Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: 6fR6/rFufm2jrYlVqT13bgauEt+t0NHrSFoLkdmykNo=
Subject key identifier: D0:5D:BC:0D:E6:12:DA:AD:A3:17:2C:C8:8F:1A:60:4B:BD:7A:41:DD
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 0197B6A083F0993990874BCE27DFD73A4603
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 150D
Signing time: Sat 28 Jun 2025 13:01:02 +0000
Manifest this update: Sat 28 Jun 2025 13:01:02 +0000
Manifest next update: Sun 29 Jun 2025 13:01:02 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: lL7UeJJDK6JA+qRkNb/GLwFU5OJL4TnXsmRwvcmjwzE=)
2: I8hH4YeV3HM0yWrc52lfIOhYTt8.roa (hash: colmP8j9TQydvYGFc1+glmJgVJjDM5AxsV+6TerMW6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:83:f0:99:39:90:87:4b:ce:27:df:d7:3a:46:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Jun 28 13:01:02 2025 GMT
Not After : Jun 29 13:01:02 2025 GMT
Subject: CN=d05dbc0de612daada3172cc88f1a604bbd7a41dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7e:cb:74:8c:cd:a3:0e:70:92:94:9b:53:37:
25:0d:b9:df:77:a4:91:19:1d:de:8a:0a:05:3b:ef:
b6:97:1b:db:ce:1a:e7:31:0d:e7:47:3f:62:4e:8f:
78:76:80:cf:07:09:00:d2:86:60:b2:86:0b:c5:d9:
6f:ba:ff:cd:70:8f:cd:ec:da:08:45:14:a8:e2:2f:
5a:c3:42:89:c4:77:2b:aa:e9:57:66:15:65:09:20:
26:f8:b7:bd:c0:f1:13:e6:45:c5:62:eb:5a:ac:b9:
03:d5:bb:ad:0d:e4:bf:56:11:4f:37:4e:79:eb:d2:
b4:35:85:5c:4d:cc:57:a4:4a:d3:8e:bd:72:a7:b8:
f6:63:4f:e2:22:e1:94:c5:f8:f1:71:44:40:ce:b7:
16:6f:d2:a1:ec:6d:5f:35:cd:8e:ac:21:3f:b3:67:
cf:73:63:9c:63:3a:f4:47:de:11:bd:a6:ba:f9:2d:
64:d9:a9:25:8f:5b:06:77:74:98:d4:14:6e:7e:a9:
93:55:5f:4a:2e:11:dd:78:f4:87:61:43:90:90:b2:
db:42:71:29:c8:e9:4b:40:88:f4:ae:e2:e6:e3:f4:
74:f8:d1:fd:40:e3:5e:dd:87:28:d3:d8:bd:3d:db:
d8:b7:cf:88:7d:02:e6:fb:3b:73:7f:79:55:fc:fe:
60:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:5D:BC:0D:E6:12:DA:AD:A3:17:2C:C8:8F:1A:60:4B:BD:7A:41:DD
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:32:f7:24:83:c4:77:74:16:83:2b:79:c7:24:d6:c5:17:50:
72:07:eb:e2:a0:79:ba:74:12:8f:cd:28:c2:42:8c:20:8f:6b:
12:db:93:e9:ed:9c:d4:d7:44:86:bf:b8:91:c4:0b:94:6e:0f:
22:a1:fa:73:4c:e8:af:fc:8b:d0:04:d3:2a:3d:ef:b4:be:79:
96:c1:7a:87:b8:16:a0:c5:74:2b:2c:58:5d:30:ce:3c:77:90:
7a:41:a3:7a:e6:f1:5c:eb:18:d9:81:68:06:be:41:1e:ab:c5:
da:ad:bc:93:52:d7:3b:5c:27:ae:e9:99:32:f2:4f:f2:c3:bd:
2c:dc:8a:28:5e:20:e2:02:3d:96:d7:e9:0a:a8:e4:bb:69:26:
c3:e0:25:da:ce:a4:db:30:07:1e:a4:67:cf:c9:9d:25:c7:2b:
a1:df:3b:20:83:72:83:af:50:55:25:c2:53:a2:7a:a8:48:3d:
e9:f2:6c:6c:41:9a:87:a0:31:b6:88:f5:62:aa:26:5d:bc:d4:
42:63:69:8b:0c:39:49:df:cc:e1:37:b6:60:8f:94:d8:8b:01:
63:60:7b:7b:d8:f8:85:ab:a8:3e:a5:b3:4f:c4:5c:1d:db:de:
b5:9f:d2:6f:a9:2e:80:08:05:12:52:b4:0c:3e:88:8a:78:f0:
d1:ab:db:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oIPwmTmQh0vOJ9/XOkYDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwZTY1MzQ4ZGMxM2M4NTQ5OWM3Nzc0ZDE1NjYxNGMxMjAx
MThhYjUwHhcNMjUwNjI4MTMwMTAyWhcNMjUwNjI5MTMwMTAyWjAzMTEwLwYDVQQD
EyhkMDVkYmMwZGU2MTJkYWFkYTMxNzJjYzg4ZjFhNjA0YmJkN2E0MWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn37LdIzNow5wkpSbUzclDbnfd6SR
GR3eigoFO++2lxvbzhrnMQ3nRz9iTo94doDPBwkA0oZgsoYLxdlvuv/NcI/N7NoI
RRSo4i9aw0KJxHcrqulXZhVlCSAm+Le9wPET5kXFYutarLkD1butDeS/VhFPN055
69K0NYVcTcxXpErTjr1yp7j2Y0/iIuGUxfjxcURAzrcWb9Kh7G1fNc2OrCE/s2fP
c2OcYzr0R94Rvaa6+S1k2aklj1sGd3SY1BRufqmTVV9KLhHdePSHYUOQkLLbQnEp
yOlLQIj0ruLm4/R0+NH9QONe3Yco09i9PdvYt8+IfQLm+ztzf3lV/P5gnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNBdvA3mEtqtoxcsyI8aYEu9ekHdMB8GA1UdIwQY
MBaAFNDmU0jcE8hUmcd3TRVmFMEgEYq1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYt
MGRiMGVjMWU5NDVjLzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYtMGRiMGVjMWU5NDVj
LzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcTL3JIPE
d3QWgyt5xyTWxRdQcgfr4qB5unQSj80owkKMII9rEtuT6e2c1NdEhr+4kcQLlG4P
IqH6c0zor/yL0ATTKj3vtL55lsF6h7gWoMV0KyxYXTDOPHeQekGjeubxXOsY2YFo
Br5BHqvF2q28k1LXO1wnrumZMvJP8sO9LNyKKF4g4gI9ltfpCqjku2kmw+Al2s6k
2zAHHqRnz8mdJccrod87IINyg69QVSXCU6J6qEg96fJsbEGah6Axtoj1YqomXbzU
QmNpiww5Sd/M4Te2YI+U2IsBY2B7e9j4hauoPqWzT8RcHdvetZ/Sb6kugAgFElK0
DD6Iinjw0avbDw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:03:41 2025 by rpki-client