Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
File: ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft (raw, json)
Hash identifier: S8mkG+hex6As/+L82X2137/S5mfTLjUdGnDKQyur4VU=
Subject key identifier: 90:D4:83:BB:81:4B:D7:A3:95:73:E5:81:73:F8:5D:3F:61:74:1B:41
Authority key identifier: A2:E3:C4:EC:7B:36:11:2F:CE:52:1F:5B:EF:28:73:C7:B4:CC:88:D1
Certificate issuer: /CN=a2e3c4ec7b36112fce521f5bef2873c7b4cc88d1
Certificate serial: 0197B70EF39AC4039797986B924BA0EEC598
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
Manifest number: 11DC
Signing time: Sat 28 Jun 2025 15:01:39 +0000
Manifest this update: Sat 28 Jun 2025 15:01:39 +0000
Manifest next update: Sun 29 Jun 2025 15:01:39 +0000
Files and hashes: 1: O1jkn25qs1-TFBQOkUuo7PUo1bk.roa (hash: G22nJhAbgQNfU91NNPvYIMRUfjCUOYeEUbZcxQsmP2o=)
2: ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl (hash: D7zofXOsitBjPLe9NI5nsJmOJOsoGLzXVvGWEYnSX90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:f3:9a:c4:03:97:97:98:6b:92:4b:a0:ee:c5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2e3c4ec7b36112fce521f5bef2873c7b4cc88d1
Validity
Not Before: Jun 28 15:01:39 2025 GMT
Not After : Jun 29 15:01:39 2025 GMT
Subject: CN=90d483bb814bd7a39573e58173f85d3f61741b41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4a:6b:72:1d:11:35:d4:d2:03:6d:70:d4:05:
40:94:e7:85:4c:35:20:8d:db:00:20:bb:7e:3c:35:
7e:2c:76:0f:ed:dd:13:62:bf:56:ae:e7:29:6a:f6:
48:86:a1:9f:c2:bf:3f:d3:e4:f2:7a:17:50:c5:46:
a3:ae:7b:0c:9e:de:e9:18:cc:47:08:d4:40:6d:b7:
b9:fb:6d:6e:cb:04:74:49:f3:ea:ed:c6:72:5b:a5:
4a:96:d6:66:36:d8:a8:6a:8a:81:82:cf:e3:8d:ce:
39:31:c0:8b:94:bc:5d:8f:a2:9e:41:cc:72:52:5e:
0f:6e:f0:87:f9:4d:ac:cd:e7:a8:2d:2e:62:c5:54:
69:55:0d:48:c5:62:dc:48:cb:0a:f3:73:06:d6:e8:
e1:93:5d:32:d8:e7:c3:11:90:5f:2e:ba:d2:d8:ce:
25:fe:a1:9a:ab:14:f2:66:fa:ee:d3:a5:33:61:cb:
38:b3:07:c0:46:80:72:cc:39:b0:88:10:6b:2d:e8:
5f:2e:1f:73:d5:7b:3f:df:bd:47:ee:db:0f:18:6b:
e0:e9:ee:0f:54:10:6e:72:a1:1a:f3:90:64:d5:a8:
ee:79:a1:37:6c:e4:78:77:af:3d:ba:55:e2:9d:a7:
9c:19:45:dc:f0:ac:5d:27:43:e9:5a:95:58:1f:f8:
a9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D4:83:BB:81:4B:D7:A3:95:73:E5:81:73:F8:5D:3F:61:74:1B:41
X509v3 Authority Key Identifier:
keyid:A2:E3:C4:EC:7B:36:11:2F:CE:52:1F:5B:EF:28:73:C7:B4:CC:88:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:56:17:91:05:c9:7e:d0:3b:1b:45:0d:80:e1:e5:5a:11:75:
d4:d8:4c:16:84:38:c8:ba:2e:c6:66:c9:a1:8f:0c:8b:c5:ea:
4e:a2:84:4d:23:a6:d3:73:a4:13:53:2b:4c:92:0c:9a:5b:c3:
a2:b2:3c:1a:9b:82:24:2f:b3:fc:fa:cd:dd:25:07:1e:f8:31:
96:bb:8a:d6:c9:dc:4d:b3:68:48:c9:fc:3e:e2:76:4e:5e:61:
70:b4:98:84:26:62:e3:18:ae:17:57:f3:40:23:ae:8e:fe:d7:
ea:64:40:08:d8:fc:c6:13:14:d0:12:99:5d:52:00:05:79:9b:
75:3c:6d:25:8e:4e:7c:5d:b5:5b:3a:aa:1f:5e:29:ea:7c:57:
74:84:2f:90:f6:6b:53:65:0a:e1:64:fc:ba:9e:1c:76:54:c2:
0e:85:22:bb:05:25:c3:30:f3:ac:06:17:b8:de:ef:c7:14:81:
29:41:87:27:96:b8:08:a7:ac:1d:61:ae:3a:6e:27:b3:70:e3:
bc:4e:29:34:39:13:30:b5:35:59:22:c8:7c:e6:34:41:79:40:
b0:2a:4c:90:63:95:00:ae:52:83:de:31:a6:e1:6c:0b:56:56:
4f:27:aa:63:79:76:8a:46:81:b4:d1:2a:58:29:d0:94:fc:c0:
ae:33:f6:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DvOaxAOXl5hrkkug7sWYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZTNjNGVjN2IzNjExMmZjZTUyMWY1YmVmMjg3M2M3YjRj
Yzg4ZDEwHhcNMjUwNjI4MTUwMTM5WhcNMjUwNjI5MTUwMTM5WjAzMTEwLwYDVQQD
Eyg5MGQ0ODNiYjgxNGJkN2EzOTU3M2U1ODE3M2Y4NWQzZjYxNzQxYjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokprch0RNdTSA21w1AVAlOeFTDUg
jdsAILt+PDV+LHYP7d0TYr9WrucpavZIhqGfwr8/0+TyehdQxUajrnsMnt7pGMxH
CNRAbbe5+21uywR0SfPq7cZyW6VKltZmNtioaoqBgs/jjc45McCLlLxdj6KeQcxy
Ul4PbvCH+U2szeeoLS5ixVRpVQ1IxWLcSMsK83MG1ujhk10y2OfDEZBfLrrS2M4l
/qGaqxTyZvru06UzYcs4swfARoByzDmwiBBrLehfLh9z1Xs/371H7tsPGGvg6e4P
VBBucqEa85Bk1ajueaE3bOR4d689ulXinaecGUXc8KxdJ0PpWpVYH/ipUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJDUg7uBS9ejlXPlgXP4XT9hdBtBMB8GA1UdIwQY
MBaAFKLjxOx7NhEvzlIfW+8oc8e0zIjRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3VQRTdIczJFU19PVWg5Yjd5aHp4N1RNaU5FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9mNDAzODctMmQ4NC00MDYyLWJlYzYt
ZGE1MTNjYzY5ODM5LzEvb3VQRTdIczJFU19PVWg5Yjd5aHp4N1RNaU5FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9mNDAzODctMmQ4NC00MDYyLWJlYzYtZGE1MTNjYzY5ODM5
LzEvb3VQRTdIczJFU19PVWg5Yjd5aHp4N1RNaU5FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAflYXkQXJ
ftA7G0UNgOHlWhF11NhMFoQ4yLouxmbJoY8Mi8XqTqKETSOm03OkE1MrTJIMmlvD
orI8GpuCJC+z/PrN3SUHHvgxlruK1sncTbNoSMn8PuJ2Tl5hcLSYhCZi4xiuF1fz
QCOujv7X6mRACNj8xhMU0BKZXVIABXmbdTxtJY5OfF21WzqqH14p6nxXdIQvkPZr
U2UK4WT8up4cdlTCDoUiuwUlwzDzrAYXuN7vxxSBKUGHJ5a4CKesHWGuOm4ns3Dj
vE4pNDkTMLU1WSLIfOY0QXlAsCpMkGOVAK5Sg94xpuFsC1ZWTyeqY3l2ikaBtNEq
WCnQlPzArjP2Xw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:07 2025 by rpki-client