Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
File: oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft (raw, json)
Hash identifier: G93TZ62xV1YDmybleK15pY6u49G9SesoFy8wRNlIa3M=
Subject key identifier: 58:27:1D:68:13:1F:88:A9:14:BC:0C:78:E2:BC:35:A1:C3:82:37:B2
Authority key identifier: A0:F2:7D:4F:06:76:14:BC:BC:27:03:46:FA:0D:44:B1:5F:80:51:63
Certificate issuer: /CN=a0f27d4f067614bcbc270346fa0d44b15f805163
Certificate serial: 01975422C2FF29BDFCBB366C38D0B00C6797
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
Manifest number: 157F
Signing time: Mon 09 Jun 2025 10:00:53 +0000
Manifest this update: Mon 09 Jun 2025 10:00:53 +0000
Manifest next update: Tue 10 Jun 2025 10:00:53 +0000
Files and hashes: 1: VpVmsYSCQdNXwRHKQt0NXlzsSG0.roa (hash: E6B6Bl1mDcetd5EsaNvc0boHcTeWIhqXRqGoFPj9kUc=)
2: oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl (hash: HHTu76BoopWgJFplvbMBGK/3WQ/8lK5LDxD18FipCoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:22:c2:ff:29:bd:fc:bb:36:6c:38:d0:b0:0c:67:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0f27d4f067614bcbc270346fa0d44b15f805163
Validity
Not Before: Jun 9 10:00:53 2025 GMT
Not After : Jun 10 10:00:53 2025 GMT
Subject: CN=58271d68131f88a914bc0c78e2bc35a1c38237b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4d:e0:75:5d:99:c7:df:50:1d:99:c2:23:4b:
37:83:23:80:95:04:e5:79:74:cd:70:bf:e0:f2:1b:
44:84:bf:b2:9b:4b:f5:27:80:c9:43:8f:33:af:5c:
73:2e:82:bb:c8:a3:62:7e:8b:27:28:1a:a6:e0:04:
ae:34:37:0d:44:f1:8a:b2:fe:5e:a9:44:f9:d8:f2:
ac:81:93:53:8e:a8:b6:92:fb:45:8f:c4:ac:35:87:
c6:e8:3b:f6:1b:d4:8a:dc:29:d8:8e:60:f3:8e:7e:
c9:10:f5:19:5e:40:bc:6a:c8:1e:a5:61:60:cb:ed:
f6:a5:b5:a5:95:7d:fd:75:c6:7a:89:24:9d:59:48:
83:21:c0:f4:34:69:18:7d:21:de:b3:2c:03:0b:4a:
e5:45:f6:97:d5:4a:97:b5:7a:8b:39:05:1f:76:ca:
84:43:b6:9f:48:f5:ef:ad:ba:76:d3:ae:1e:4b:c0:
f5:cd:34:34:bb:58:c0:63:e0:e6:72:c7:96:f1:92:
9e:1c:13:83:08:39:af:0b:eb:f3:6c:9a:e8:58:f7:
5d:92:7e:b5:2f:5f:a7:98:64:d5:62:78:70:a5:09:
61:06:8f:3d:7e:1e:00:0f:dd:47:00:2c:dd:f2:60:
47:a1:62:9d:80:b4:dc:d8:23:a0:99:e0:a7:4c:b6:
94:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:27:1D:68:13:1F:88:A9:14:BC:0C:78:E2:BC:35:A1:C3:82:37:B2
X509v3 Authority Key Identifier:
keyid:A0:F2:7D:4F:06:76:14:BC:BC:27:03:46:FA:0D:44:B1:5F:80:51:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:f4:c8:be:5f:e8:fc:32:19:c0:ae:bf:90:a8:f0:ec:f0:df:
69:3a:6e:bf:65:57:40:74:e1:d6:e0:c3:85:b5:ef:43:55:80:
7d:72:57:74:ac:b9:4d:f7:52:53:b8:ee:e2:dd:9b:81:0f:11:
1b:dc:bb:46:1b:8d:ab:37:d0:7a:bc:c5:9e:41:47:ce:99:de:
56:87:93:18:79:3f:2d:7f:68:87:58:9b:79:2f:98:af:84:a0:
13:17:57:f9:10:c6:67:05:5c:cb:07:a8:89:20:23:4c:3c:14:
d3:8a:f5:da:33:f7:12:e5:ff:dd:24:33:6e:9d:2b:70:11:a3:
44:13:c3:71:e6:4d:ce:b1:2b:b1:31:e7:57:6b:f3:ad:e0:5a:
7a:bf:d4:e3:fa:e6:67:d7:e0:6f:53:e4:76:67:ab:75:9d:2f:
ed:b0:78:16:22:64:29:e1:c7:54:68:6a:94:2c:9c:99:2e:43:
27:18:e0:ac:91:c5:bd:29:0e:55:eb:e1:ee:76:e4:03:fa:ea:
46:6e:73:3f:7b:4f:a3:e7:e3:93:85:6d:94:16:c6:7c:85:19:
1f:a9:6f:8a:8e:69:84:88:49:99:cc:0c:16:25:85:32:6e:81:
78:f1:37:4f:ce:16:97:8a:85:c6:cf:fa:c4:ec:d7:32:42:29:
0b:e5:77:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdUIsL/Kb38uzZsONCwDGeXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZjI3ZDRmMDY3NjE0YmNiYzI3MDM0NmZhMGQ0NGIxNWY4
MDUxNjMwHhcNMjUwNjA5MTAwMDUzWhcNMjUwNjEwMTAwMDUzWjAzMTEwLwYDVQQD
Eyg1ODI3MWQ2ODEzMWY4OGE5MTRiYzBjNzhlMmJjMzVhMWMzODIzN2IyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkU3gdV2Zx99QHZnCI0s3gyOAlQTl
eXTNcL/g8htEhL+ym0v1J4DJQ48zr1xzLoK7yKNifosnKBqm4ASuNDcNRPGKsv5e
qUT52PKsgZNTjqi2kvtFj8SsNYfG6Dv2G9SK3CnYjmDzjn7JEPUZXkC8asgepWFg
y+32pbWllX39dcZ6iSSdWUiDIcD0NGkYfSHesywDC0rlRfaX1UqXtXqLOQUfdsqE
Q7afSPXvrbp2064eS8D1zTQ0u1jAY+DmcseW8ZKeHBODCDmvC+vzbJroWPddkn61
L1+nmGTVYnhwpQlhBo89fh4AD91HACzd8mBHoWKdgLTc2COgmeCnTLaUbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFgnHWgTH4ipFLwMeOK8NaHDgjeyMB8GA1UdIwQY
MBaAFKDyfU8GdhS8vCcDRvoNRLFfgFFjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1BKOVR3WjJGTHk4SndORy1nMUVzVi1BVVdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9mNzMyYTAtZGM2Mi00MzI2LTg1ZTIt
OTM2NTk4ZTAwY2ZlLzEvb1BKOVR3WjJGTHk4SndORy1nMUVzVi1BVVdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS9mNzMyYTAtZGM2Mi00MzI2LTg1ZTItOTM2NTk4ZTAwY2Zl
LzEvb1BKOVR3WjJGTHk4SndORy1nMUVzVi1BVVdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZPTIvl/o
/DIZwK6/kKjw7PDfaTpuv2VXQHTh1uDDhbXvQ1WAfXJXdKy5TfdSU7ju4t2bgQ8R
G9y7RhuNqzfQerzFnkFHzpneVoeTGHk/LX9oh1ibeS+Yr4SgExdX+RDGZwVcyweo
iSAjTDwU04r12jP3EuX/3SQzbp0rcBGjRBPDceZNzrErsTHnV2vzreBaer/U4/rm
Z9fgb1PkdmerdZ0v7bB4FiJkKeHHVGhqlCycmS5DJxjgrJHFvSkOVevh7nbkA/rq
Rm5zP3tPo+fjk4VtlBbGfIUZH6lvio5phIhJmcwMFiWFMm6BePE3T84Wl4qFxs/6
xOzXMkIpC+V3UQ==
-----END CERTIFICATE-----
Generated at Mon Jun 9 13:21:42 2025 by rpki-client