Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: uzTmYF9USwoR3pCyefaMUeWVbBRMdK/rApC2TXl9JCw=
Subject key identifier: 43:47:61:4F:12:0E:50:8A:33:F1:A0:48:CF:53:6C:00:5C:29:24:CF
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 0197C64A71FCA7A249BD8C2EC27073CF9425
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 0568
Signing time: Tue 01 Jul 2025 14:00:56 +0000
Manifest this update: Tue 01 Jul 2025 14:00:56 +0000
Manifest next update: Wed 02 Jul 2025 14:00:56 +0000
Files and hashes: 1: lG9M0ytelOsltsM45OHzpDj8VA0.roa (hash: NbXxBP1wpUJzGfc6WpWH6JS4IiG1rIjC9o+D9ASG5hQ=)
2: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: AWjiFMZ0teoxe61PKPqU6G2VkhCfR2WIDxQ93MbN9x4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:4a:71:fc:a7:a2:49:bd:8c:2e:c2:70:73:cf:94:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Jul 1 14:00:56 2025 GMT
Not After : Jul 2 14:00:56 2025 GMT
Subject: CN=4347614f120e508a33f1a048cf536c005c2924cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:20:f8:7f:26:78:96:eb:a3:30:cf:7a:ea:eb:
72:a1:e8:2a:82:d7:4c:2a:27:dc:05:8d:f8:de:59:
76:11:e7:01:96:8a:1a:fe:40:50:cc:cd:9d:8e:54:
a9:b6:cf:e1:51:ae:49:84:6f:44:67:e9:14:98:87:
bb:5e:45:ab:98:fd:9c:fd:2b:3e:db:ae:25:10:5f:
bb:f4:27:16:25:5e:af:5c:a3:15:a5:bc:a7:fc:50:
92:1b:2f:40:84:22:91:d3:44:10:68:e0:78:95:bb:
3f:80:8e:c9:31:53:09:3a:9d:a4:74:d7:d5:af:66:
46:65:a2:98:69:c0:e9:af:1f:91:be:34:da:9a:55:
c8:e0:71:0d:ad:e6:51:01:9b:4b:58:d1:77:fa:06:
81:3e:eb:4e:99:e9:8f:0c:e3:97:93:e2:ef:5c:cd:
4f:8f:54:af:44:a3:5d:08:c4:38:a5:1b:c6:fb:bc:
69:2a:73:1c:d1:6b:df:f5:23:2a:70:d7:a1:a2:90:
20:f0:17:4e:30:7e:69:4d:47:31:a1:fa:e3:50:f8:
d5:f0:1a:e7:8a:c4:1b:9a:6a:74:57:c2:03:f7:59:
2b:12:8d:ed:04:40:b7:ef:a1:a3:fc:c2:2d:9b:29:
a6:73:16:15:3e:90:76:21:35:12:12:f2:94:95:86:
0f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:47:61:4F:12:0E:50:8A:33:F1:A0:48:CF:53:6C:00:5C:29:24:CF
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:14:40:5e:6e:32:07:88:3b:7f:87:ba:21:ed:cd:0d:27:70:
95:5d:09:3e:f5:56:c7:b9:e8:4b:9d:dd:ab:7a:59:6f:0d:f2:
c8:95:f3:db:79:0d:e5:84:4a:66:85:09:9d:46:cb:05:05:33:
38:d9:99:d7:50:0d:37:15:90:85:47:db:48:ed:76:ad:1d:a0:
d1:4b:57:da:fc:51:ab:4b:bc:cc:65:65:68:27:a0:aa:92:8e:
e1:bd:17:fc:1d:c4:b2:38:f3:3e:d6:2f:be:9e:49:c3:b2:d8:
f9:6a:18:8d:3b:1b:32:3c:ae:a8:9b:56:3f:8c:10:08:2a:1c:
ca:a2:2e:64:08:5d:fc:c8:b0:b0:29:5d:dc:74:69:bc:c6:2c:
78:d4:f3:76:a7:d5:fc:ce:8b:b1:1a:10:50:45:5a:32:5f:08:
7e:95:95:e9:f9:c5:2b:ef:2f:d9:b7:f4:56:7b:3d:67:73:3e:
41:d9:ab:ea:d7:d7:cc:73:83:5f:3d:80:f3:c4:62:a8:c6:ac:
2d:e4:f3:fc:06:6b:e2:56:06:fc:f0:4d:ca:4e:dd:55:de:32:
29:77:54:21:42:8c:3c:ea:8c:00:9c:17:90:4f:5f:b9:b8:ab:
1b:0b:b6:e6:79:35:5e:22:a9:16:ad:19:a5:c1:3d:51:43:98:
3b:a7:11:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfGSnH8p6JJvYwuwnBzz5QlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNDBmOTY4ZmE1MmU2Y2IyZmU2NTcxMDk3MDBmYTA3NGMx
OTBiODUwHhcNMjUwNzAxMTQwMDU2WhcNMjUwNzAyMTQwMDU2WjAzMTEwLwYDVQQD
Eyg0MzQ3NjE0ZjEyMGU1MDhhMzNmMWEwNDhjZjUzNmMwMDVjMjkyNGNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyD4fyZ4luujMM966utyoegqgtdM
KifcBY343ll2EecBlooa/kBQzM2djlSpts/hUa5JhG9EZ+kUmIe7XkWrmP2c/Ss+
264lEF+79CcWJV6vXKMVpbyn/FCSGy9AhCKR00QQaOB4lbs/gI7JMVMJOp2kdNfV
r2ZGZaKYacDprx+RvjTamlXI4HENreZRAZtLWNF3+gaBPutOmemPDOOXk+LvXM1P
j1SvRKNdCMQ4pRvG+7xpKnMc0Wvf9SMqcNehopAg8BdOMH5pTUcxofrjUPjV8Brn
isQbmmp0V8ID91krEo3tBEC376Gj/MItmymmcxYVPpB2ITUSEvKUlYYPRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFENHYU8SDlCKM/GgSM9TbABcKSTPMB8GA1UdIwQY
MBaAFKBA+Wj6UubLL+ZXEJcA+gdMGQuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84OTU1MDItNGUxNC00OTYzLWEzMDUt
M2I2YjBhNTU1NWVmLzEvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC84OTU1MDItNGUxNC00OTYzLWEzMDUtM2I2YjBhNTU1NWVm
LzEvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbRRAXm4y
B4g7f4e6Ie3NDSdwlV0JPvVWx7noS53dq3pZbw3yyJXz23kN5YRKZoUJnUbLBQUz
ONmZ11ANNxWQhUfbSO12rR2g0UtX2vxRq0u8zGVlaCegqpKO4b0X/B3EsjjzPtYv
vp5Jw7LY+WoYjTsbMjyuqJtWP4wQCCocyqIuZAhd/MiwsCld3HRpvMYseNTzdqfV
/M6LsRoQUEVaMl8IfpWV6fnFK+8v2bf0Vns9Z3M+Qdmr6tfXzHODXz2A88RiqMas
LeTz/AZr4lYG/PBNyk7dVd4yKXdUIUKMPOqMAJwXkE9fubirGwu25nk1XiKpFq0Z
pcE9UUOYO6cRAQ==
-----END CERTIFICATE-----
Generated at Tue Jul 1 18:12:45 2025 by rpki-client