Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: jSuWIvN+PYw8/ZAlX5f+1dht7AhcFhYC0PmttaQ0Y14=
Subject key identifier: 24:C4:4A:A4:DB:8C:66:C4:3B:7C:E5:F5:F9:40:29:AF:C9:B8:17:F5
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 0197B70F07D3BDB453F249CF59A960426D84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 0D51
Signing time: Sat 28 Jun 2025 15:01:44 +0000
Manifest this update: Sat 28 Jun 2025 15:01:44 +0000
Manifest next update: Sun 29 Jun 2025 15:01:44 +0000
Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=)
2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: XrCOmg+5R0orZLSLxBbtcAuAWQN9cl73vwogLbJ1a5c=)
3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=)
4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=)
5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:07:d3:bd:b4:53:f2:49:cf:59:a9:60:42:6d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Jun 28 15:01:44 2025 GMT
Not After : Jun 29 15:01:44 2025 GMT
Subject: CN=24c44aa4db8c66c43b7ce5f5f94029afc9b817f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4d:ad:f5:aa:b3:50:f5:60:9c:b5:e9:38:3c:
fa:54:e0:ac:7a:33:1f:32:9a:a8:08:47:a7:68:63:
ac:3b:a9:f5:1b:4c:e3:91:0a:5d:e8:dc:98:8f:ce:
16:5d:6d:ef:49:53:95:bc:09:36:86:98:ae:d1:a3:
b7:bb:dc:69:2f:54:32:63:c7:57:53:09:92:6d:97:
d5:3e:af:75:35:fa:c0:a1:79:a8:8b:e9:19:16:47:
f5:7d:94:2e:25:55:73:00:9f:83:02:91:c6:9c:33:
2c:66:fa:05:c1:99:57:58:07:7c:3e:34:a3:55:5b:
4b:7c:63:4c:a3:33:ae:ff:a6:ef:7d:16:c9:47:c5:
bf:b3:8b:24:37:2a:ae:f9:e4:2a:c3:78:f6:af:29:
1b:3b:f5:32:d8:60:34:5a:0a:51:d3:6e:ff:14:ab:
d3:70:d9:8b:56:fe:88:ac:8c:4f:49:0e:ab:87:b8:
0c:ae:8e:d4:6b:26:4c:64:ee:90:50:a2:f8:cd:e2:
2e:d9:cf:39:60:66:5d:cd:db:73:20:13:32:4c:86:
9c:61:eb:02:40:f3:41:50:0d:3e:3d:8d:d7:73:15:
5d:18:6b:a3:d0:17:51:24:64:f9:b1:24:93:b3:f8:
c3:0a:9c:d1:24:2d:ed:ce:77:73:e3:12:9c:cf:0e:
ef:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C4:4A:A4:DB:8C:66:C4:3B:7C:E5:F5:F9:40:29:AF:C9:B8:17:F5
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:32:fb:de:c0:c2:7e:c5:b4:2b:ed:90:35:e2:11:12:7e:27:
05:e2:fa:fa:39:fa:4e:fe:14:de:77:90:24:85:a9:c8:98:e0:
2b:b3:7b:f3:48:76:37:f0:4a:f2:79:c7:6b:93:12:b2:85:9c:
4f:90:60:42:5f:a8:a1:b6:12:57:89:ca:cc:5d:15:4d:39:b1:
2c:95:db:57:6d:59:60:15:62:19:ec:2d:5b:0c:98:ae:b5:28:
3c:4a:03:db:fc:0b:fc:70:2f:12:c9:39:35:07:6a:4f:16:f4:
89:36:85:aa:d5:31:10:dd:2d:63:b6:ee:21:a7:cf:47:84:f7:
a1:18:9e:d3:4a:0b:19:9a:38:eb:68:4c:bf:44:d3:9a:84:3b:
f4:15:1a:ad:8f:9c:54:06:97:ce:c5:51:29:82:51:91:e7:0b:
e4:22:51:b6:e2:52:0f:bf:77:26:06:cb:86:b1:36:67:bb:06:
1c:38:99:ce:2d:89:9c:bc:9c:3e:21:21:64:63:22:6b:01:c3:
6f:e7:33:17:20:64:c8:f3:3e:37:b3:27:5e:ab:c5:25:83:a0:
13:c1:e4:50:a4:a4:0e:57:7c:57:28:ef:d6:49:a3:53:d0:25:
b6:91:9a:0c:7f:78:ff:75:e7:20:ab:9a:67:f4:5b:68:74:7d:
3e:ce:b7:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DwfTvbRT8knPWalgQm2EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMzQ4ODkyNTFlN2NiMTMzZTkwNmM3MDg5MWJhMWEwNDk1
ZWQ4NjAwHhcNMjUwNjI4MTUwMTQ0WhcNMjUwNjI5MTUwMTQ0WjAzMTEwLwYDVQQD
EygyNGM0NGFhNGRiOGM2NmM0M2I3Y2U1ZjVmOTQwMjlhZmM5YjgxN2Y1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl02t9aqzUPVgnLXpODz6VOCsejMf
MpqoCEenaGOsO6n1G0zjkQpd6NyYj84WXW3vSVOVvAk2hpiu0aO3u9xpL1QyY8dX
UwmSbZfVPq91NfrAoXmoi+kZFkf1fZQuJVVzAJ+DApHGnDMsZvoFwZlXWAd8PjSj
VVtLfGNMozOu/6bvfRbJR8W/s4skNyqu+eQqw3j2rykbO/Uy2GA0WgpR027/FKvT
cNmLVv6IrIxPSQ6rh7gMro7UayZMZO6QUKL4zeIu2c85YGZdzdtzIBMyTIacYesC
QPNBUA0+PY3XcxVdGGuj0BdRJGT5sSSTs/jDCpzRJC3tzndz4xKczw7v4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCTESqTbjGbEO3zl9flAKa/JuBf1MB8GA1UdIwQY
MBaAFDo0iJJR58sTPpBscIkboaBJXthgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS85MTE4MmEtZjM0Yi00YTE1LWIzNjMt
ODRmOWVkODdhYzMxLzEvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS85MTE4MmEtZjM0Yi00YTE1LWIzNjMtODRmOWVkODdhYzMx
LzEvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVjL73sDC
fsW0K+2QNeIREn4nBeL6+jn6Tv4U3neQJIWpyJjgK7N780h2N/BK8nnHa5MSsoWc
T5BgQl+oobYSV4nKzF0VTTmxLJXbV21ZYBViGewtWwyYrrUoPEoD2/wL/HAvEsk5
NQdqTxb0iTaFqtUxEN0tY7buIafPR4T3oRie00oLGZo462hMv0TTmoQ79BUarY+c
VAaXzsVRKYJRkecL5CJRtuJSD793JgbLhrE2Z7sGHDiZzi2JnLycPiEhZGMiawHD
b+czFyBkyPM+N7MnXqvFJYOgE8HkUKSkDld8Vyjv1kmjU9AltpGaDH94/3XnIKua
Z/RbaHR9Ps63sA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:09:32 2025 by rpki-client