Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json)
Hash identifier: pmKyKhKN3VNUAaoN+wF5LBtB8H2NuOgftRhsZYdIO98=
Subject key identifier: 46:25:DA:C1:29:FB:F1:9A:55:85:64:30:85:F2:A9:C9:98:8A:1F:51
Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Certificate serial: 0197B70F0C816F882BDE7C9821C0080067DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
Manifest number: 0542
Signing time: Sat 28 Jun 2025 15:01:46 +0000
Manifest this update: Sat 28 Jun 2025 15:01:46 +0000
Manifest next update: Sun 29 Jun 2025 15:01:46 +0000
Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=)
2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=)
3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=)
4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=)
5: YsXyfEzn_ZKBLDMzG1UU4GMwlcI.roa (hash: +hKZsJUinqgBcHuQ7dq/U5cKUb4tJ0uT1WCFtVOANwo=)
6: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=)
7: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=)
8: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: bzn5JAWBMv6XrwR5cFhkgkRnAZO8P+p51J/lmAO80/I=)
9: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:0c:81:6f:88:2b:de:7c:98:21:c0:08:00:67:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Validity
Not Before: Jun 28 15:01:46 2025 GMT
Not After : Jun 29 15:01:46 2025 GMT
Subject: CN=4625dac129fbf19a5585643085f2a9c9988a1f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8e:67:6a:84:99:e3:71:89:4b:df:df:46:c0:
e0:13:b9:a6:25:b8:d1:54:a0:93:68:89:84:7c:03:
24:83:d2:ba:c8:3a:97:2b:e7:69:98:b1:94:57:16:
cf:c7:1f:2f:43:7d:67:4b:ea:b5:65:60:aa:74:dc:
7e:d3:8e:3d:c4:d4:b8:01:ad:00:23:f8:51:c8:8e:
40:a2:dd:d0:3a:de:c6:9b:9e:e9:5f:67:f9:24:60:
60:14:a2:90:5f:1f:d8:d1:07:50:f4:f2:ce:1e:f9:
0a:fc:64:e3:54:f3:06:7f:91:cf:29:e9:ed:16:aa:
ed:39:5a:a8:04:f9:51:3f:cc:d1:20:02:15:23:21:
36:09:76:88:39:3a:c0:85:74:e6:60:db:72:32:08:
06:23:40:76:06:8b:60:0f:05:a1:0e:65:83:2b:d2:
49:cb:67:ff:bf:3c:83:f0:12:ed:23:e4:a8:d0:cc:
b3:0a:41:a2:13:46:f6:02:2d:37:07:99:98:f8:ec:
ae:5f:9f:29:51:3f:99:43:28:81:6c:bb:ed:13:28:
71:65:63:dd:f8:6d:99:45:c6:34:1a:c5:cf:74:3e:
92:61:8a:7f:2c:2e:71:98:9d:57:13:04:88:35:fe:
00:f3:5b:bf:e7:bd:f1:18:f3:78:2a:f6:b6:d9:e6:
f5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:25:DA:C1:29:FB:F1:9A:55:85:64:30:85:F2:A9:C9:98:8A:1F:51
X509v3 Authority Key Identifier:
keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:b4:66:50:c6:bc:ed:b9:74:6c:a6:de:07:3e:a7:97:66:6a:
35:6e:2c:47:8c:85:46:1a:cc:52:b0:50:50:8b:2d:91:d3:89:
50:66:c1:cd:80:53:d3:d6:26:7e:f1:2e:73:f2:67:ba:c8:29:
64:45:97:9b:54:cb:98:ac:e5:46:84:a2:d8:9c:64:17:50:5d:
29:99:b1:17:cf:97:6d:b3:2f:c8:79:da:b2:12:9d:22:9e:82:
fb:03:54:e7:03:f2:70:a9:95:10:9d:aa:23:99:62:60:5c:6b:
67:89:96:6e:d5:d3:65:fd:61:b4:ba:46:04:dc:7f:51:29:ac:
07:f9:bb:19:8a:46:1b:38:34:b0:b5:04:8d:bc:84:19:28:64:
51:6f:d4:7b:4e:a8:49:8f:17:7a:63:be:cf:41:11:30:97:60:
f1:b6:ee:23:5f:18:6c:6e:4e:d2:bb:c6:a7:6e:f8:f0:87:e3:
e8:17:16:97:2a:01:25:7a:48:ac:31:f2:65:9e:76:79:bc:33:
48:81:4f:fc:a7:dc:df:8a:ae:54:14:72:88:fa:63:31:41:81:
dd:2b:51:1a:c4:81:33:7d:b5:87:b5:f0:33:af:30:ad:5d:ab:
42:af:6e:69:59:8e:1b:38:c9:fc:39:45:3f:78:f8:88:f9:13:
4b:df:57:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DwyBb4gr3nyYIcAIAGfcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz
NmE4YTcwHhcNMjUwNjI4MTUwMTQ2WhcNMjUwNjI5MTUwMTQ2WjAzMTEwLwYDVQQD
Eyg0NjI1ZGFjMTI5ZmJmMTlhNTU4NTY0MzA4NWYyYTljOTk4OGExZjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo45naoSZ43GJS9/fRsDgE7mmJbjR
VKCTaImEfAMkg9K6yDqXK+dpmLGUVxbPxx8vQ31nS+q1ZWCqdNx+0449xNS4Aa0A
I/hRyI5Aot3QOt7Gm57pX2f5JGBgFKKQXx/Y0QdQ9PLOHvkK/GTjVPMGf5HPKent
FqrtOVqoBPlRP8zRIAIVIyE2CXaIOTrAhXTmYNtyMggGI0B2BotgDwWhDmWDK9JJ
y2f/vzyD8BLtI+So0MyzCkGiE0b2Ai03B5mY+OyuX58pUT+ZQyiBbLvtEyhxZWPd
+G2ZRcY0GsXPdD6SYYp/LC5xmJ1XEwSINf4A81u/573xGPN4Kva22eb14wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEYl2sEp+/GaVYVkMIXyqcmYih9RMB8GA1UdIwQY
MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt
N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3
LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdbRmUMa8
7bl0bKbeBz6nl2ZqNW4sR4yFRhrMUrBQUIstkdOJUGbBzYBT09YmfvEuc/Jnusgp
ZEWXm1TLmKzlRoSi2JxkF1BdKZmxF8+XbbMvyHnashKdIp6C+wNU5wPycKmVEJ2q
I5liYFxrZ4mWbtXTZf1htLpGBNx/USmsB/m7GYpGGzg0sLUEjbyEGShkUW/Ue06o
SY8XemO+z0ERMJdg8bbuI18YbG5O0rvGp2748Ifj6BcWlyoBJXpIrDHyZZ52ebwz
SIFP/Kfc34quVBRyiPpjMUGB3StRGsSBM321h7XwM68wrV2rQq9uaVmOGzjJ/DlF
P3j4iPkTS99X/Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:04:36 2025 by rpki-client