Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
File: Ooz8_rg-iPNror8kRduewegvDVQ.mft (raw, json)
Hash identifier: euq5WUSspD2rRqpGp4vhDW1hNuwjGcG7eOc+9VTUepw=
Subject key identifier: D9:95:AE:F6:F2:D8:89:1E:5E:03:F5:D1:FE:58:7F:CC:74:9D:54:7E
Authority key identifier: 3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
Certificate issuer: /CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Certificate serial: 0197B77C971965B00DCB3B982B1A2958EAA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 17:01:25 +0000
Manifest this update: Sat 28 Jun 2025 17:01:25 +0000
Manifest next update: Sun 29 Jun 2025 17:01:25 +0000
Files and hashes: 1: 26TbrymsKsZjBkQHIbbRRWaFR8Y.roa (hash: SWIdCtaxTysSBJj/hZn1IHZ7qzsZ9zOqjJPPtoUQNGw=)
2: Ooz8_rg-iPNror8kRduewegvDVQ.crl (hash: bDWOtxvGLOM9O5CR6Vw71nnGK3ZC9TYm3dzalWp0M9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 17:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:97:19:65:b0:0d:cb:3b:98:2b:1a:29:58:ea:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Validity
Not Before: Jun 28 17:01:25 2025 GMT
Not After : Jun 29 17:01:25 2025 GMT
Subject: CN=d995aef6f2d8891e5e03f5d1fe587fcc749d547e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b9:1b:d0:33:c6:8e:55:96:a7:74:57:b8:0a:
4a:a7:75:58:64:c3:56:b2:84:2a:12:f6:11:8a:3a:
e0:ee:5e:82:a6:c7:e3:91:21:f6:fb:bf:62:ea:5b:
e0:9b:c4:fc:2e:38:2c:18:e4:03:88:b2:33:ee:7f:
e8:17:5c:09:94:77:34:a6:fe:ad:f3:e5:7f:88:e5:
b0:ac:3a:5b:f7:43:29:e5:0a:d4:1a:75:9f:0c:b0:
e5:15:c6:22:e3:16:3b:27:82:84:07:33:a3:11:f2:
0c:6d:7a:65:dd:65:c8:9b:63:0b:cd:22:78:f7:2f:
11:cd:62:c5:be:5d:4b:16:e3:b6:ac:d1:1d:e8:72:
71:65:da:52:3d:5e:e7:a7:80:1a:fb:28:ee:43:6c:
c1:e9:1a:94:4c:a3:59:2d:3b:f6:6a:fe:02:b0:b5:
bc:07:65:9b:11:8d:ca:d2:71:f1:64:fd:f5:23:c4:
ec:98:b1:d4:41:46:e7:be:41:35:e1:49:5a:5d:2b:
c5:de:88:31:26:52:ba:c7:75:40:02:db:fe:a7:68:
1a:30:65:e8:45:49:e6:82:d1:d2:58:03:c4:c0:8b:
f8:50:69:bf:ba:d2:8a:06:75:49:ab:54:d5:18:b0:
60:11:11:f8:90:3a:e7:36:8b:d3:f4:56:8d:c2:23:
8c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:95:AE:F6:F2:D8:89:1E:5E:03:F5:D1:FE:58:7F:CC:74:9D:54:7E
X509v3 Authority Key Identifier:
keyid:3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:26:06:8a:8a:b6:b7:b0:11:de:a0:f1:0f:d0:06:c0:64:52:
31:0f:99:1a:9d:0e:b7:b8:31:2d:12:82:fb:1e:4c:e3:76:4f:
a2:a7:fc:db:48:5f:ad:10:b3:c8:dd:aa:37:3e:3c:a2:44:ac:
d0:57:40:ae:7c:ce:1d:c8:03:e6:7a:25:43:21:a2:39:f0:49:
8e:81:3c:45:fe:16:e4:1f:3f:a1:89:6c:e5:26:a3:95:1c:b0:
9b:20:91:7d:ea:82:2d:17:19:22:93:0a:20:bd:f9:1c:e4:37:
72:7b:c5:43:4e:9d:c8:c5:d5:fd:df:5a:5d:cf:d4:94:cf:96:
e4:da:e8:d1:00:e1:14:5e:b0:f6:13:bf:42:38:20:8e:81:af:
51:bc:94:c5:26:b5:d2:c6:b7:5b:1c:67:af:ca:e4:ac:2e:2a:
bf:00:ec:32:17:4d:7a:60:30:e8:c2:e6:2a:82:74:bd:f9:1c:
0c:36:61:ef:82:e8:f7:d9:bd:18:fa:76:f8:1a:8f:7b:f9:9d:
9d:ac:9e:d4:fa:a3:d1:25:9c:ad:7c:7a:22:c4:bb:ce:a7:e4:
71:9e:e8:bc:6b:4d:b1:04:dd:3d:c9:72:47:3d:b8:ae:2b:ad:
41:e9:fc:30:da:43:78:ff:13:3e:81:3a:f0:f0:cc:38:6b:f2:
05:09:40:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fJcZZbANyzuYKxopWOqgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhOGNmY2ZlYjgzZTg4ZjM2YmEyYmYyNDQ1ZGI5ZWMxZTgy
ZjBkNTQwHhcNMjUwNjI4MTcwMTI1WhcNMjUwNjI5MTcwMTI1WjAzMTEwLwYDVQQD
EyhkOTk1YWVmNmYyZDg4OTFlNWUwM2Y1ZDFmZTU4N2ZjYzc0OWQ1NDdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbkb0DPGjlWWp3RXuApKp3VYZMNW
soQqEvYRijrg7l6CpsfjkSH2+79i6lvgm8T8LjgsGOQDiLIz7n/oF1wJlHc0pv6t
8+V/iOWwrDpb90Mp5QrUGnWfDLDlFcYi4xY7J4KEBzOjEfIMbXpl3WXIm2MLzSJ4
9y8RzWLFvl1LFuO2rNEd6HJxZdpSPV7np4Aa+yjuQ2zB6RqUTKNZLTv2av4CsLW8
B2WbEY3K0nHxZP31I8TsmLHUQUbnvkE14UlaXSvF3ogxJlK6x3VAAtv+p2gaMGXo
RUnmgtHSWAPEwIv4UGm/utKKBnVJq1TVGLBgERH4kDrnNovT9FaNwiOMRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNmVrvby2IkeXgP10f5Yf8x0nVR+MB8GA1UdIwQY
MBaAFDqM/P64Pojza6K/JEXbnsHoLw1UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi85MDJjMWEtMjlmNS00OGRkLWFkYTEt
NmE0ZWIzN2EzM2NjLzEvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi85MDJjMWEtMjlmNS00OGRkLWFkYTEtNmE0ZWIzN2EzM2Nj
LzEvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWiYGioq2
t7AR3qDxD9AGwGRSMQ+ZGp0Ot7gxLRKC+x5M43ZPoqf820hfrRCzyN2qNz48okSs
0FdArnzOHcgD5nolQyGiOfBJjoE8Rf4W5B8/oYls5SajlRywmyCRfeqCLRcZIpMK
IL35HOQ3cnvFQ06dyMXV/d9aXc/UlM+W5Nro0QDhFF6w9hO/QjggjoGvUbyUxSa1
0sa3Wxxnr8rkrC4qvwDsMhdNemAw6MLmKoJ0vfkcDDZh74Lo99m9GPp2+BqPe/md
naye1Pqj0SWcrXx6IsS7zqfkcZ7ovGtNsQTdPclyRz24riutQen8MNpDeP8TPoE6
8PDMOGvyBQlAYg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 01:57:05 2025 by rpki-client