Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
File: ogAYZIx6-hREZNR7seLLK6eG67E.mft (raw, json)
Hash identifier: RkfI2Sclzx2ePd2kJZtktUF8SrH9UKNZ3uqAjdu8QlY=
Subject key identifier: E7:58:28:BB:2D:A9:AD:41:85:55:69:A1:DE:33:FA:E9:44:FF:AD:45
Authority key identifier: A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
Certificate issuer: /CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Certificate serial: 0197496821DA264BCA64D9D2A25C1E3B0046
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
Manifest number: 0285
Signing time: Sat 07 Jun 2025 08:00:50 +0000
Manifest this update: Sat 07 Jun 2025 08:00:50 +0000
Manifest next update: Sun 08 Jun 2025 08:00:50 +0000
Files and hashes: 1: Hg_LuWwF2PqnDP--QEmiR8s_JMw.roa (hash: pTVkg9vcSnhojGDdhaJdcSnTn9EzuAwvN69LeVjj+eI=)
2: ZyIFjDXNoQmTUrQTfRFil604EkI.roa (hash: w5vJh9LGNygfKftlkH12Umx5kIPwjNAoWDXEhQaobKc=)
3: ogAYZIx6-hREZNR7seLLK6eG67E.crl (hash: BlsvyrgE87sH5j76Yc7ymNt44TwvXNp1ZCjh3yK/89s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:21:da:26:4b:ca:64:d9:d2:a2:5c:1e:3b:00:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Validity
Not Before: Jun 7 08:00:50 2025 GMT
Not After : Jun 8 08:00:50 2025 GMT
Subject: CN=e75828bb2da9ad41855569a1de33fae944ffad45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:82:b4:33:eb:76:e2:b8:c3:e2:57:93:82:31:
7a:b2:d7:5c:77:5b:4a:11:0f:9b:84:47:a8:5e:61:
27:d7:dd:58:81:0f:32:c9:56:bc:06:b3:25:4d:33:
14:6a:cf:78:7a:4c:cf:a4:ba:19:cb:0f:12:8e:61:
5f:d5:95:58:b0:92:8f:a8:cb:f5:db:0b:46:00:10:
32:2a:2c:81:fc:d7:2d:3f:5d:d0:71:a8:09:90:48:
7f:50:e0:21:02:48:5c:92:56:92:f8:a8:9b:65:7c:
01:8f:91:56:7b:82:d9:71:c1:63:0a:8a:6b:5f:08:
cb:ee:e5:5c:4b:ca:c2:47:cf:77:0a:1f:e7:df:db:
47:4e:dd:52:e7:b1:11:f6:29:9b:30:59:3c:13:f7:
94:6f:c1:74:4f:01:c5:0f:a5:80:49:db:a7:20:0f:
ae:57:60:66:d7:41:fc:3f:d7:5d:7b:1b:1f:43:12:
30:68:54:36:11:11:22:92:38:a6:f5:aa:86:8a:36:
ea:88:b5:1a:a0:66:73:2d:52:05:4e:ed:4d:c7:60:
81:dc:a9:d9:eb:61:10:8f:20:7e:d8:a0:41:92:09:
1e:e1:8c:32:1e:a9:c0:29:a3:8a:78:0f:05:99:a4:
36:65:06:1f:70:fd:e0:da:37:2d:41:50:e8:21:58:
f0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:58:28:BB:2D:A9:AD:41:85:55:69:A1:DE:33:FA:E9:44:FF:AD:45
X509v3 Authority Key Identifier:
keyid:A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:96:52:0c:b8:84:67:7f:48:20:6e:19:df:10:1c:a0:d7:93:
26:02:71:50:12:f7:7b:d2:7c:cb:fc:1b:01:00:ff:a6:e7:e1:
3e:24:f5:dc:66:fb:4c:e0:cd:c8:d2:9d:60:7b:c1:a5:d5:34:
b2:a9:b7:cf:24:04:59:27:48:0f:3b:d7:ae:33:3a:76:ca:19:
01:24:5e:f6:bc:d3:60:82:dd:d9:4e:0b:40:d3:1c:58:26:84:
ba:91:33:7c:11:9e:a3:de:27:1a:aa:ec:bb:b8:d6:58:e9:1f:
57:69:34:c1:eb:53:7f:2a:e6:36:04:f7:87:c3:79:bd:46:41:
20:6d:bc:8a:d1:f8:a0:e5:25:31:64:0c:99:1e:9d:a8:dc:8a:
6f:95:51:22:89:0f:f4:9e:5e:d6:a5:6b:8a:a6:b2:55:39:9c:
4c:b4:b6:05:37:6d:ff:be:86:1c:0d:28:65:a6:a3:49:1c:c4:
27:9c:34:6d:80:98:1d:88:d6:6b:94:a2:0e:09:67:c8:d3:89:
c1:3b:11:77:7a:de:c9:03:d1:7a:d9:09:03:58:13:c0:5a:6e:
ac:45:3f:7b:dc:6d:02:92:55:d3:dc:52:25:6f:95:6a:ff:a6:
7c:c5:6b:cd:dc:0f:53:35:91:29:e2:cf:5f:f8:86:32:ca:df:
13:88:30:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJaCHaJkvKZNnSolweOwBGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyMDAxODY0OGM3YWZhMTQ0NDY0ZDQ3YmIxZTJjYjJiYTc4
NmViYjEwHhcNMjUwNjA3MDgwMDUwWhcNMjUwNjA4MDgwMDUwWjAzMTEwLwYDVQQD
EyhlNzU4MjhiYjJkYTlhZDQxODU1NTY5YTFkZTMzZmFlOTQ0ZmZhZDQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIK0M+t24rjD4leTgjF6stdcd1tK
EQ+bhEeoXmEn191YgQ8yyVa8BrMlTTMUas94ekzPpLoZyw8SjmFf1ZVYsJKPqMv1
2wtGABAyKiyB/NctP13QcagJkEh/UOAhAkhcklaS+KibZXwBj5FWe4LZccFjCopr
XwjL7uVcS8rCR893Ch/n39tHTt1S57ER9imbMFk8E/eUb8F0TwHFD6WASdunIA+u
V2Bm10H8P9ddexsfQxIwaFQ2EREikjim9aqGijbqiLUaoGZzLVIFTu1Nx2CB3KnZ
62EQjyB+2KBBkgke4YwyHqnAKaOKeA8FmaQ2ZQYfcP3g2jctQVDoIVjw0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOdYKLstqa1BhVVpod4z+ulE/61FMB8GA1UdIwQY
MBaAFKIAGGSMevoURGTUe7HiyyunhuuxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2dBWVpJeDYtaFJFWk5SN3NlTExLNmVHNjdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS84M2E3N2QtOWNhZC00MGRlLWFiZWQt
YzRkNDJiN2Y2MjcwLzEvb2dBWVpJeDYtaFJFWk5SN3NlTExLNmVHNjdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS84M2E3N2QtOWNhZC00MGRlLWFiZWQtYzRkNDJiN2Y2Mjcw
LzEvb2dBWVpJeDYtaFJFWk5SN3NlTExLNmVHNjdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALZZSDLiE
Z39IIG4Z3xAcoNeTJgJxUBL3e9J8y/wbAQD/pufhPiT13Gb7TODNyNKdYHvBpdU0
sqm3zyQEWSdIDzvXrjM6dsoZASRe9rzTYILd2U4LQNMcWCaEupEzfBGeo94nGqrs
u7jWWOkfV2k0wetTfyrmNgT3h8N5vUZBIG28itH4oOUlMWQMmR6dqNyKb5VRIokP
9J5e1qVriqayVTmcTLS2BTdt/76GHA0oZaajSRzEJ5w0bYCYHYjWa5SiDglnyNOJ
wTsRd3reyQPRetkJA1gTwFpurEU/e9xtApJV09xSJW+Vav+mfMVrzdwPUzWRKeLP
X/iGMsrfE4gwzQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:18:25 2025 by rpki-client