Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
File: OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft (raw, json)
Hash identifier: lyTt520JVOc7kl35ex2ad16GGsSlpMR/clb3dx8+p0o=
Subject key identifier: C6:A4:1D:4A:50:75:7D:AF:05:CB:FE:E8:E7:99:57:33:A0:87:44:D8
Authority key identifier: 38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4
Certificate issuer: /CN=38ead5deb53500f2548ae1812c087e32a47fc8b4
Certificate serial: 0197BF35B7F82086023B17B085BD279111FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
Manifest number: 0BF6
Signing time: Mon 30 Jun 2025 05:00:57 +0000
Manifest this update: Mon 30 Jun 2025 05:00:57 +0000
Manifest next update: Tue 01 Jul 2025 05:00:57 +0000
Files and hashes: 1: OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl (hash: MoRKV0hJ8wK/Ls/ZIxdJL0OEtm07hmSq0pwLDVr9jVI=)
2: akjM-xe6r7wN8q85qvVsiC6HFoc.roa (hash: DJGYhYAc1tW0r6f5bvOKTaPIoda2gTETmwDHHbAC3Yc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 05:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bf:35:b7:f8:20:86:02:3b:17:b0:85:bd:27:91:11:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ead5deb53500f2548ae1812c087e32a47fc8b4
Validity
Not Before: Jun 30 05:00:57 2025 GMT
Not After : Jul 1 05:00:57 2025 GMT
Subject: CN=c6a41d4a50757daf05cbfee8e7995733a08744d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ed:82:93:e0:05:14:6f:87:7e:ea:e3:bd:89:
67:c2:10:c7:f7:e9:56:c5:78:fc:74:91:45:f5:9c:
4c:52:0f:e5:a1:ad:59:23:06:b1:4f:7f:55:e4:d5:
d5:76:a8:2d:02:95:cb:1a:a3:0a:7c:8d:9d:a3:ee:
fe:f3:b4:75:ea:08:6e:aa:e9:7c:0c:f7:da:5c:6b:
32:bf:62:1e:98:47:5f:8b:5c:d1:08:c4:82:a5:9c:
3f:bc:82:c7:a8:2b:3e:07:f0:16:db:27:11:57:fe:
5d:e1:20:da:d7:7b:5d:eb:56:10:80:ad:c8:0f:0f:
e8:b6:17:28:e4:f2:dc:5a:eb:9d:13:36:51:fd:9c:
9c:ce:17:36:1b:dc:d0:b4:29:26:bb:3e:41:4d:b8:
a4:71:7e:ac:17:b0:45:58:f9:7e:62:4e:ed:48:6d:
ed:08:73:de:f3:85:8f:b1:79:03:c9:30:92:62:fd:
15:f9:cf:a8:50:f9:01:52:ce:b2:53:81:0e:c2:7b:
8c:b4:ce:6d:b7:5f:2e:e2:bb:bf:da:74:31:6b:f9:
b4:35:0f:50:bf:80:0a:e4:21:7d:d5:47:c7:c8:2e:
cc:d0:34:94:d8:6a:6a:ed:76:bc:13:04:24:43:07:
82:dc:90:4e:1c:bc:ae:5f:c8:9d:2b:c1:43:4b:4f:
5d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:A4:1D:4A:50:75:7D:AF:05:CB:FE:E8:E7:99:57:33:A0:87:44:D8
X509v3 Authority Key Identifier:
keyid:38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:b2:3f:77:11:b4:0c:da:0c:81:30:06:05:fb:48:6f:b8:f2:
98:5c:2d:c2:d0:39:31:e5:00:a8:c4:75:3d:7c:c1:58:d9:59:
0b:64:43:4a:b1:6f:0b:8a:66:f8:d2:a8:ea:26:f8:95:ba:21:
a5:27:58:3c:52:35:a8:59:62:a1:90:24:b0:8b:9b:0b:24:c9:
1c:e4:a3:5e:cc:df:d5:fc:ce:11:6c:4f:57:08:34:d4:5f:8e:
85:72:31:db:aa:84:47:db:9d:4e:3a:52:5b:77:b4:14:c9:c0:
43:b3:41:37:4f:6a:e8:45:5d:ba:73:c7:25:15:01:ad:38:98:
53:76:09:a3:da:85:13:30:71:00:c8:dd:e5:8b:cf:f9:26:40:
09:46:c9:9b:2b:16:44:2e:60:e1:72:37:0f:68:5a:aa:9a:9d:
c1:1d:72:9f:b8:8e:35:2a:fc:b4:03:6e:29:66:c2:6d:9e:fa:
0a:9a:a5:09:2a:fd:41:ab:00:4b:7b:95:44:62:c7:09:ee:81:
d0:ad:bf:83:dd:2a:a8:19:c8:d0:a6:99:d9:f1:87:bf:29:13:
a7:8c:36:56:41:2a:3f:4e:bd:9a:a1:40:46:b5:6c:97:83:88:
93:1f:8d:32:a1:57:86:f6:2c:5e:c4:6b:e8:d0:c8:5e:df:6d:
26:39:cb:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe/Nbf4IIYCOxewhb0nkRH7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4ZWFkNWRlYjUzNTAwZjI1NDhhZTE4MTJjMDg3ZTMyYTQ3
ZmM4YjQwHhcNMjUwNjMwMDUwMDU3WhcNMjUwNzAxMDUwMDU3WjAzMTEwLwYDVQQD
EyhjNmE0MWQ0YTUwNzU3ZGFmMDVjYmZlZThlNzk5NTczM2EwODc0NGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5u2Ck+AFFG+HfurjvYlnwhDH9+lW
xXj8dJFF9ZxMUg/loa1ZIwaxT39V5NXVdqgtApXLGqMKfI2do+7+87R16ghuqul8
DPfaXGsyv2IemEdfi1zRCMSCpZw/vILHqCs+B/AW2ycRV/5d4SDa13td61YQgK3I
Dw/othco5PLcWuudEzZR/Zyczhc2G9zQtCkmuz5BTbikcX6sF7BFWPl+Yk7tSG3t
CHPe84WPsXkDyTCSYv0V+c+oUPkBUs6yU4EOwnuMtM5tt18u4ru/2nQxa/m0NQ9Q
v4AK5CF91UfHyC7M0DSU2Gpq7Xa8EwQkQweC3JBOHLyuX8idK8FDS09dcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMakHUpQdX2vBcv+6OeZVzOgh0TYMB8GA1UdIwQY
MBaAFDjq1d61NQDyVIrhgSwIfjKkf8i0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT09yVjNyVTFBUEpVaXVHQkxBaC1NcVJfeUxRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8zNTE2YTEtZmQ5ZC00ZTI5LWFkZDMt
ZDQ0NmYxZjgzYWU5LzEvT09yVjNyVTFBUEpVaXVHQkxBaC1NcVJfeUxRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS8zNTE2YTEtZmQ5ZC00ZTI5LWFkZDMtZDQ0NmYxZjgzYWU5
LzEvT09yVjNyVTFBUEpVaXVHQkxBaC1NcVJfeUxRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfLI/dxG0
DNoMgTAGBftIb7jymFwtwtA5MeUAqMR1PXzBWNlZC2RDSrFvC4pm+NKo6ib4lboh
pSdYPFI1qFlioZAksIubCyTJHOSjXszf1fzOEWxPVwg01F+OhXIx26qER9udTjpS
W3e0FMnAQ7NBN09q6EVdunPHJRUBrTiYU3YJo9qFEzBxAMjd5YvP+SZACUbJmysW
RC5g4XI3D2haqpqdwR1yn7iONSr8tANuKWbCbZ76CpqlCSr9QasAS3uVRGLHCe6B
0K2/g90qqBnI0KaZ2fGHvykTp4w2VkEqP069mqFARrVsl4OIkx+NMqFXhvYsXsRr
6NDIXt9tJjnLgw==
-----END CERTIFICATE-----
Generated at Mon Jun 30 13:31:53 2025 by rpki-client