Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
File: Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft (raw, json)
Hash identifier: UjGNEG1Ii6X9l0g88/PGgA1AV73AM0xYELzmyxABb94=
Subject key identifier: DC:02:2F:BB:AF:44:71:B5:92:58:F6:75:0A:91:27:F1:3A:E9:03:CB
Authority key identifier: 3A:19:35:B3:CB:C2:52:7E:AF:16:7D:69:B2:07:8D:33:E4:C4:DA:20
Certificate issuer: /CN=3a1935b3cbc2527eaf167d69b2078d33e4c4da20
Certificate serial: 0197B820BE3935A396C3B50953D3F665CD7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
Manifest number: 06FC
Signing time: Sat 28 Jun 2025 20:00:42 +0000
Manifest this update: Sat 28 Jun 2025 20:00:42 +0000
Manifest next update: Sun 29 Jun 2025 20:00:42 +0000
Files and hashes: 1: M82sfYNUsyqK13nZZfstvwDd7Fs.roa (hash: Pwd9phO+f2VaYBcGPbgT8icjGcqdGdD4Q6fe+fixav0=)
2: Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl (hash: j1c4k/2L4qhqazvjmOWFfEUlBvTscqvA7HhE67fk2mI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:be:39:35:a3:96:c3:b5:09:53:d3:f6:65:cd:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1935b3cbc2527eaf167d69b2078d33e4c4da20
Validity
Not Before: Jun 28 20:00:42 2025 GMT
Not After : Jun 29 20:00:42 2025 GMT
Subject: CN=dc022fbbaf4471b59258f6750a9127f13ae903cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d8:c2:ca:ef:75:e7:48:c2:a3:9a:b7:12:8a:
5b:d3:b3:db:4c:00:00:7c:dc:38:f4:2f:4a:12:49:
c3:f9:49:d7:ac:cd:24:11:18:6d:0e:f5:a8:0d:1e:
78:0b:6e:e3:fe:dd:00:c8:26:98:13:af:ed:16:26:
64:fa:1d:b1:63:67:df:76:5d:d2:70:f3:14:6d:ed:
6b:d1:57:1f:db:5e:67:9b:23:fb:2c:3a:44:14:c4:
6c:43:a0:30:ec:de:32:69:3f:08:21:e4:a4:b2:c5:
4d:4a:5e:02:81:3a:09:a2:15:4e:0f:07:1c:de:a6:
98:6b:e1:65:51:0e:1f:e0:f6:e9:90:d9:4f:6c:9c:
74:aa:b4:ba:2b:59:c6:92:52:6a:ce:fb:58:cf:29:
00:de:a2:55:99:70:e8:86:6a:b5:e1:5b:1d:3a:3a:
9d:e6:04:e8:d9:97:a6:85:48:c8:e6:c2:17:92:17:
6f:24:bf:99:79:b5:b4:7d:03:67:f5:8e:ba:96:b9:
e8:75:9b:3c:e4:71:4f:c2:b1:96:b8:2d:c9:d8:76:
32:8f:64:db:90:51:b3:76:fa:65:ab:56:09:7e:07:
7b:b9:91:93:13:13:d9:1c:cf:b2:dd:2b:a4:c6:3c:
49:39:25:1b:79:62:e6:d2:0a:a2:f7:f1:e0:48:40:
11:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:02:2F:BB:AF:44:71:B5:92:58:F6:75:0A:91:27:F1:3A:E9:03:CB
X509v3 Authority Key Identifier:
keyid:3A:19:35:B3:CB:C2:52:7E:AF:16:7D:69:B2:07:8D:33:E4:C4:DA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ee:0c:0d:31:f1:cf:76:e8:ba:27:df:27:ca:94:f6:2a:88:
a9:b2:75:30:e8:4c:00:75:54:ad:98:0e:60:3b:a7:a4:da:8c:
ba:0b:09:5b:ca:c6:4c:1b:af:73:18:0b:3d:6d:55:1b:25:bf:
31:6c:cc:a4:30:19:99:ba:e0:c1:60:36:73:63:62:37:0d:7a:
80:4e:40:7d:89:2f:b3:b7:8e:0b:3d:59:c4:33:06:35:5e:3a:
ff:8e:b6:68:3d:fd:68:9f:55:4f:47:73:f8:98:27:4b:88:9d:
35:62:7e:c9:70:6e:0d:ad:36:a0:ef:10:59:99:2e:32:a1:58:
a6:b7:62:8f:45:95:37:d9:8d:5d:77:fb:78:99:54:76:c3:e4:
f9:c2:64:23:b1:c4:5c:f9:73:c0:bc:34:67:47:26:f3:13:28:
b6:3d:4b:07:b2:9f:28:5e:61:b3:7a:d1:3b:7d:37:8a:61:ef:
9c:d1:0e:10:42:d4:26:c1:af:dd:cb:d6:58:fa:45:b5:2b:bd:
5d:be:cb:da:2f:b8:94:d4:f2:73:a0:73:fc:9a:db:d7:39:34:
78:8c:12:25:f6:c3:d0:71:1b:44:b2:59:9a:f3:a4:26:24:3b:
c0:66:9f:52:25:dd:7f:f8:78:5a:09:59:c0:a1:d2:bb:7d:a7:
c4:73:92:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4IL45NaOWw7UJU9P2Zc16MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMTkzNWIzY2JjMjUyN2VhZjE2N2Q2OWIyMDc4ZDMzZTRj
NGRhMjAwHhcNMjUwNjI4MjAwMDQyWhcNMjUwNjI5MjAwMDQyWjAzMTEwLwYDVQQD
EyhkYzAyMmZiYmFmNDQ3MWI1OTI1OGY2NzUwYTkxMjdmMTNhZTkwM2NiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNjCyu9150jCo5q3Eopb07PbTAAA
fNw49C9KEknD+UnXrM0kERhtDvWoDR54C27j/t0AyCaYE6/tFiZk+h2xY2ffdl3S
cPMUbe1r0Vcf215nmyP7LDpEFMRsQ6Aw7N4yaT8IIeSkssVNSl4CgToJohVODwcc
3qaYa+FlUQ4f4PbpkNlPbJx0qrS6K1nGklJqzvtYzykA3qJVmXDohmq14VsdOjqd
5gTo2ZemhUjI5sIXkhdvJL+ZebW0fQNn9Y66lrnodZs85HFPwrGWuC3J2HYyj2Tb
kFGzdvplq1YJfgd7uZGTExPZHM+y3SukxjxJOSUbeWLm0gqi9/HgSEAR/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNwCL7uvRHG1klj2dQqRJ/E66QPLMB8GA1UdIwQY
MBaAFDoZNbPLwlJ+rxZ9abIHjTPkxNogMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2hrMXM4dkNVbjZ2Rm4xcHNnZU5NLVRFMmlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9mZmZiYTQtMmVmYS00NjVmLWFmOTYt
YWJmODM3YWNlOGU0LzEvT2hrMXM4dkNVbjZ2Rm4xcHNnZU5NLVRFMmlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9mZmZiYTQtMmVmYS00NjVmLWFmOTYtYWJmODM3YWNlOGU0
LzEvT2hrMXM4dkNVbjZ2Rm4xcHNnZU5NLVRFMmlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMe4MDTHx
z3bouiffJ8qU9iqIqbJ1MOhMAHVUrZgOYDunpNqMugsJW8rGTBuvcxgLPW1VGyW/
MWzMpDAZmbrgwWA2c2NiNw16gE5AfYkvs7eOCz1ZxDMGNV46/462aD39aJ9VT0dz
+JgnS4idNWJ+yXBuDa02oO8QWZkuMqFYprdij0WVN9mNXXf7eJlUdsPk+cJkI7HE
XPlzwLw0Z0cm8xMotj1LB7KfKF5hs3rRO303imHvnNEOEELUJsGv3cvWWPpFtSu9
Xb7L2i+4lNTyc6Bz/Jrb1zk0eIwSJfbD0HEbRLJZmvOkJiQ7wGafUiXdf/h4WglZ
wKHSu32nxHOS+Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:39:47 2025 by rpki-client