Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json)
Hash identifier: bLKKyasT1aWXOdnZHCtEv6sqMAfo+wDRIV7Cd3g5VYo=
Subject key identifier: BE:F7:15:F1:54:2C:3E:79:FE:8C:20:34:DD:D7:34:CD:E0:82:61:24
Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Certificate serial: 0197B6A0FC37EAFDC0622B6EC756A33ECA16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
Manifest number: 099F
Signing time: Sat 28 Jun 2025 13:01:32 +0000
Manifest this update: Sat 28 Jun 2025 13:01:32 +0000
Manifest next update: Sun 29 Jun 2025 13:01:32 +0000
Files and hashes: 1: 6t5f4Ujb0FAO84dMqgRAqgV1jVs.roa (hash: u7nakvY2IzZI/nPIoCHOpaknwKeAH1RDuYLRGXqd0p4=)
2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: EGQ88KybFm15SGzSGqav73VjssTbgzSEpI6BPEfPr+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:fc:37:ea:fd:c0:62:2b:6e:c7:56:a3:3e:ca:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Validity
Not Before: Jun 28 13:01:32 2025 GMT
Not After : Jun 29 13:01:32 2025 GMT
Subject: CN=bef715f1542c3e79fe8c2034ddd734cde0826124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:fe:cb:ef:ac:8b:a9:1f:5a:9d:8e:54:f0:5e:
89:95:31:b8:a9:d9:9e:65:fa:16:1c:e5:ea:fc:f7:
b9:4d:55:40:21:81:84:4a:5e:f3:1d:ea:88:3c:ac:
5f:7a:b9:be:3b:02:54:12:68:17:01:0e:86:0a:dd:
6e:d6:6d:bf:85:e2:19:dd:1e:dc:7c:11:b3:6c:fb:
44:5a:b5:be:38:04:e8:67:a3:26:0c:f4:57:d0:30:
b9:b4:79:f1:24:6f:5f:95:40:24:f6:6a:0f:0f:5d:
c0:24:55:b0:53:aa:3d:aa:ac:15:be:5d:2d:1f:df:
38:6f:fa:55:59:b2:69:65:67:c0:4d:bc:e5:0f:bb:
77:6b:fc:cf:9d:d1:23:06:0f:80:d4:13:98:2b:09:
b2:5f:0c:95:f3:91:2e:77:7c:a4:ef:78:94:dd:b7:
9b:0c:ad:71:7d:9e:eb:96:29:92:41:cc:32:2b:c9:
30:b5:c9:11:34:71:0f:09:90:97:85:71:1d:75:45:
e7:3e:c1:b2:35:6c:a4:31:39:13:e9:3d:0d:3b:28:
6f:5a:c0:e1:d9:59:e6:6b:06:b2:74:18:97:a2:5a:
34:f3:b4:db:53:55:83:e2:74:9b:fc:96:8a:4b:56:
1a:da:60:81:52:15:e5:47:88:a2:55:cb:67:83:c1:
fe:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F7:15:F1:54:2C:3E:79:FE:8C:20:34:DD:D7:34:CD:E0:82:61:24
X509v3 Authority Key Identifier:
keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:5a:ed:bf:49:74:aa:0e:8a:f3:2d:49:d6:05:92:53:3d:5d:
e0:23:a2:d5:c1:13:f4:64:59:41:e4:45:c2:02:ea:1b:32:1c:
bd:b8:a4:be:c0:19:e3:87:65:57:23:84:da:08:b7:85:5d:b5:
54:5b:0b:ed:92:33:38:85:5a:75:fb:d1:04:71:b5:6f:37:0c:
5d:b8:bd:2e:f3:18:64:98:b4:ae:2a:61:27:54:1d:06:29:9c:
21:2b:1f:8a:54:99:2a:96:b9:0d:c8:ce:44:e0:e3:cb:58:22:
5b:76:35:6a:79:f8:6c:eb:aa:ab:01:c1:1a:47:ae:21:99:0a:
82:90:e9:6c:8a:8f:c6:80:4f:16:c5:9e:45:27:c6:2b:f9:06:
cc:91:fc:4c:fb:fb:ac:9c:ef:19:3d:28:3c:ff:05:0b:b8:6c:
33:a9:30:62:73:61:dd:99:7c:c6:f9:70:b4:14:52:f2:e6:55:
dc:20:62:e8:42:b2:ac:1c:91:12:6a:de:77:b7:9a:6d:a3:27:
68:93:4c:b5:97:48:b6:dd:17:ec:e2:c6:ca:22:9e:28:51:97:
9c:2b:c7:8e:24:69:9e:50:31:80:53:9d:89:89:9a:d7:16:78:
3d:e4:08:65:a9:d9:0e:97:3b:09:2f:52:3f:a6:60:ca:5c:74:
29:51:36:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oPw36v3AYitux1ajPsoWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMzA1Zjk3YTI2ZjMxZDgwMDYwNTlmYjNhYjE5ZWFjZmI3
ODM0NTUwHhcNMjUwNjI4MTMwMTMyWhcNMjUwNjI5MTMwMTMyWjAzMTEwLwYDVQQD
EyhiZWY3MTVmMTU0MmMzZTc5ZmU4YzIwMzRkZGQ3MzRjZGUwODI2MTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9v7L76yLqR9anY5U8F6JlTG4qdme
ZfoWHOXq/Pe5TVVAIYGESl7zHeqIPKxferm+OwJUEmgXAQ6GCt1u1m2/heIZ3R7c
fBGzbPtEWrW+OAToZ6MmDPRX0DC5tHnxJG9flUAk9moPD13AJFWwU6o9qqwVvl0t
H984b/pVWbJpZWfATbzlD7t3a/zPndEjBg+A1BOYKwmyXwyV85Eud3yk73iU3beb
DK1xfZ7rlimSQcwyK8kwtckRNHEPCZCXhXEddUXnPsGyNWykMTkT6T0NOyhvWsDh
2VnmawaydBiXolo087TbU1WD4nSb/JaKS1Ya2mCBUhXlR4iiVctng8H+IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL73FfFULD55/owgNN3XNM3ggmEkMB8GA1UdIwQY
MBaAFDswX5eibzHYAGBZ+zqxnqz7eDRVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny8xYWE5NTEtNmM0OC00OTNkLWFkODkt
NThiOWIwYzI0NDBiLzEvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny8xYWE5NTEtNmM0OC00OTNkLWFkODktNThiOWIwYzI0NDBi
LzEvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx1rtv0l0
qg6K8y1J1gWSUz1d4COi1cET9GRZQeRFwgLqGzIcvbikvsAZ44dlVyOE2gi3hV21
VFsL7ZIzOIVadfvRBHG1bzcMXbi9LvMYZJi0riphJ1QdBimcISsfilSZKpa5DcjO
RODjy1giW3Y1ann4bOuqqwHBGkeuIZkKgpDpbIqPxoBPFsWeRSfGK/kGzJH8TPv7
rJzvGT0oPP8FC7hsM6kwYnNh3Zl8xvlwtBRS8uZV3CBi6EKyrByREmred7eabaMn
aJNMtZdItt0X7OLGyiKeKFGXnCvHjiRpnlAxgFOdiYma1xZ4PeQIZanZDpc7CS9S
P6Zgylx0KVE2mg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:59:08 2025 by rpki-client