not Before: Jun 7 04:01:05 2025 GMT
Not After : Jun 8 04:01:05 2025 GMT
Subject: CN=d9360e0431b39f4f2e8791238859851a9b47b2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:69:ec:38:a6:a7:47:35:ad:64:1b:5f:b5:49:
cc:91:33:65:f2:3e:4e:c2:22:a6:c5:b4:c4:2f:88:
68:56:70:47:55:96:d2:90:6b:48:7b:3a:e5:de:bf:
c7:06:21:8a:d4:d4:77:d1:af:08:72:11:3f:2d:f7:
b2:42:c7:84:12:8b:08:48:39:40:de:2f:01:15:8a:
ae:44:a6:a6:c1:0f:6c:a2:2e:20:49:e9:80:22:c6:
c4:c1:d7:19:d7:6f:8b:80:98:78:4f:e3:36:71:db:
16:19:97:77:ec:6f:90:ba:0d:cc:3f:d9:d3:94:a0:
54:21:f3:58:79:49:24:f9:51:46:8d:07:21:83:4a:
a0:61:8d:74:a4:10:60:5c:01:dc:03:dc:ec:b0:00:
27:4a:c2:cc:cd:e8:f1:0e:ea:23:ad:86:06:5e:62:
25:83:06:79:3e:ac:9a:ac:0a:2d:cc:24:e7:db:dd:
c8:14:d5:e2:09:37:83:a0:e4:50:8c:3b:01:7f:ac:
4c:a1:74:a5:53:be:fe:4e:6f:b8:f2:99:17:3d:6c:
76:eb:54:ae:ff:3d:e2:5d:b5:0f:31:3d:df:8a:e8:
45:ca:ba:4d:be:b2:7e:21:b6:62:8b:00:c5:d3:2c:
aa:51:64:3a:d6:ce:2f:b5:0d:0c:53:1c:40:88:96:
c5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:36:0E:04:31:B3:9F:4F:2E:87:91:23:88:59:85:1A:9B:47:B2:C2
X509v3 Authority Key Identifier:
keyid:AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:51:06:ed:5c:6c:d0:ae:a0:66:a7:4a:34:d3:c0:fd:e7:89:
f9:b1:a1:a6:49:02:a2:2b:89:f3:03:fc:fe:9f:8e:e1:ae:57:
ef:cf:81:f7:e7:d9:96:d6:bd:cc:27:30:87:aa:ac:65:ca:30:
00:3d:2a:d4:65:cb:66:41:c1:99:73:e6:36:b3:c4:bd:05:59:
45:aa:0a:ef:36:56:d5:7a:74:f4:20:ec:66:0b:82:07:e9:cd:
c2:65:41:01:c7:48:4f:e1:12:c7:c2:7b:dc:62:98:45:79:9f:
49:0e:70:42:bb:cc:1e:ba:ba:9b:41:be:8a:f9:3f:fb:a3:1c:
f0:fd:48:54:eb:ac:f7:9f:a5:d5:a1:1e:a7:59:fe:9c:b8:16:
aa:f0:ca:03:d4:49:b5:06:65:ab:11:64:e5:ba:e3:83:0e:82:
b1:af:1c:c5:6b:13:5b:0b:e6:42:f0:6a:6f:ec:eb:97:df:09:
28:e6:0f:72:66:af:77:ba:5a:5b:71:cc:9f:f5:34:c8:ab:b9:
8d:95:7b:4b:83:c4:a1:63:ae:28:de:7f:03:e7:e7:05:70:aa:
c2:65:8b:f3:17:2a:e7:e7:26:72:4c:72:64:f3:4e:6c:e3:49:
d3:e8:e0:c0:53:86:c5:91:a6:62:3d:35:7e:16:9b:28:92:09:
00:2e:2f:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjKDv/N/Ef8K2EruXh3ddMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNGEyOWM2MTM4ZTJkOTNkNTRhMzYzMjhiOTRjYjFmOGEz
ODJhNmIwHhcNMjUwNjA3MDQwMTA1WhcNMjUwNjA4MDQwMTA1WjAzMTEwLwYDVQQD
EyhkOTM2MGUwNDMxYjM5ZjRmMmU4NzkxMjM4ODU5ODUxYTliNDdiMmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3mnsOKanRzWtZBtftUnMkTNl8j5O
wiKmxbTEL4hoVnBHVZbSkGtIezrl3r/HBiGK1NR30a8IchE/LfeyQseEEosISDlA
3i8BFYquRKamwQ9soi4gSemAIsbEwdcZ12+LgJh4T+M2cdsWGZd37G+Qug3MP9nT
lKBUIfNYeUkk+VFGjQchg0qgYY10pBBgXAHcA9zssAAnSsLMzejxDuojrYYGXmIl
gwZ5PqyarAotzCTn293IFNXiCTeDoORQjDsBf6xMoXSlU77+Tm+48pkXPWx261Su
/z3iXbUPMT3fiuhFyrpNvrJ+IbZiiwDF0yyqUWQ61s4vtQ0MUxxAiJbFewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNk2DgQxs59PLoeRI4hZhRqbR7LCMB8GA1UdIwQY
MBaAFK5KKcYTji2T1Uo2MouUyx+KOCprMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi8zNWJlMDQtZDViNy00NGFhLWFkZTQt
MTM0MDFkMWYyMmQyLzEvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi8zNWJlMDQtZDViNy00NGFhLWFkZTQtMTM0MDFkMWYyMmQy
LzEvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaVEG7Vxs
0K6gZqdKNNPA/eeJ+bGhpkkCoiuJ8wP8/p+O4a5X78+B9+fZlta9zCcwh6qsZcow
AD0q1GXLZkHBmXPmNrPEvQVZRaoK7zZW1Xp09CDsZguCB+nNwmVBAcdIT+ESx8J7
3GKYRXmfSQ5wQrvMHrq6m0G+ivk/+6Mc8P1IVOus95+l1aEep1n+nLgWqvDKA9RJ
tQZlqxFk5brjgw6Csa8cxWsTWwvmQvBqb+zrl98JKOYPcmavd7paW3HMn/U0yKu5
jZV7S4PEoWOuKN5/A+fnBXCqwmWL8xcq5+cmckxyZPNObONJ0+jgwFOGxZGmYj01
fhabKJIJAC4vYA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:55:56 2025 by rpki-client