Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
File: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft (raw, json)
Hash identifier: Kk9Yuy9JtIM/qg2gaP830MWvffMUkMRzPM0OrTQuNFU=
Subject key identifier: DD:2D:57:EF:72:7D:4A:08:F0:D0:F0:E7:B5:AF:F8:15:E7:93:E0:6F
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 01974FA151689B5CE3B58929830356BC4A14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
Manifest number: 0A4D
Signing time: Sun 08 Jun 2025 13:01:01 +0000
Manifest this update: Sun 08 Jun 2025 13:01:01 +0000
Manifest next update: Mon 09 Jun 2025 13:01:01 +0000
Files and hashes: 1: F3oEv0QBT7ejRZnF2aTKoyEK5cI.roa (hash: MTTLBQPL1aOScQOGtAiCwXpSCEzlrz60TWKC9wTFgO4=)
2: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl (hash: Kt+L6BqVR34YxTEWHekvseZpkJAFmxbXJbxNLDWk1TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:a1:51:68:9b:5c:e3:b5:89:29:83:03:56:bc:4a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: Jun 8 13:01:01 2025 GMT
Not After : Jun 9 13:01:01 2025 GMT
Subject: CN=dd2d57ef727d4a08f0d0f0e7b5aff815e793e06f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d7:2a:f5:9c:6c:63:ca:1e:79:4a:a1:2b:a5:
c8:93:0b:d7:2b:0f:9b:be:7f:0c:32:2a:16:59:f7:
02:72:ca:4e:c2:44:a3:8b:4b:2b:be:21:5f:30:bd:
9b:35:34:a4:f0:80:e5:77:90:d9:c1:1e:23:67:37:
34:03:5b:90:ff:b7:27:30:24:68:02:9b:19:ef:ff:
32:8f:8f:e8:59:12:b3:0c:c4:91:a9:9f:65:b9:fc:
93:b5:ec:93:e8:27:4a:19:3d:54:a9:da:b0:97:87:
fb:18:94:ec:69:0b:e0:b0:51:00:fd:a7:36:99:66:
f2:02:a1:62:ce:15:1e:3d:7c:95:bc:ef:1f:4e:b2:
2e:3b:45:31:60:0d:05:66:25:00:eb:72:05:1e:77:
46:ba:bd:81:9c:8d:65:44:d7:d9:7a:4c:96:16:e6:
43:58:f5:49:c6:3a:4d:aa:50:8c:9c:59:5b:c4:ef:
15:a3:5b:11:ec:0d:a7:2b:a3:23:b7:40:71:60:3f:
d0:2c:63:5e:19:b6:7c:8e:ae:07:3c:ac:07:12:09:
37:33:d2:a6:f3:56:3a:90:7a:27:3b:d0:b1:ec:06:
72:46:06:39:1e:dc:40:8c:b6:13:f3:bd:e3:97:40:
11:38:83:6e:60:1c:3c:10:bf:df:3d:6a:24:ea:95:
26:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2D:57:EF:72:7D:4A:08:F0:D0:F0:E7:B5:AF:F8:15:E7:93:E0:6F
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:2c:42:9b:12:62:2b:6c:af:ba:10:e3:86:6d:d8:39:09:e4:
c3:a2:e4:86:7e:95:28:e8:66:9b:7a:12:f9:44:12:31:24:f9:
97:7e:20:b1:dd:77:d6:d4:c5:2d:d2:fc:a9:9e:ea:b3:a5:38:
1f:5b:a4:57:9e:db:71:ee:19:46:1c:5d:9f:7a:24:39:3c:a9:
b6:de:9d:87:5b:26:db:61:39:ff:f4:83:8d:82:aa:6b:85:3f:
b8:93:a6:9c:e6:27:35:ac:43:a8:73:fd:4c:19:0a:2f:55:4a:
1a:7f:e3:32:4f:01:a6:e6:f3:0b:c9:d8:40:69:9d:46:48:14:
d8:50:3d:39:27:6b:e8:05:f6:d2:13:0f:65:55:79:d7:6e:eb:
c9:89:e5:68:94:8c:aa:c8:01:e0:2c:07:7e:2c:47:f8:21:d2:
47:d0:7e:cf:48:09:97:e2:d0:97:68:40:ac:f5:df:c5:e0:06:
ae:9b:35:ad:97:6c:d4:56:45:ca:4c:af:6b:3f:e3:71:1e:d5:
c4:b8:ac:8b:b2:84:12:6a:55:ce:3f:55:63:62:1d:92:e2:ec:
6f:30:ef:7d:da:a2:83:b1:5c:15:cd:05:6e:45:cf:4a:4e:bf:
6f:6d:bf:88:b9:ce:39:ee:79:49:67:1e:f8:fc:5d:eb:29:d3:
e6:12:e0:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdPoVFom1zjtYkpgwNWvEoUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZjQ2OGQxNTE1YWQ2ZjE0Y2E2OWNmOWM3NzJlNWNiNTdk
Mjc3ZDYwHhcNMjUwNjA4MTMwMTAxWhcNMjUwNjA5MTMwMTAxWjAzMTEwLwYDVQQD
EyhkZDJkNTdlZjcyN2Q0YTA4ZjBkMGYwZTdiNWFmZjgxNWU3OTNlMDZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNcq9ZxsY8oeeUqhK6XIkwvXKw+b
vn8MMioWWfcCcspOwkSji0srviFfML2bNTSk8IDld5DZwR4jZzc0A1uQ/7cnMCRo
ApsZ7/8yj4/oWRKzDMSRqZ9lufyTteyT6CdKGT1Uqdqwl4f7GJTsaQvgsFEA/ac2
mWbyAqFizhUePXyVvO8fTrIuO0UxYA0FZiUA63IFHndGur2BnI1lRNfZekyWFuZD
WPVJxjpNqlCMnFlbxO8Vo1sR7A2nK6Mjt0BxYD/QLGNeGbZ8jq4HPKwHEgk3M9Km
81Y6kHonO9Cx7AZyRgY5HtxAjLYT873jl0AROINuYBw8EL/fPWok6pUmDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN0tV+9yfUoI8NDw57Wv+BXnk+BvMB8GA1UdIwQY
MBaAFDv0aNFRWtbxTKac+cdy5ctX0nfWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT19SbzBWRmExdkZNcHB6NXgzTGx5MWZTZDlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC84MjFmMzUtYTg4MC00ZDY0LWFkYzAt
NDYxMTA0NmYxYTRlLzEvT19SbzBWRmExdkZNcHB6NXgzTGx5MWZTZDlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC84MjFmMzUtYTg4MC00ZDY0LWFkYzAtNDYxMTA0NmYxYTRl
LzEvT19SbzBWRmExdkZNcHB6NXgzTGx5MWZTZDlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlSxCmxJi
K2yvuhDjhm3YOQnkw6Lkhn6VKOhmm3oS+UQSMST5l34gsd131tTFLdL8qZ7qs6U4
H1ukV57bce4ZRhxdn3okOTyptt6dh1sm22E5//SDjYKqa4U/uJOmnOYnNaxDqHP9
TBkKL1VKGn/jMk8BpubzC8nYQGmdRkgU2FA9OSdr6AX20hMPZVV5127ryYnlaJSM
qsgB4CwHfixH+CHSR9B+z0gJl+LQl2hArPXfxeAGrps1rZds1FZFykyvaz/jcR7V
xLisi7KEEmpVzj9VY2IdkuLsbzDvfdqig7FcFc0FbkXPSk6/b22/iLnOOe55SWce
+Pxd6ynT5hLg8Q==
-----END CERTIFICATE-----
Generated at Sun Jun 8 21:03:22 2025 by rpki-client