Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
File: OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft (raw, json)
Hash identifier: vopZ3mVOpf44BohECSDPZdulZ6Ct3vjkkbKqR+gBEYA=
Subject key identifier: 2A:A8:22:DD:2B:2E:97:DA:5C:6C:38:1A:BF:D2:13:DB:E0:73:83:81
Authority key identifier: 38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
Certificate issuer: /CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Certificate serial: 0197499EE5527C1E85E4BB5285D35B56B764
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
Manifest number: 0C70
Signing time: Sat 07 Jun 2025 09:00:39 +0000
Manifest this update: Sat 07 Jun 2025 09:00:39 +0000
Manifest next update: Sun 08 Jun 2025 09:00:39 +0000
Files and hashes: 1: OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl (hash: ewO6I/m2d2gaT75+HoaboCWLESN0KRFjp5UJdvzXPfA=)
2: dxC4OOVdD7y8lzmmwGYNpdpf-D0.roa (hash: 1F32hSGI4pbAFMDzlkPoS+O8tvJxdYgPLvmfvhN+IXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:e5:52:7c:1e:85:e4:bb:52:85:d3:5b:56:b7:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Validity
Not Before: Jun 7 09:00:39 2025 GMT
Not After : Jun 8 09:00:39 2025 GMT
Subject: CN=2aa822dd2b2e97da5c6c381abfd213dbe0738381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:67:f1:e2:12:da:9d:f5:68:1d:ed:a7:1d:cc:
0a:4d:6a:08:e2:17:1d:e9:e9:d3:4d:67:14:c0:ab:
d5:b1:46:53:7d:7d:3e:7d:12:3e:4d:fe:3b:bc:85:
24:2b:a9:50:89:d6:84:ad:09:e2:ef:9c:60:a8:39:
47:9d:b6:a7:5e:1c:19:37:5b:0d:23:ba:5d:a3:3d:
c8:ce:d1:6c:df:73:1d:8e:16:80:b6:43:97:51:90:
eb:fc:f6:56:07:b7:3a:0c:a7:a3:07:3b:9b:f9:b7:
ef:a7:5a:73:5b:ad:d1:78:ed:4e:3f:42:c6:ed:2e:
c7:c4:c3:8c:f2:c7:8c:51:d5:1a:4a:b6:21:76:dc:
17:24:00:fe:3f:a7:9e:19:ec:89:63:9a:49:7a:3b:
9e:1b:22:07:95:1d:a3:7c:f9:eb:7c:4f:6b:dc:84:
3c:fc:83:76:97:f5:35:06:cd:10:8a:df:5e:44:b9:
a0:1e:be:f0:5b:81:2e:e7:de:d7:d4:86:89:e0:4d:
18:26:fd:cb:fa:5a:d6:db:c0:59:ed:19:9e:7c:b6:
5e:74:a6:d5:d5:ec:79:8c:70:8b:3e:af:40:ed:03:
05:cd:dd:a7:93:2f:de:ea:b2:74:bb:d8:bd:a0:4a:
53:e3:56:c7:03:9d:60:89:4b:19:ec:e9:28:d4:82:
c0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A8:22:DD:2B:2E:97:DA:5C:6C:38:1A:BF:D2:13:DB:E0:73:83:81
X509v3 Authority Key Identifier:
keyid:38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:6f:ac:2f:5b:53:89:83:c7:11:a6:a0:4e:5a:ef:f3:6f:d9:
0b:fe:09:1b:78:6d:a0:30:36:bf:cb:fc:c0:71:77:96:04:18:
dd:80:55:70:9c:86:89:e3:88:2a:14:d3:6a:b9:74:62:7b:db:
61:41:a6:25:58:e6:17:93:bf:98:c4:c6:f7:5d:c7:de:e6:12:
ec:ec:25:6f:1e:5a:0f:86:88:3a:d1:92:71:34:c2:32:ce:2a:
93:8e:0e:a0:c2:f3:b4:3c:ff:f3:c5:e7:1a:dc:7a:a2:ee:a1:
a1:cd:96:92:e1:6c:02:13:a2:f3:13:e3:a6:54:97:4d:ff:16:
c4:39:21:96:38:55:a7:7d:9a:3c:19:8b:6d:4d:37:c8:fe:6a:
ea:4b:fd:d6:57:9b:e3:a4:b8:6f:12:73:59:53:dc:1f:a0:9a:
94:ec:03:a7:a3:0d:5e:ed:b4:3e:92:61:b9:9e:02:19:ca:cf:
3b:43:18:c3:15:44:db:05:ee:c1:f5:18:f9:a0:fe:c7:b0:71:
0d:2a:b5:5d:3d:31:52:2a:24:7c:23:f6:b7:e0:6e:05:50:92:
d2:2b:26:e1:d8:f8:60:f3:ac:74:6a:5d:85:54:7f:d3:05:33:
a1:b1:1f:dc:b6:6f:50:ee:ee:05:2e:27:fd:f5:a2:3c:95:ee:
f1:b9:49:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJnuVSfB6F5LtShdNbVrdkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MjlkMTMxYmU1MjgxMGU0N2M5Y2JiZjgzYTNmZmJkNGY3
Y2JkYmYwHhcNMjUwNjA3MDkwMDM5WhcNMjUwNjA4MDkwMDM5WjAzMTEwLwYDVQQD
EygyYWE4MjJkZDJiMmU5N2RhNWM2YzM4MWFiZmQyMTNkYmUwNzM4MzgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Gfx4hLanfVoHe2nHcwKTWoI4hcd
6enTTWcUwKvVsUZTfX0+fRI+Tf47vIUkK6lQidaErQni75xgqDlHnbanXhwZN1sN
I7pdoz3IztFs33MdjhaAtkOXUZDr/PZWB7c6DKejBzub+bfvp1pzW63ReO1OP0LG
7S7HxMOM8seMUdUaSrYhdtwXJAD+P6eeGeyJY5pJejueGyIHlR2jfPnrfE9r3IQ8
/IN2l/U1Bs0Qit9eRLmgHr7wW4Eu597X1IaJ4E0YJv3L+lrW28BZ7RmefLZedKbV
1ex5jHCLPq9A7QMFzd2nky/e6rJ0u9i9oEpT41bHA51giUsZ7Oko1ILADwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCqoIt0rLpfaXGw4Gr/SE9vgc4OBMB8GA1UdIwQY
MBaAFDgp0TG+UoEOR8nLv4Oj/71PfL2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0NuUk1iNVNnUTVIeWN1X2c2UF92VTk4dmI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iMWE0ZTEtODc3Yi00MzgwLWJmYmYt
YjAzOGRiODk4YjdlLzEvT0NuUk1iNVNnUTVIeWN1X2c2UF92VTk4dmI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iMWE0ZTEtODc3Yi00MzgwLWJmYmYtYjAzOGRiODk4Yjdl
LzEvT0NuUk1iNVNnUTVIeWN1X2c2UF92VTk4dmI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA2+sL1tT
iYPHEaagTlrv82/ZC/4JG3htoDA2v8v8wHF3lgQY3YBVcJyGieOIKhTTarl0Ynvb
YUGmJVjmF5O/mMTG913H3uYS7Owlbx5aD4aIOtGScTTCMs4qk44OoMLztDz/88Xn
Gtx6ou6hoc2WkuFsAhOi8xPjplSXTf8WxDkhljhVp32aPBmLbU03yP5q6kv91leb
46S4bxJzWVPcH6CalOwDp6MNXu20PpJhuZ4CGcrPO0MYwxVE2wXuwfUY+aD+x7Bx
DSq1XT0xUiokfCP2t+BuBVCS0ism4dj4YPOsdGpdhVR/0wUzobEf3LZvUO7uBS4n
/fWiPJXu8blJjg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:38:06 2025 by rpki-client