Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: YAMfailPf0cU5hPZiO8FXiDMp95BWtV/uto/5cHZYG8=
Subject key identifier: DF:F5:B7:94:24:5E:D1:1A:67:42:54:C6:B0:15:40:C4:55:D7:39:59
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 01974FA13C34C1D97424DACD8A3E665856BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 0791
Signing time: Sun 08 Jun 2025 13:00:56 +0000
Manifest this update: Sun 08 Jun 2025 13:00:56 +0000
Manifest next update: Mon 09 Jun 2025 13:00:56 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: KJxwTxb5zUdFMgnsW6jfzsYdfSRlCxeZSUksFZzL0mU=)
2: _QTwS8nAMSFeKK0ZzzPsIxYgPqo.roa (hash: Q/O46iBV3y1aR3ABGTzdA2RTNwov3wLVP1w6lO4+h/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:a1:3c:34:c1:d9:74:24:da:cd:8a:3e:66:58:56:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: Jun 8 13:00:56 2025 GMT
Not After : Jun 9 13:00:56 2025 GMT
Subject: CN=dff5b794245ed11a674254c6b01540c455d73959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:70:cf:f4:27:20:ae:45:be:1b:d1:48:a0:6d:
9d:9f:3e:d4:b3:aa:ef:f3:1b:b4:c5:a2:87:b7:5b:
7a:66:26:c0:3a:a7:78:a2:c8:f4:a2:30:13:51:45:
6d:c1:ca:18:05:b7:e8:e3:51:25:f7:87:81:8c:0a:
c4:2a:a6:4d:38:81:50:0c:46:bc:06:4e:a0:7f:60:
0e:42:8f:66:43:c2:39:74:a9:f7:1e:da:fe:13:a7:
79:7b:87:b1:f0:4f:b5:f0:d5:42:45:74:12:30:b8:
18:e1:da:0d:69:49:2e:0c:6f:34:29:44:d0:59:3b:
2a:02:dd:f3:59:79:5b:53:bf:37:59:3e:9a:d6:cb:
70:c9:e2:94:18:07:4e:ea:1a:19:c3:6a:89:b4:91:
92:79:c5:5e:87:b9:91:78:85:7a:52:02:46:2a:32:
e3:20:ac:3c:bc:6e:6b:97:73:37:c7:b7:fb:2e:5c:
83:5a:e9:f8:1f:4e:bf:9b:8b:14:07:48:5d:94:fe:
5e:7c:0f:11:4b:d8:48:20:4b:78:b1:f8:6a:d1:86:
da:29:4f:98:2c:16:84:5e:21:1e:5b:4a:4b:bf:ce:
89:d7:d1:44:ff:2b:58:77:a3:17:51:10:6f:0d:f6:
56:62:eb:ca:0d:7a:b1:38:62:79:ed:dc:8f:98:87:
7d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:F5:B7:94:24:5E:D1:1A:67:42:54:C6:B0:15:40:C4:55:D7:39:59
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:e7:1e:35:2c:69:6d:8a:e3:3a:8a:fa:b9:87:89:81:98:2d:
3c:b1:fe:0b:96:95:a4:40:7c:a0:11:c0:ec:55:fd:b4:1b:d7:
bc:2b:b8:32:39:81:5c:3e:b2:bb:92:c4:c8:c7:8f:94:6f:78:
b4:c7:ed:99:20:7f:43:d2:a4:b9:d8:be:b7:1d:b6:42:b7:3e:
da:cb:46:69:45:11:d7:3c:28:2b:07:ef:19:d1:ed:2a:2f:82:
7f:6e:af:b4:88:f5:1d:28:66:c2:88:75:d3:a5:1f:a8:4b:1a:
72:eb:ea:73:52:47:2a:b5:d6:01:14:21:14:51:f5:dc:3f:62:
3d:67:a4:aa:50:d8:3a:bc:ff:0d:37:05:1e:45:e1:4e:22:61:
ea:a8:81:60:fb:e9:e0:fb:6d:72:c9:de:08:5a:70:d4:da:e7:
cf:7c:d1:1a:fe:51:10:f1:c4:ea:83:8f:e4:3a:5c:87:75:7c:
8f:ea:5a:d4:89:b2:cf:21:c0:c0:fe:2d:84:c5:f8:31:e4:5b:
fe:a0:64:50:26:0d:4a:e5:1c:3e:b9:a8:22:bd:47:ee:cc:c0:
e3:83:c8:e0:fe:25:7c:f7:a7:fc:98:17:9f:fc:1f:72:b3:53:
46:0d:38:71:e3:6b:c7:c2:61:08:b8:b5:66:bd:0f:ec:a3:39:
14:0e:04:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdPoTw0wdl0JNrNij5mWFa9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5Y2FhMGJkMjU0ZDFhODdmNGJiMzBkYjNiNTEzZmRiOWFm
NjI1ZjYwHhcNMjUwNjA4MTMwMDU2WhcNMjUwNjA5MTMwMDU2WjAzMTEwLwYDVQQD
EyhkZmY1Yjc5NDI0NWVkMTFhNjc0MjU0YzZiMDE1NDBjNDU1ZDczOTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzXDP9CcgrkW+G9FIoG2dnz7Us6rv
8xu0xaKHt1t6ZibAOqd4osj0ojATUUVtwcoYBbfo41El94eBjArEKqZNOIFQDEa8
Bk6gf2AOQo9mQ8I5dKn3Htr+E6d5e4ex8E+18NVCRXQSMLgY4doNaUkuDG80KUTQ
WTsqAt3zWXlbU783WT6a1stwyeKUGAdO6hoZw2qJtJGSecVeh7mReIV6UgJGKjLj
IKw8vG5rl3M3x7f7LlyDWun4H06/m4sUB0hdlP5efA8RS9hIIEt4sfhq0YbaKU+Y
LBaEXiEeW0pLv86J19FE/ytYd6MXURBvDfZWYuvKDXqxOGJ57dyPmId9RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN/1t5QkXtEaZ0JUxrAVQMRV1zlZMB8GA1UdIwQY
MBaAFDnKoL0lTRqH9Lsw2ztRP9ua9iX2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xZjA5NTUtNGQ2Mi00MzNiLWIxOGMt
N2MzN2U2MzliZjBmLzEvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8xZjA5NTUtNGQ2Mi00MzNiLWIxOGMtN2MzN2U2MzliZjBm
LzEvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADuceNSxp
bYrjOor6uYeJgZgtPLH+C5aVpEB8oBHA7FX9tBvXvCu4MjmBXD6yu5LEyMePlG94
tMftmSB/Q9Kkudi+tx22Qrc+2stGaUUR1zwoKwfvGdHtKi+Cf26vtIj1HShmwoh1
06UfqEsacuvqc1JHKrXWARQhFFH13D9iPWekqlDYOrz/DTcFHkXhTiJh6qiBYPvp
4PttcsneCFpw1Nrnz3zRGv5REPHE6oOP5Dpch3V8j+pa1ImyzyHAwP4thMX4MeRb
/qBkUCYNSuUcPrmoIr1H7szA44PI4P4lfPen/JgXn/wfcrNTRg04ceNrx8JhCLi1
Zr0P7KM5FA4EAA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 21:55:06 2025 by rpki-client