Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: NStNsAvx+lSLg9LJ147w01zfW+xyQptQBtC3/MBLnJs=
Subject key identifier: 21:C3:99:B0:8D:16:E7:5C:63:AC:FD:83:2D:10:D8:41:6D:62:AD:FB
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 01974930FEF07F2497C543D7316391A21FC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0E40
Signing time: Sat 07 Jun 2025 07:00:36 +0000
Manifest this update: Sat 07 Jun 2025 07:00:36 +0000
Manifest next update: Sun 08 Jun 2025 07:00:36 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: z73fI4YNYW+15v+3DPK694+iO2GFyJM3NYxv7meszhQ=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:30:fe:f0:7f:24:97:c5:43:d7:31:63:91:a2:1f:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Jun 7 07:00:36 2025 GMT
Not After : Jun 8 07:00:36 2025 GMT
Subject: CN=21c399b08d16e75c63acfd832d10d8416d62adfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:bc:a8:f6:5a:1c:90:0b:74:54:6c:0c:88:17:
b7:2e:45:76:4c:bd:da:cd:8f:c9:d8:53:d2:ba:f5:
b6:62:62:1d:69:29:ef:40:60:a5:72:ae:26:82:6a:
86:00:ca:9c:c6:30:77:6a:61:27:ce:35:9a:32:7f:
f6:03:26:0d:49:35:24:35:29:22:24:29:d2:a3:74:
07:86:70:51:2d:e1:4f:00:e3:70:15:68:c3:ed:0e:
01:55:18:dd:8d:12:9e:0c:5b:a4:4e:ec:67:ae:41:
7f:d3:4a:9f:f0:ba:b0:83:60:98:50:60:11:60:84:
9d:05:10:89:70:a8:7a:36:12:05:1c:e2:92:be:78:
4b:fb:c4:7a:12:df:b3:e1:49:bf:02:18:66:2d:e9:
67:9d:15:86:93:41:74:55:4b:a0:86:6c:e3:7e:8d:
f9:ac:48:f6:b8:87:05:7e:10:11:24:c4:cb:6f:91:
5b:c1:81:37:ae:73:ef:45:9c:91:05:3c:17:4a:da:
fd:a3:f3:2e:ce:c9:a7:18:63:8b:03:fa:f2:a2:00:
58:ec:7c:f6:c4:f2:3a:33:b3:1c:15:a5:50:01:78:
26:bc:87:36:ce:44:83:94:56:c2:61:b2:5a:02:cd:
3a:6e:e4:a1:34:a6:8f:36:d2:d5:cc:c6:5c:8f:98:
b1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C3:99:B0:8D:16:E7:5C:63:AC:FD:83:2D:10:D8:41:6D:62:AD:FB
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:80:7e:76:54:ab:6f:cf:3f:dc:03:33:aa:47:9e:d5:64:15:
cd:20:fa:50:82:4f:36:1e:65:d5:57:d3:a5:05:f0:27:9b:cb:
7a:50:08:cb:e7:73:3b:1a:01:2c:d2:ec:0f:42:ca:a9:1f:33:
2c:5e:ed:81:06:81:be:0c:31:a5:f1:88:9a:38:3c:e7:99:20:
50:8b:0f:1b:c3:83:4d:b1:00:95:e5:82:28:39:6f:24:61:2a:
eb:6a:dc:30:d6:62:19:12:4d:db:c7:ab:b1:d7:3d:62:cc:3f:
e8:08:da:38:cd:91:3e:bb:07:9c:89:f7:ff:d8:b9:16:6c:92:
15:ab:83:08:fc:ec:80:c8:59:22:34:58:27:b6:b9:a4:18:f8:
e0:6e:27:b7:72:88:6a:28:62:e9:97:74:6b:1d:ec:5a:4f:6a:
46:fe:88:8b:44:c1:9b:7b:c3:0d:53:b9:45:e4:70:65:cb:19:
d6:47:f7:83:db:9e:1d:90:87:7b:4c:af:a0:7f:4b:87:cc:b8:
7c:a4:c5:7c:0f:d2:41:ee:ac:e0:f1:a0:c5:9e:ac:ba:af:7f:
e8:64:f7:a9:be:2a:45:a8:f4:74:af:0e:1c:ea:1a:9c:4a:d7:
9a:60:9c:3f:d9:ed:72:0f:3b:bb:35:d3:c7:62:23:0e:fe:f6:
8b:14:8e:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMP7wfySXxUPXMWORoh/AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhOTM2ZDJmMjk4ZTZjZmQ1NjYwNDU3M2QxZWY5ZTBlODI5
OWI1MjkwHhcNMjUwNjA3MDcwMDM2WhcNMjUwNjA4MDcwMDM2WjAzMTEwLwYDVQQD
EygyMWMzOTliMDhkMTZlNzVjNjNhY2ZkODMyZDEwZDg0MTZkNjJhZGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0byo9lockAt0VGwMiBe3LkV2TL3a
zY/J2FPSuvW2YmIdaSnvQGClcq4mgmqGAMqcxjB3amEnzjWaMn/2AyYNSTUkNSki
JCnSo3QHhnBRLeFPAONwFWjD7Q4BVRjdjRKeDFukTuxnrkF/00qf8Lqwg2CYUGAR
YISdBRCJcKh6NhIFHOKSvnhL+8R6Et+z4Um/AhhmLelnnRWGk0F0VUughmzjfo35
rEj2uIcFfhARJMTLb5FbwYE3rnPvRZyRBTwXStr9o/MuzsmnGGOLA/ryogBY7Hz2
xPI6M7McFaVQAXgmvIc2zkSDlFbCYbJaAs06buShNKaPNtLVzMZcj5ix6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCHDmbCNFudcY6z9gy0Q2EFtYq37MB8GA1UdIwQY
MBaAFDqTbS8pjmz9VmBFc9Hvng6CmbUpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy83MDQ5NzMtMTg2Ni00MGQxLTlhMWQt
YjVmOGVjMGFhZDdjLzEvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy83MDQ5NzMtMTg2Ni00MGQxLTlhMWQtYjVmOGVjMGFhZDdj
LzEvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHYB+dlSr
b88/3AMzqkee1WQVzSD6UIJPNh5l1VfTpQXwJ5vLelAIy+dzOxoBLNLsD0LKqR8z
LF7tgQaBvgwxpfGImjg855kgUIsPG8ODTbEAleWCKDlvJGEq62rcMNZiGRJN28er
sdc9Ysw/6AjaOM2RPrsHnIn3/9i5FmySFauDCPzsgMhZIjRYJ7a5pBj44G4nt3KI
aihi6Zd0ax3sWk9qRv6Ii0TBm3vDDVO5ReRwZcsZ1kf3g9ueHZCHe0yvoH9Lh8y4
fKTFfA/SQe6s4PGgxZ6suq9/6GT3qb4qRaj0dK8OHOoanErXmmCcP9ntcg87uzXT
x2IjDv72ixSO7Q==
-----END CERTIFICATE-----
Generated at Sat Jun 7 10:46:02 2025 by rpki-client