Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
File: oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft (raw, json)
Hash identifier: vLtVSWjVQ2kKBVNyt4MX4owCXu6CbZDvl4hyMhpVUFE=
Subject key identifier: 42:C6:80:CB:80:9D:E2:B5:BE:68:68:76:F8:0E:9F:AC:05:0A:CD:03
Authority key identifier: A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
Certificate issuer: /CN=a1655282be419d21222b506fb7a368c3fe5db23d
Certificate serial: 0197703EC9C7646F94A00E3FB4C44A867E6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 21:00:52 +0000
Manifest this update: Sat 14 Jun 2025 21:00:52 +0000
Manifest next update: Sun 15 Jun 2025 21:00:52 +0000
Files and hashes: 1: SxgKNPaYJVhAK36SOSTuyxJmYzI.roa (hash: iBEUhnRScZ+rajzC9bqU9rcXbnYIQMvrpQOY+tW8FQc=)
2: oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl (hash: H9ODfpqj8llL+nht/aItnMNK5nWsPWrlox9l4Dxrt2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:3e:c9:c7:64:6f:94:a0:0e:3f:b4:c4:4a:86:7e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1655282be419d21222b506fb7a368c3fe5db23d
Validity
Not Before: Jun 14 21:00:52 2025 GMT
Not After : Jun 15 21:00:52 2025 GMT
Subject: CN=42c680cb809de2b5be686876f80e9fac050acd03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e4:e4:14:52:7d:85:1c:56:72:d6:a0:dc:7d:
39:84:73:56:c7:01:b7:f0:c1:8b:a4:4e:3e:2a:33:
ea:8a:af:bc:e6:2e:f9:09:ad:7e:e1:a7:f2:96:04:
36:e6:61:a6:70:f3:20:aa:56:c4:ac:36:67:89:e0:
d7:10:be:b4:1c:83:39:0c:bd:43:5a:4c:7b:c6:16:
63:47:43:9e:f4:7c:7d:19:57:ff:d0:4d:35:eb:d4:
3e:47:46:57:ab:b9:0a:1b:8f:bf:78:48:a5:82:a0:
7e:ab:98:ec:64:87:62:6e:b9:48:d5:b3:e4:53:f5:
d3:10:09:d3:64:24:65:2a:50:54:6e:34:15:1d:3e:
db:5a:22:b3:5d:52:06:d1:1e:01:7e:75:0b:e9:43:
9b:2a:f6:5d:6b:1e:6f:30:4c:cd:7b:0e:bd:b5:cc:
e9:a2:97:5e:d2:c0:ba:52:04:1c:33:14:4d:65:cf:
aa:dc:5a:9d:f7:d3:f4:a7:34:c8:c8:7f:07:21:70:
81:ea:c6:cf:e8:0c:38:d7:63:fd:19:ba:49:d9:10:
c7:80:8f:32:d1:bc:f5:fe:05:bf:82:37:c4:ba:98:
2c:8e:de:07:ca:d0:e7:bb:6f:33:da:83:5c:28:9c:
3f:a0:a3:60:b9:da:1d:44:bb:49:bc:6a:39:4a:f4:
5c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C6:80:CB:80:9D:E2:B5:BE:68:68:76:F8:0E:9F:AC:05:0A:CD:03
X509v3 Authority Key Identifier:
keyid:A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:f2:2d:87:cd:74:2a:8d:9c:00:72:8c:f7:30:6b:93:d4:e3:
ec:0f:fb:87:a8:ec:7b:93:4d:56:22:60:39:6d:d7:48:e2:18:
f7:ef:cc:b0:b9:e6:aa:d4:a3:86:85:d1:50:ab:07:14:49:ab:
f8:6c:2e:da:e5:65:21:58:5c:cc:04:b6:e4:6c:ed:f4:2e:9a:
07:5c:0e:df:de:82:47:4f:c6:a0:07:b9:02:72:ba:d9:7a:18:
89:2d:2e:90:7b:90:4c:8a:c3:17:2e:95:3d:9b:3a:25:0d:27:
ca:fd:27:13:c0:44:ac:c1:53:74:9a:dc:e1:97:af:fa:de:2a:
da:4f:e4:06:c4:29:15:a7:eb:03:82:5f:99:34:05:bd:16:7b:
15:28:64:9c:50:7e:24:ea:d9:33:b7:12:98:73:0c:5c:3b:98:
33:be:4c:d8:f5:cc:e7:53:3c:48:28:54:15:93:b3:72:ca:b3:
fa:71:5d:a6:fb:09:05:d1:be:dc:27:9a:88:60:1b:55:1c:ac:
42:2d:cb:23:50:9f:04:b5:99:5d:e3:12:0c:b2:d8:4d:10:3e:
91:25:c3:75:03:ef:ec:02:e5:dd:5d:7e:5d:ad:be:7b:10:f1:
83:76:35:fb:17:38:5d:fc:0a:8e:5e:2b:65:b9:6c:22:04:2c:
32:90:e5:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwPsnHZG+UoA4/tMRKhn5rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNjU1MjgyYmU0MTlkMjEyMjJiNTA2ZmI3YTM2OGMzZmU1
ZGIyM2QwHhcNMjUwNjE0MjEwMDUyWhcNMjUwNjE1MjEwMDUyWjAzMTEwLwYDVQQD
Eyg0MmM2ODBjYjgwOWRlMmI1YmU2ODY4NzZmODBlOWZhYzA1MGFjZDAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuTkFFJ9hRxWctag3H05hHNWxwG3
8MGLpE4+KjPqiq+85i75Ca1+4afylgQ25mGmcPMgqlbErDZnieDXEL60HIM5DL1D
Wkx7xhZjR0Oe9Hx9GVf/0E0169Q+R0ZXq7kKG4+/eEilgqB+q5jsZIdibrlI1bPk
U/XTEAnTZCRlKlBUbjQVHT7bWiKzXVIG0R4BfnUL6UObKvZdax5vMEzNew69tczp
opde0sC6UgQcMxRNZc+q3Fqd99P0pzTIyH8HIXCB6sbP6Aw412P9GbpJ2RDHgI8y
0bz1/gW/gjfEupgsjt4HytDnu28z2oNcKJw/oKNgudodRLtJvGo5SvRcsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFELGgMuAneK1vmhodvgOn6wFCs0DMB8GA1UdIwQY
MBaAFKFlUoK+QZ0hIitQb7ejaMP+XbI9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1dWU2dyNUJuU0VpSzFCdnQ2Tm93XzVkc2owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS84MDYyYTktN2Y0Ny00NGVhLWFiYjct
OTFkYmM5ZjBlOGRiLzEvb1dWU2dyNUJuU0VpSzFCdnQ2Tm93XzVkc2owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS84MDYyYTktN2Y0Ny00NGVhLWFiYjctOTFkYmM5ZjBlOGRi
LzEvb1dWU2dyNUJuU0VpSzFCdnQ2Tm93XzVkc2owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALvIth810
Ko2cAHKM9zBrk9Tj7A/7h6jse5NNViJgOW3XSOIY9+/MsLnmqtSjhoXRUKsHFEmr
+Gwu2uVlIVhczAS25Gzt9C6aB1wO396CR0/GoAe5AnK62XoYiS0ukHuQTIrDFy6V
PZs6JQ0nyv0nE8BErMFTdJrc4Zev+t4q2k/kBsQpFafrA4JfmTQFvRZ7FShknFB+
JOrZM7cSmHMMXDuYM75M2PXM51M8SChUFZOzcsqz+nFdpvsJBdG+3CeaiGAbVRys
Qi3LI1CfBLWZXeMSDLLYTRA+kSXDdQPv7ALl3V1+Xa2+exDxg3Y1+xc4XfwKjl4r
ZblsIgQsMpDlDg==
-----END CERTIFICATE-----
Generated at Sun Jun 15 02:49:52 2025 by rpki-client