Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
File: OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft (raw, json)
Hash identifier: iX1tQOKPtxmO7L7zy2lu0YeW7MmvMEKbICOkH5amao8=
Subject key identifier: 30:61:99:0B:13:3E:C0:D5:8E:AB:5E:C4:31:27:61:3F:DA:E4:79:2A
Authority key identifier: 39:37:30:70:00:B9:33:3F:88:00:0A:35:BF:3B:5B:8F:E3:8C:16:DE
Certificate issuer: /CN=3937307000b9333f88000a35bf3b5b8fe38c16de
Certificate serial: 01974C9FB47A2F5F6127EACDB55BFC21A0BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
Manifest number: 0342
Signing time: Sat 07 Jun 2025 23:00:24 +0000
Manifest this update: Sat 07 Jun 2025 23:00:24 +0000
Manifest next update: Sun 08 Jun 2025 23:00:24 +0000
Files and hashes: 1: OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl (hash: WwMHjfKrh1s+BIz1FCEIb8IxoQNpQRQHP3jFIlEcQjQ=)
2: XzMnx3Q6lXV5BFC3Ulnea3IgALE.roa (hash: MHnaHZdpDHAywK5Gif3w+d5y+x0GzsWCN2jIZcL+Afc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:9f:b4:7a:2f:5f:61:27:ea:cd:b5:5b:fc:21:a0:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3937307000b9333f88000a35bf3b5b8fe38c16de
Validity
Not Before: Jun 7 23:00:24 2025 GMT
Not After : Jun 8 23:00:24 2025 GMT
Subject: CN=3061990b133ec0d58eab5ec43127613fdae4792a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8f:af:b1:73:d9:12:a8:58:9c:8a:6a:cf:a6:
14:98:91:6f:bc:68:72:9f:7c:36:56:b6:58:a8:bd:
16:a4:9f:61:06:e0:5d:87:2c:6e:41:cf:71:c4:cb:
a2:ad:f6:81:ea:c9:40:1d:fa:68:fd:af:f5:29:a0:
84:09:20:2d:6c:bb:be:ac:9e:d3:51:a7:34:e1:9d:
6f:bc:6e:3f:74:8e:3f:6b:43:bd:99:d1:c5:82:c5:
1f:f8:17:79:e4:c6:2a:87:f0:74:bc:76:96:45:ad:
d4:3a:a5:3f:bf:1c:4a:2f:24:3e:17:39:71:b3:6a:
9e:06:e1:ff:2a:ee:6b:ea:9c:6c:f5:29:4b:e8:b1:
46:7d:80:35:ff:75:70:3f:24:5e:0d:a5:9b:a5:8b:
df:a6:90:de:5b:88:fb:8e:f6:5c:d2:ca:8f:fb:20:
c1:43:80:54:5d:fd:01:e6:d4:67:0c:49:08:16:b3:
5a:1e:7f:5c:54:54:11:30:7e:48:28:04:7d:f7:85:
1b:94:44:7f:5d:c0:6b:5c:fd:1e:44:8e:2e:e6:7e:
66:e2:9d:1e:ff:49:ec:d9:ec:fe:d0:81:54:f9:d8:
0d:d7:b0:da:8f:dd:15:f6:db:87:58:f6:f7:e1:70:
7a:32:25:b4:bc:f5:86:5b:31:2a:2f:99:ea:14:89:
08:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:61:99:0B:13:3E:C0:D5:8E:AB:5E:C4:31:27:61:3F:DA:E4:79:2A
X509v3 Authority Key Identifier:
keyid:39:37:30:70:00:B9:33:3F:88:00:0A:35:BF:3B:5B:8F:E3:8C:16:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:1f:cd:04:f7:66:7d:ea:fb:e1:cb:c1:08:7b:9d:c1:59:ed:
b5:60:e3:e2:06:de:7a:28:a1:59:59:cb:26:f3:73:68:f7:3e:
d8:04:d5:5e:99:0b:50:87:b9:85:ea:8b:bb:eb:cd:bc:a6:ed:
2e:99:16:eb:5c:0d:25:91:80:23:58:d2:82:96:c3:5a:3e:48:
d4:21:76:73:f9:94:ab:4a:50:d4:65:c1:79:2d:81:f1:ff:8c:
c3:e9:57:bb:b9:56:5f:d5:d4:e0:40:a7:5c:a0:6a:04:0e:4a:
44:e5:d0:a2:25:b7:99:1c:17:71:6c:18:ef:1e:c2:cc:54:da:
fb:2e:82:6b:e6:f4:10:fd:cb:5d:ca:fc:fe:ca:40:68:de:3b:
33:a5:14:f4:cb:a7:51:87:eb:01:68:ae:f0:2a:00:a1:aa:35:
e3:7a:eb:4a:02:36:67:71:b1:29:09:c1:76:e0:35:f8:28:7e:
9d:07:49:b9:82:a4:54:6a:f3:51:b4:6b:69:b8:b8:40:81:7b:
fd:08:37:13:60:c1:2a:ab:4e:88:e6:17:7a:a2:1f:0f:d2:27:
8f:9a:67:36:7d:77:4e:91:c2:76:5e:f6:2b:d1:1e:56:ae:0a:
0d:f2:bc:fe:ec:81:57:e7:b8:0b:19:05:10:20:4a:f7:e6:40:
5e:79:c3:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMn7R6L19hJ+rNtVv8IaC6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MzczMDcwMDBiOTMzM2Y4ODAwMGEzNWJmM2I1YjhmZTM4
YzE2ZGUwHhcNMjUwNjA3MjMwMDI0WhcNMjUwNjA4MjMwMDI0WjAzMTEwLwYDVQQD
EygzMDYxOTkwYjEzM2VjMGQ1OGVhYjVlYzQzMTI3NjEzZmRhZTQ3OTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4+vsXPZEqhYnIpqz6YUmJFvvGhy
n3w2VrZYqL0WpJ9hBuBdhyxuQc9xxMuirfaB6slAHfpo/a/1KaCECSAtbLu+rJ7T
Uac04Z1vvG4/dI4/a0O9mdHFgsUf+Bd55MYqh/B0vHaWRa3UOqU/vxxKLyQ+Fzlx
s2qeBuH/Ku5r6pxs9SlL6LFGfYA1/3VwPyReDaWbpYvfppDeW4j7jvZc0sqP+yDB
Q4BUXf0B5tRnDEkIFrNaHn9cVFQRMH5IKAR994UblER/XcBrXP0eRI4u5n5m4p0e
/0ns2ez+0IFU+dgN17Daj90V9tuHWPb34XB6MiW0vPWGWzEqL5nqFIkIgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDBhmQsTPsDVjqtexDEnYT/a5HkqMB8GA1UdIwQY
MBaAFDk3MHAAuTM/iAAKNb87W4/jjBbeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1Rjd2NBQzVNei1JQUFvMXZ6dGJqLU9NRnQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9mYTJhZjAtYTdlOC00NjEwLTkwN2Mt
YzkzY2M0Nzc1ZDQ2LzEvT1Rjd2NBQzVNei1JQUFvMXZ6dGJqLU9NRnQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9mYTJhZjAtYTdlOC00NjEwLTkwN2MtYzkzY2M0Nzc1ZDQ2
LzEvT1Rjd2NBQzVNei1JQUFvMXZ6dGJqLU9NRnQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAax/NBPdm
fer74cvBCHudwVnttWDj4gbeeiihWVnLJvNzaPc+2ATVXpkLUIe5heqLu+vNvKbt
LpkW61wNJZGAI1jSgpbDWj5I1CF2c/mUq0pQ1GXBeS2B8f+Mw+lXu7lWX9XU4ECn
XKBqBA5KROXQoiW3mRwXcWwY7x7CzFTa+y6Ca+b0EP3LXcr8/spAaN47M6UU9Mun
UYfrAWiu8CoAoao143rrSgI2Z3GxKQnBduA1+Ch+nQdJuYKkVGrzUbRrabi4QIF7
/Qg3E2DBKqtOiOYXeqIfD9Inj5pnNn13TpHCdl72K9EeVq4KDfK8/uyBV+e4CxkF
ECBK9+ZAXnnDKg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 01:29:09 2025 by rpki-client