Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft
File: pOd3fHr7fUObRvaBxMe_aoJS4xU.mft (raw, json)
Hash identifier: X4azXycu4J74/XWQ7WvCfB4XdrgfxLIcdTqLuc+ZPg0=
Subject key identifier: 0D:20:E0:F7:4D:D9:A6:BE:BA:7E:05:62:14:A9:4D:57:32:C3:77:AC
Authority key identifier: A4:E7:77:7C:7A:FB:7D:43:9B:46:F6:81:C4:C7:BF:6A:82:52:E3:15
Certificate issuer: /CN=a4e7777c7afb7d439b46f681c4c7bf6a8252e315
Certificate serial: 0197B6A1EF3BD8BC2AE84C8CC9C87B281671
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft
Manifest number: 0CA0
Signing time: Sat 28 Jun 2025 13:02:35 +0000
Manifest this update: Sat 28 Jun 2025 13:02:35 +0000
Manifest next update: Sun 29 Jun 2025 13:02:35 +0000
Files and hashes: 1: pOd3fHr7fUObRvaBxMe_aoJS4xU.crl (hash: REkG/2me1tAuipve1+XtBkvJ0qhYJW1R7iAn6LvSlQ4=)
2: z4rUk_E4AGcR7M7P_EXqaAGwIrE.roa (hash: vdPESCF/t7U31UD2O57fuph7iNy0Hlzj8MYZvwZ4bj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft
rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:ef:3b:d8:bc:2a:e8:4c:8c:c9:c8:7b:28:16:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7777c7afb7d439b46f681c4c7bf6a8252e315
Validity
Not Before: Jun 28 13:02:35 2025 GMT
Not After : Jun 29 13:02:35 2025 GMT
Subject: CN=0d20e0f74dd9a6beba7e056214a94d5732c377ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:41:aa:27:c2:95:da:70:c9:67:69:9f:ed:9b:
7a:e4:26:c6:ca:a2:93:8e:02:be:d7:45:b8:13:81:
4f:26:af:24:2c:76:f4:81:5c:01:46:f3:38:f8:f1:
55:f3:cf:8b:32:8c:24:85:ff:e8:e7:bd:65:60:61:
66:76:de:56:22:61:ea:cd:f6:1b:e1:6c:33:82:4b:
77:2e:91:8f:95:11:02:1b:5e:9b:16:39:a7:fe:a1:
0f:07:15:9d:16:04:6e:34:96:07:5e:6d:4e:ee:ad:
51:f9:f0:92:80:e7:68:0e:61:25:3c:f9:07:b4:11:
46:6f:dd:e7:90:06:73:d7:ca:3a:87:55:11:6e:84:
13:7d:d0:4c:a0:7b:23:a3:09:eb:82:49:66:4f:fd:
ee:d8:c1:25:a0:78:76:28:65:a8:fa:eb:ce:b4:bf:
31:09:20:38:09:1d:f8:0e:22:59:3a:8c:a2:2c:c9:
ea:95:a7:5c:9f:bf:fd:5b:33:6e:7d:b4:65:93:cf:
d8:b1:3c:40:92:f7:7f:a6:49:42:e9:80:bf:fe:b6:
bf:73:99:72:b5:52:0a:51:3a:4c:69:9d:ac:e8:08:
a0:34:d1:5f:32:b5:d0:1d:a8:ba:5f:74:ff:13:d4:
79:fc:84:01:36:49:8d:73:99:c5:cd:f1:b2:bf:88:
5e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:20:E0:F7:4D:D9:A6:BE:BA:7E:05:62:14:A9:4D:57:32:C3:77:AC
X509v3 Authority Key Identifier:
keyid:A4:E7:77:7C:7A:FB:7D:43:9B:46:F6:81:C4:C7:BF:6A:82:52:E3:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:9e:8c:df:b6:0c:b4:15:72:6c:1e:49:ec:91:c7:fe:73:bf:
cd:2b:53:0c:9f:54:48:45:b5:92:6f:4b:3c:a3:b9:94:d3:33:
34:de:80:13:4c:2f:d3:90:55:79:00:fc:de:6a:05:98:9d:ba:
a4:bb:62:66:b6:55:c0:0c:44:8a:4a:b9:cf:d4:68:a2:3e:55:
60:d1:d6:a9:4c:1b:c8:bd:15:f2:e6:aa:ba:e6:35:e7:1d:13:
e3:69:19:53:fe:4b:c5:70:d4:66:95:96:a0:a9:fb:e1:b4:c7:
4e:e8:21:ab:4f:31:4e:fb:94:77:aa:c6:cb:7f:45:c4:29:06:
ee:12:8b:be:f8:6c:66:92:5f:9d:26:19:d9:fd:33:fa:5b:20:
c0:0f:7f:79:11:52:0c:8f:3b:38:df:b8:c9:84:b3:c3:2c:db:
2c:bf:a7:ba:1e:ac:a3:70:e1:dd:92:36:9f:56:9e:da:54:f1:
7e:34:9f:49:7e:60:c9:6f:21:4d:23:06:e2:1f:31:0c:29:a2:
68:b5:1b:b6:aa:f5:08:55:6d:23:71:c1:72:64:4f:7d:89:5c:
0e:a7:09:39:c6:d5:3b:11:6b:55:a8:8e:a5:fd:c4:11:01:94:
7d:e7:73:72:88:ae:0e:31:f8:32:ff:72:bf:c2:8d:34:b4:1d:
6a:34:54:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oe872Lwq6EyMych7KBZxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZTc3NzdjN2FmYjdkNDM5YjQ2ZjY4MWM0YzdiZjZhODI1
MmUzMTUwHhcNMjUwNjI4MTMwMjM1WhcNMjUwNjI5MTMwMjM1WjAzMTEwLwYDVQQD
EygwZDIwZTBmNzRkZDlhNmJlYmE3ZTA1NjIxNGE5NGQ1NzMyYzM3N2FjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA30GqJ8KV2nDJZ2mf7Zt65CbGyqKT
jgK+10W4E4FPJq8kLHb0gVwBRvM4+PFV88+LMowkhf/o571lYGFmdt5WImHqzfYb
4Wwzgkt3LpGPlRECG16bFjmn/qEPBxWdFgRuNJYHXm1O7q1R+fCSgOdoDmElPPkH
tBFGb93nkAZz18o6h1URboQTfdBMoHsjownrgklmT/3u2MEloHh2KGWo+uvOtL8x
CSA4CR34DiJZOoyiLMnqladcn7/9WzNufbRlk8/YsTxAkvd/pklC6YC//ra/c5ly
tVIKUTpMaZ2s6AigNNFfMrXQHai6X3T/E9R5/IQBNkmNc5nFzfGyv4heCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA0g4PdN2aa+un4FYhSpTVcyw3esMB8GA1UdIwQY
MBaAFKTnd3x6+31Dm0b2gcTHv2qCUuMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE9kM2ZIcjdmVU9iUnZhQnhNZV9hb0pTNHhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS80NWFkNWItM2NlMS00OGYxLWJlZjct
NjQxY2ZiNmUzZDliLzEvcE9kM2ZIcjdmVU9iUnZhQnhNZV9hb0pTNHhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS80NWFkNWItM2NlMS00OGYxLWJlZjctNjQxY2ZiNmUzZDli
LzEvcE9kM2ZIcjdmVU9iUnZhQnhNZV9hb0pTNHhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG56M37YM
tBVybB5J7JHH/nO/zStTDJ9USEW1km9LPKO5lNMzNN6AE0wv05BVeQD83moFmJ26
pLtiZrZVwAxEikq5z9Rooj5VYNHWqUwbyL0V8uaquuY15x0T42kZU/5LxXDUZpWW
oKn74bTHTughq08xTvuUd6rGy39FxCkG7hKLvvhsZpJfnSYZ2f0z+lsgwA9/eRFS
DI87ON+4yYSzwyzbLL+nuh6so3Dh3ZI2n1ae2lTxfjSfSX5gyW8hTSMG4h8xDCmi
aLUbtqr1CFVtI3HBcmRPfYlcDqcJOcbVOxFrVaiOpf3EEQGUfedzcoiuDjH4Mv9y
v8KNNLQdajRUmQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:33:20 2025 by rpki-client