Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
File: oHFXHI4QtBnXo7824Qhf_VzXipg.mft (raw, json)
Hash identifier: rL7BMAYMJmMVKSRklGF/d0DRHlDl/rl8FUnSAOcHI1E=
Subject key identifier: 72:1B:6B:92:01:10:FE:B4:17:4D:02:3D:C8:06:EA:E8:BA:4A:A7:B4
Authority key identifier: A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98
Certificate issuer: /CN=a071571c8e10b419d7a3bf36e1085ffd5cd78a98
Certificate serial: 0197B9A1518D594B209F19A5B7DA02EADABB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
Manifest number: 0F7E
Signing time: Sun 29 Jun 2025 03:00:46 +0000
Manifest this update: Sun 29 Jun 2025 03:00:46 +0000
Manifest next update: Mon 30 Jun 2025 03:00:46 +0000
Files and hashes: 1: _RMv1Q7O2CnoWhcrAcn90ZX5USk.roa (hash: I2FYErDanPUJADaKO92Q6jyRK2EK15cN4Qdxt/bs9vQ=)
2: oHFXHI4QtBnXo7824Qhf_VzXipg.crl (hash: b8RCSaSqcwrHCd1X5paJn7qyyHVUWrCfEmGhRDk/wJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 03:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:51:8d:59:4b:20:9f:19:a5:b7:da:02:ea:da:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a071571c8e10b419d7a3bf36e1085ffd5cd78a98
Validity
Not Before: Jun 29 03:00:46 2025 GMT
Not After : Jun 30 03:00:46 2025 GMT
Subject: CN=721b6b920110feb4174d023dc806eae8ba4aa7b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:69:b8:74:ff:1e:0d:44:0c:9e:8b:bf:da:70:
6a:cb:02:f7:45:87:ce:ae:61:f2:c4:a4:6c:dd:8c:
e2:de:38:ab:4b:50:9e:da:90:57:33:01:d1:06:d0:
67:4c:1f:f2:c6:49:dc:02:0a:d0:76:b8:d9:04:5b:
4d:c3:63:e9:49:31:e7:1f:e0:67:ae:8a:a7:30:8f:
b4:0a:93:40:22:a8:7c:24:b1:f6:6a:a3:e8:8c:fb:
da:29:bd:00:de:c5:9b:62:ef:1b:73:74:f9:37:94:
13:16:da:5a:46:17:1a:d1:04:e9:db:d2:15:0c:9e:
6f:b0:c8:56:84:4f:12:f1:fe:25:86:2d:d2:cb:c4:
f3:bb:d4:ba:71:a3:a6:2d:3d:aa:79:12:e6:76:18:
ba:81:50:40:17:82:99:82:2b:e9:fb:3e:a9:99:30:
8b:e6:0b:dc:02:96:8a:38:3b:d4:91:d6:53:f1:2d:
67:7b:21:79:75:17:a5:17:09:a3:bb:ba:a6:2d:12:
9d:67:8d:28:4c:ab:9c:03:c9:ee:ce:c8:57:6f:7a:
f5:d4:d9:31:7a:22:1b:76:47:73:27:51:2b:e9:40:
28:41:99:83:cc:e8:0a:90:34:80:05:88:af:20:df:
5c:6a:45:ad:22:51:dd:68:1c:43:f2:bf:62:76:07:
db:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:1B:6B:92:01:10:FE:B4:17:4D:02:3D:C8:06:EA:E8:BA:4A:A7:B4
X509v3 Authority Key Identifier:
keyid:A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:73:cc:25:99:50:67:98:a4:9c:a9:0e:33:e0:ff:cd:47:06:
e1:fd:b7:e1:23:ff:3e:79:fa:a4:ba:10:e7:19:91:11:7a:1a:
04:25:47:2d:ce:ef:eb:07:5a:fa:8a:b5:cb:1c:99:12:0a:35:
ed:c9:3d:cd:c1:ca:d8:18:c3:11:6f:ea:48:44:97:d0:7e:11:
7f:ab:e8:5a:9b:72:46:ae:ca:25:7b:dc:e7:39:d6:14:36:9a:
c1:6c:af:25:f6:59:2e:b7:c1:aa:eb:7c:ea:cd:75:72:90:d0:
b8:f6:a7:98:24:89:49:3a:aa:82:17:2e:df:2d:c7:f1:5f:f9:
f2:62:7c:68:48:84:5f:23:67:14:6b:00:08:fd:43:80:65:60:
84:7e:e6:cd:9e:5b:18:38:41:c0:e7:60:dd:be:36:68:e7:30:
24:b6:7e:e1:80:cf:41:0b:f7:8f:20:8f:d0:7e:73:7e:2f:8e:
66:81:c6:87:a7:2e:8c:f1:fe:48:4a:a9:b8:33:b2:ec:2e:96:
f5:90:87:e7:3f:c4:cd:80:92:b1:18:93:a0:5f:0a:3e:5a:71:
1d:6e:70:2d:41:fa:5e:28:75:29:7c:1a:ec:57:ad:2d:fa:82:
d1:e0:73:88:d9:04:ef:e1:56:ac:ac:46:b7:28:e0:65:11:f6:
b3:dd:f5:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe5oVGNWUsgnxmlt9oC6tq7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNzE1NzFjOGUxMGI0MTlkN2EzYmYzNmUxMDg1ZmZkNWNk
NzhhOTgwHhcNMjUwNjI5MDMwMDQ2WhcNMjUwNjMwMDMwMDQ2WjAzMTEwLwYDVQQD
Eyg3MjFiNmI5MjAxMTBmZWI0MTc0ZDAyM2RjODA2ZWFlOGJhNGFhN2I0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7mm4dP8eDUQMnou/2nBqywL3RYfO
rmHyxKRs3Yzi3jirS1Ce2pBXMwHRBtBnTB/yxkncAgrQdrjZBFtNw2PpSTHnH+Bn
roqnMI+0CpNAIqh8JLH2aqPojPvaKb0A3sWbYu8bc3T5N5QTFtpaRhca0QTp29IV
DJ5vsMhWhE8S8f4lhi3Sy8Tzu9S6caOmLT2qeRLmdhi6gVBAF4KZgivp+z6pmTCL
5gvcApaKODvUkdZT8S1neyF5dRelFwmju7qmLRKdZ40oTKucA8nuzshXb3r11Nkx
eiIbdkdzJ1Er6UAoQZmDzOgKkDSABYivIN9cakWtIlHdaBxD8r9idgfboQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHIba5IBEP60F00CPcgG6ui6Sqe0MB8GA1UdIwQY
MBaAFKBxVxyOELQZ16O/NuEIX/1c14qYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0hGWEhJNFF0Qm5Ybzc4MjRRaGZfVnpYaXBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjgyOWYtYjNlZC00NGQzLWE1Y2Yt
MGMxZjY5YjdhZWU3LzEvb0hGWEhJNFF0Qm5Ybzc4MjRRaGZfVnpYaXBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9jMjgyOWYtYjNlZC00NGQzLWE1Y2YtMGMxZjY5YjdhZWU3
LzEvb0hGWEhJNFF0Qm5Ybzc4MjRRaGZfVnpYaXBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVnPMJZlQ
Z5iknKkOM+D/zUcG4f234SP/Pnn6pLoQ5xmREXoaBCVHLc7v6wda+oq1yxyZEgo1
7ck9zcHK2BjDEW/qSESX0H4Rf6voWptyRq7KJXvc5znWFDaawWyvJfZZLrfBqut8
6s11cpDQuPanmCSJSTqqghcu3y3H8V/58mJ8aEiEXyNnFGsACP1DgGVghH7mzZ5b
GDhBwOdg3b42aOcwJLZ+4YDPQQv3jyCP0H5zfi+OZoHGh6cujPH+SEqpuDOy7C6W
9ZCH5z/EzYCSsRiToF8KPlpxHW5wLUH6Xih1KXwa7FetLfqC0eBziNkE7+FWrKxG
tyjgZRH2s931qg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 09:36:42 2025 by rpki-client