Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
File: o95MO22qWmmL8wfMORKCqymH1hc.mft (raw, json)
Hash identifier: et1GPSTsR7Fdbk9l9ZmFtmZ4d2Ku3ubqWOHYkj7JEz4=
Subject key identifier: FD:91:D4:CE:8A:E4:CE:2A:26:E8:99:7A:F8:8A:8D:36:72:9E:33:F3
Authority key identifier: A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
Certificate issuer: /CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Certificate serial: 019746673767B28209D6FCE073D97668FD10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
Manifest number: 0AC5
Signing time: Fri 06 Jun 2025 18:00:58 +0000
Manifest this update: Fri 06 Jun 2025 18:00:58 +0000
Manifest next update: Sat 07 Jun 2025 18:00:58 +0000
Files and hashes: 1: aaz13NJRzQSWik1cFJTAx8gsPnU.roa (hash: CsCDTEtayCoWB3zZSGEuzJzCmVEA7r5a08XAY8x/Hbg=)
2: o95MO22qWmmL8wfMORKCqymH1hc.crl (hash: GUCCskaJg4IVppjrOL+f33yIqmUDp8b2tH/8kJV6dcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:37:67:b2:82:09:d6:fc:e0:73:d9:76:68:fd:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Validity
Not Before: Jun 6 18:00:58 2025 GMT
Not After : Jun 7 18:00:58 2025 GMT
Subject: CN=fd91d4ce8ae4ce2a26e8997af88a8d36729e33f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:97:e0:9c:f0:96:ef:ee:ce:24:17:26:96:52:
d2:0d:4b:00:99:10:23:06:09:38:8c:3e:58:6d:9b:
89:16:f1:cd:e8:76:26:8f:ef:09:ad:9f:ea:0b:f4:
11:08:6d:ee:44:9e:09:27:57:a1:18:86:1f:a7:76:
15:fe:1c:c4:a1:dc:65:65:82:10:25:2f:87:9c:43:
b8:54:ed:f1:15:bc:a4:a2:5e:dc:c8:5b:a8:0e:0a:
7f:6a:d6:da:5d:40:8d:c2:49:dd:5e:a1:a8:b5:cc:
ce:21:25:d1:c8:20:7c:a0:0f:db:6f:bb:60:ed:74:
89:11:c0:1c:fa:b2:fb:3d:88:a2:f7:25:b9:fd:e0:
b8:3c:ed:90:62:7c:d9:a6:15:ff:04:78:ee:80:e3:
d3:80:8d:99:40:f3:0a:94:ff:0d:08:dd:5f:c1:35:
2d:8f:64:be:57:b2:dc:3d:89:2a:ae:21:36:a1:d4:
88:29:ed:71:27:f6:89:da:1e:d2:d6:a2:a5:99:60:
2a:c6:97:f3:40:37:7b:b2:86:ad:ce:77:c0:06:be:
f3:0f:e7:1c:9f:24:68:c2:fa:4e:5e:da:5b:93:57:
c3:c2:10:61:d9:59:c4:60:07:7d:84:79:7f:71:93:
db:f4:00:65:36:48:44:f9:8d:5e:66:de:c4:8c:d4:
a9:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:91:D4:CE:8A:E4:CE:2A:26:E8:99:7A:F8:8A:8D:36:72:9E:33:F3
X509v3 Authority Key Identifier:
keyid:A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:52:07:42:73:14:1e:31:ab:92:bd:c0:0a:f1:8e:e0:af:a8:
76:3c:42:1d:c4:51:be:5e:bd:e4:56:83:be:88:5e:a4:ab:51:
08:c3:89:46:15:ac:37:e6:8e:cf:5d:04:8e:78:c0:1f:b1:af:
7c:f5:25:d7:06:7a:75:15:27:b6:15:d1:ed:6d:35:28:82:f3:
5a:cc:64:e4:3e:e8:d4:d9:7f:fc:66:18:85:0e:c5:a9:79:04:
52:e9:eb:c3:45:18:40:72:60:5f:3c:85:c9:aa:a4:0b:1b:1f:
f6:e1:00:ed:a3:b8:d1:bf:1a:03:a7:10:8c:69:0f:d7:36:af:
dd:55:6b:86:16:49:77:17:49:1c:17:11:11:39:ff:2e:c7:cf:
93:ab:b4:7b:c9:40:e0:ac:03:c8:00:7b:3c:25:22:3d:7f:7b:
db:ee:4d:c9:c3:37:f7:2f:4d:d8:df:89:4e:06:b4:4c:37:4d:
03:01:27:b0:17:c3:7c:91:14:3a:c6:d0:5c:a1:a2:5b:ab:0a:
54:dd:d8:39:12:92:dc:31:6e:a5:f6:e0:57:4f:6a:28:c6:b1:
e4:e2:1e:bc:9f:4e:d5:8c:05:49:c7:1c:c9:52:0d:ba:30:a4:
4a:dd:4c:3b:ca:5e:3d:7d:67:85:64:dd:b3:9c:c0:80:18:b9:
11:9e:0a:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGZzdnsoIJ1vzgc9l2aP0QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzZGU0YzNiNmRhYTVhNjk4YmYzMDdjYzM5MTI4MmFiMjk4
N2Q2MTcwHhcNMjUwNjA2MTgwMDU4WhcNMjUwNjA3MTgwMDU4WjAzMTEwLwYDVQQD
EyhmZDkxZDRjZThhZTRjZTJhMjZlODk5N2FmODhhOGQzNjcyOWUzM2YzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5fgnPCW7+7OJBcmllLSDUsAmRAj
Bgk4jD5YbZuJFvHN6HYmj+8JrZ/qC/QRCG3uRJ4JJ1ehGIYfp3YV/hzEodxlZYIQ
JS+HnEO4VO3xFbykol7cyFuoDgp/atbaXUCNwkndXqGotczOISXRyCB8oA/bb7tg
7XSJEcAc+rL7PYii9yW5/eC4PO2QYnzZphX/BHjugOPTgI2ZQPMKlP8NCN1fwTUt
j2S+V7LcPYkqriE2odSIKe1xJ/aJ2h7S1qKlmWAqxpfzQDd7soatznfABr7zD+cc
nyRowvpOXtpbk1fDwhBh2VnEYAd9hHl/cZPb9ABlNkhE+Y1eZt7EjNSpiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP2R1M6K5M4qJuiZeviKjTZynjPzMB8GA1UdIwQY
MBaAFKPeTDttqlppi/MHzDkSgqsph9YXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzk1TU8yMnFXbW1MOHdmTU9SS0NxeW1IMWhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS80YzlmYmUtMTcyNS00MTE2LTllZjMt
MGFmMmM1YzRjYzBmLzEvbzk1TU8yMnFXbW1MOHdmTU9SS0NxeW1IMWhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS80YzlmYmUtMTcyNS00MTE2LTllZjMtMGFmMmM1YzRjYzBm
LzEvbzk1TU8yMnFXbW1MOHdmTU9SS0NxeW1IMWhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALlIHQnMU
HjGrkr3ACvGO4K+odjxCHcRRvl695FaDvohepKtRCMOJRhWsN+aOz10EjnjAH7Gv
fPUl1wZ6dRUnthXR7W01KILzWsxk5D7o1Nl//GYYhQ7FqXkEUunrw0UYQHJgXzyF
yaqkCxsf9uEA7aO40b8aA6cQjGkP1zav3VVrhhZJdxdJHBcRETn/LsfPk6u0e8lA
4KwDyAB7PCUiPX972+5NycM39y9N2N+JTga0TDdNAwEnsBfDfJEUOsbQXKGiW6sK
VN3YORKS3DFupfbgV09qKMax5OIevJ9O1YwFScccyVINujCkSt1MO8pePX1nhWTd
s5zAgBi5EZ4K8A==
-----END CERTIFICATE-----
Generated at Sat Jun 7 03:18:13 2025 by rpki-client