Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
File: Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft (raw, json)
Hash identifier: QKnUu0gTrX+Qx0xofix/QMikI5Xnab74WqKycATnpRo=
Subject key identifier: 25:26:CD:4D:FC:69:4E:5E:19:A1:A6:A0:57:3C:45:9C:B8:44:E7:12
Authority key identifier: 3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
Certificate issuer: /CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Certificate serial: 0197B6A15EE56FAA5E77ABAA69680AD610B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
Manifest number: 0F31
Signing time: Sat 28 Jun 2025 13:01:58 +0000
Manifest this update: Sat 28 Jun 2025 13:01:58 +0000
Manifest next update: Sun 29 Jun 2025 13:01:58 +0000
Files and hashes: 1: N4CwZRnLnlumD-RJFVgkbIUrCBc.roa (hash: EtoC/NIHh5NhO9jyQ35IICnYchDtP+NYLu/Fs0pjNjc=)
2: Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl (hash: 9uPMrlA9p6BHARM4/9zJ2/1H2VO0fKYpDGtXAUnN5dU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:5e:e5:6f:aa:5e:77:ab:aa:69:68:0a:d6:10:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Validity
Not Before: Jun 28 13:01:58 2025 GMT
Not After : Jun 29 13:01:58 2025 GMT
Subject: CN=2526cd4dfc694e5e19a1a6a0573c459cb844e712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:84:3d:3f:5f:6f:8c:67:23:77:62:c9:f9:66:
44:ca:8a:05:11:4a:07:77:bc:94:cd:60:fa:3f:e2:
49:1c:1b:b9:85:4e:a5:cc:8c:4a:33:76:04:6d:d0:
53:cc:3d:b3:da:80:ce:f0:75:d7:a3:5e:4b:e9:8d:
6c:e0:9a:8e:26:f6:b7:bb:85:29:2c:f0:59:97:28:
06:e4:3f:a3:e1:44:c0:40:64:06:f2:dc:65:4d:df:
ac:7d:b6:92:b1:25:b8:7e:56:67:25:30:8c:40:e8:
f0:05:db:6f:06:eb:35:02:8a:0e:82:f7:53:ae:05:
e7:11:0d:cd:5b:db:d4:64:5a:25:bd:a7:8b:1a:86:
90:13:94:06:62:41:42:5d:c5:33:4b:c9:23:bf:93:
7d:b8:bd:de:cf:bc:57:4c:cf:8e:01:37:50:c4:76:
95:7e:8d:76:7e:50:63:f0:a2:10:a7:4b:83:cf:a9:
a4:96:99:a3:4f:d2:fe:43:9a:8e:26:d9:3b:de:fd:
5a:17:07:7f:67:17:f2:8e:1f:d7:16:f6:ba:9c:21:
b2:53:59:9f:d0:7e:0d:a2:25:36:fb:c1:86:81:84:
21:ab:10:dd:51:9d:98:1d:13:b0:38:2d:86:ad:9b:
88:e6:f2:21:eb:3f:b1:3d:5f:21:b5:9d:1e:02:cf:
73:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:26:CD:4D:FC:69:4E:5E:19:A1:A6:A0:57:3C:45:9C:B8:44:E7:12
X509v3 Authority Key Identifier:
keyid:3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:3d:e3:56:ab:f2:fa:b0:f5:f6:3e:1a:4d:e7:50:78:ee:8a:
75:60:93:f9:1a:21:ca:31:84:19:21:a2:48:e5:da:a3:cc:a9:
56:6a:80:26:e3:80:0f:c0:64:71:5d:ca:56:57:01:24:38:30:
1a:a4:fd:24:bc:37:5c:a5:43:e7:2e:e7:fd:76:88:d7:04:b9:
06:a8:5e:48:98:42:2d:b5:c3:f1:38:7f:f7:b7:7a:28:c1:44:
77:c3:7a:5f:ee:44:54:51:5f:29:ae:93:19:63:8a:7e:18:57:
29:4c:f7:34:71:fb:6b:29:29:3b:c4:6c:1b:8a:9a:f5:89:6d:
29:90:37:e0:3e:54:0d:7a:71:3b:01:16:24:ca:9e:34:95:69:
e3:be:e1:c5:61:17:2e:4b:bd:86:5c:1d:61:f3:2c:84:0e:4d:
78:7c:76:25:c9:7c:fa:9a:55:84:4c:97:f4:21:9f:2e:fb:81:
57:69:bd:68:d2:23:a7:cb:82:a9:c9:48:0d:92:8a:98:1f:b8:
d2:05:13:ef:30:44:f2:ad:e9:57:ff:db:35:17:16:52:66:4d:
76:2a:a2:44:4f:11:75:8b:99:ac:ab:e1:64:e0:98:da:b2:26:
c7:2c:85:7e:72:11:b6:42:15:c6:df:a0:5e:8f:3d:d2:87:34:
6f:de:46:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oV7lb6ped6uqaWgK1hC0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMWQ4MjI1YjI3MTIyNzk0YmM4MmU5MWI5NjdiYjI1ZGJl
NDUwOGUwHhcNMjUwNjI4MTMwMTU4WhcNMjUwNjI5MTMwMTU4WjAzMTEwLwYDVQQD
EygyNTI2Y2Q0ZGZjNjk0ZTVlMTlhMWE2YTA1NzNjNDU5Y2I4NDRlNzEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkoQ9P19vjGcjd2LJ+WZEyooFEUoH
d7yUzWD6P+JJHBu5hU6lzIxKM3YEbdBTzD2z2oDO8HXXo15L6Y1s4JqOJva3u4Up
LPBZlygG5D+j4UTAQGQG8txlTd+sfbaSsSW4flZnJTCMQOjwBdtvBus1AooOgvdT
rgXnEQ3NW9vUZFolvaeLGoaQE5QGYkFCXcUzS8kjv5N9uL3ez7xXTM+OATdQxHaV
fo12flBj8KIQp0uDz6mklpmjT9L+Q5qOJtk73v1aFwd/Zxfyjh/XFva6nCGyU1mf
0H4NoiU2+8GGgYQhqxDdUZ2YHROwOC2GrZuI5vIh6z+xPV8htZ0eAs9zkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCUmzU38aU5eGaGmoFc8RZy4ROcSMB8GA1UdIwQY
MBaAFDodgiWycSJ5S8gukblnuyXb5FCOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi81OWQ0ZWUtNDYxMy00NjQ5LWFkMmMt
NzQ5ZTJiY2E3M2NlLzEvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi81OWQ0ZWUtNDYxMy00NjQ5LWFkMmMtNzQ5ZTJiY2E3M2Nl
LzEvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADD3jVqvy
+rD19j4aTedQeO6KdWCT+RohyjGEGSGiSOXao8ypVmqAJuOAD8BkcV3KVlcBJDgw
GqT9JLw3XKVD5y7n/XaI1wS5BqheSJhCLbXD8Th/97d6KMFEd8N6X+5EVFFfKa6T
GWOKfhhXKUz3NHH7aykpO8RsG4qa9YltKZA34D5UDXpxOwEWJMqeNJVp477hxWEX
Lku9hlwdYfMshA5NeHx2Jcl8+ppVhEyX9CGfLvuBV2m9aNIjp8uCqclIDZKKmB+4
0gUT7zBE8q3pV//bNRcWUmZNdiqiRE8RdYuZrKvhZOCY2rImxyyFfnIRtkIVxt+g
Xo890oc0b95G/A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:52:22 2025 by rpki-client