Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: suR23VblouvYV4w1R16VtfYLzE6mwzA5Kb92zFErePE=
Subject key identifier: AA:B0:5D:EB:A5:E5:7B:02:40:3D:88:5E:EF:4D:EE:27:3E:83:AE:21
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 0197B7B3505E1AB81B6CFBC9A7C0E5F14469
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0D38
Signing time: Sat 28 Jun 2025 18:01:11 +0000
Manifest this update: Sat 28 Jun 2025 18:01:11 +0000
Manifest next update: Sun 29 Jun 2025 18:01:11 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: uLiWZrs9lXEHH2+Zs7WZatrocduMNJ2w9/HLuJBPaIc=)
2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:50:5e:1a:b8:1b:6c:fb:c9:a7:c0:e5:f1:44:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Jun 28 18:01:11 2025 GMT
Not After : Jun 29 18:01:11 2025 GMT
Subject: CN=aab05deba5e57b02403d885eef4dee273e83ae21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:33:e6:e9:2b:88:c2:cc:36:66:91:99:7d:13:
44:87:8d:34:24:d3:ba:fc:5b:5b:2c:1b:91:12:70:
f9:4e:5a:bc:76:89:a6:f9:58:a0:80:49:2b:43:cd:
af:07:3a:9f:ee:85:38:56:99:41:55:06:73:c9:f1:
49:19:16:58:70:6b:b3:b0:cc:3c:1c:c7:3f:7d:aa:
8e:af:8f:52:78:12:ef:c8:cd:98:91:d6:2f:f9:17:
6f:db:29:ec:e3:a7:bc:80:d6:aa:f1:63:ea:bf:5d:
84:b4:de:96:d6:ee:2c:23:58:ef:b8:de:12:36:06:
e8:aa:0e:6a:92:73:6b:a8:dc:1c:4a:5a:a8:05:9a:
f4:e2:a8:b3:5c:43:3e:f6:69:a3:95:94:07:f7:4b:
0e:2b:66:de:18:b6:00:27:b7:4d:21:03:fe:31:f4:
f0:fb:a9:b4:8e:71:a7:9e:a6:a1:ca:94:49:6d:16:
f8:31:ff:d6:b3:80:3c:d9:3a:23:5f:18:76:33:24:
d1:76:39:c8:1f:9d:2b:07:3c:1a:f8:7c:5d:63:ed:
36:07:ed:d7:e8:73:8d:5d:f9:cb:4f:67:56:4d:3c:
7b:7a:e6:37:d2:28:e9:31:b7:c7:fb:9c:2a:ca:23:
87:aa:5a:41:1e:83:34:71:88:a9:ab:41:ce:61:ec:
8f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B0:5D:EB:A5:E5:7B:02:40:3D:88:5E:EF:4D:EE:27:3E:83:AE:21
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:8c:bb:99:ab:b4:22:8f:b7:6c:34:39:74:70:53:2a:99:06:
b6:97:54:06:6d:76:5f:f3:25:3d:6b:91:07:19:82:5c:34:0f:
fb:f9:05:50:1e:17:59:fe:f4:ee:26:c1:97:32:d5:4a:fd:0e:
db:15:68:9e:a3:fd:16:c2:bb:18:52:9d:3e:b9:68:c1:b1:8c:
9a:94:07:0c:32:eb:44:ad:d6:e7:74:6d:95:ee:01:15:7f:5c:
42:2d:93:b4:c1:4a:00:06:3e:71:76:36:93:e2:9c:62:51:22:
ce:e9:bd:8c:d4:b7:0b:28:0d:af:bf:fa:2b:e0:f1:48:1b:a2:
38:bd:24:25:de:0d:a7:9f:24:aa:0a:cf:5b:4f:dd:25:29:f1:
87:ea:b5:ec:17:6a:10:6e:7b:19:4d:1a:2a:c2:41:81:c8:37:
f0:96:42:b6:5d:c8:17:fb:cb:61:49:cc:d1:75:18:23:a4:f0:
66:d4:10:02:6b:3b:ec:95:be:5a:29:b9:be:dc:11:da:e7:aa:
1e:f8:46:10:dc:db:b4:97:77:f1:4f:51:03:74:8d:d5:0a:9c:
1c:fd:a3:4e:28:37:b3:29:f3:80:29:08:a8:5d:78:6d:5d:e1:
11:50:e6:c8:64:c6:53:7a:83:36:61:b7:68:6e:b1:a4:59:df:
53:3f:19:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3s1BeGrgbbPvJp8Dl8URpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5OWRjMTM2MTlhYWJhN2YyMjJjZWFjYjA1ZjFiYmFjNTli
ZDNhOWEwHhcNMjUwNjI4MTgwMTExWhcNMjUwNjI5MTgwMTExWjAzMTEwLwYDVQQD
EyhhYWIwNWRlYmE1ZTU3YjAyNDAzZDg4NWVlZjRkZWUyNzNlODNhZTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhTPm6SuIwsw2ZpGZfRNEh400JNO6
/FtbLBuREnD5Tlq8domm+ViggEkrQ82vBzqf7oU4VplBVQZzyfFJGRZYcGuzsMw8
HMc/faqOr49SeBLvyM2YkdYv+Rdv2yns46e8gNaq8WPqv12EtN6W1u4sI1jvuN4S
Ngboqg5qknNrqNwcSlqoBZr04qizXEM+9mmjlZQH90sOK2beGLYAJ7dNIQP+MfTw
+6m0jnGnnqahypRJbRb4Mf/Ws4A82TojXxh2MyTRdjnIH50rBzwa+HxdY+02B+3X
6HONXfnLT2dWTTx7euY30ijpMbfH+5wqyiOHqlpBHoM0cYipq0HOYeyPaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKqwXeul5XsCQD2IXu9N7ic+g64hMB8GA1UdIwQY
MBaAFDmdwTYZqrp/IizqywXxu6xZvTqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTkt
MDAzMmZkYzU0NTBiLzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTktMDAzMmZkYzU0NTBi
LzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWoy7mau0
Io+3bDQ5dHBTKpkGtpdUBm12X/MlPWuRBxmCXDQP+/kFUB4XWf707ibBlzLVSv0O
2xVonqP9FsK7GFKdPrlowbGMmpQHDDLrRK3W53Rtle4BFX9cQi2TtMFKAAY+cXY2
k+KcYlEizum9jNS3CygNr7/6K+DxSBuiOL0kJd4Np58kqgrPW0/dJSnxh+q17Bdq
EG57GU0aKsJBgcg38JZCtl3IF/vLYUnM0XUYI6TwZtQQAms77JW+Wim5vtwR2ueq
HvhGENzbtJd38U9RA3SN1QqcHP2jTig3synzgCkIqF14bV3hEVDmyGTGU3qDNmG3
aG6xpFnfUz8Z4Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:05:55 2025 by rpki-client