Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
File: O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft (raw, json)
Hash identifier: GMuTe6nC0ZwVO5QSu2YZRUkTI71abqjwYQOcQE9lPjU=
Subject key identifier: 62:D0:A2:09:7A:42:54:40:EB:2B:F9:83:B3:06:48:DB:FE:B6:9A:35
Authority key identifier: 3B:F2:C2:0D:A4:D6:30:18:2E:EE:33:45:AD:9D:1C:4A:D9:17:0D:50
Certificate issuer: /CN=3bf2c20da4d630182eee3345ad9d1c4ad9170d50
Certificate serial: 0197B7EA20E9362FAA6963F3045086FFF024
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
Manifest number: 0FF4
Signing time: Sat 28 Jun 2025 19:01:03 +0000
Manifest this update: Sat 28 Jun 2025 19:01:03 +0000
Manifest next update: Sun 29 Jun 2025 19:01:03 +0000
Files and hashes: 1: O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl (hash: JIVBeozi25FjmGnjJUfnVc8VardUbQew1furv+5Rm3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:20:e9:36:2f:aa:69:63:f3:04:50:86:ff:f0:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf2c20da4d630182eee3345ad9d1c4ad9170d50
Validity
Not Before: Jun 28 19:01:03 2025 GMT
Not After : Jun 29 19:01:03 2025 GMT
Subject: CN=62d0a2097a425440eb2bf983b30648dbfeb69a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:59:14:85:52:5f:f5:eb:ef:a7:54:f9:c3:a4:
db:f4:19:42:6f:01:c8:a7:c9:31:f2:ca:c7:7b:0b:
8d:a4:d1:eb:e1:c2:70:c2:c1:f6:50:99:94:33:b8:
0f:e6:ac:a4:32:72:e8:1e:51:b8:35:9b:eb:b2:ef:
a3:9c:a8:00:71:ba:8b:2b:d3:57:cd:c6:3d:57:7a:
7e:f6:4d:7e:be:bd:17:5f:77:fc:54:89:48:54:ff:
bf:79:32:3d:ef:0c:55:d6:65:63:73:b9:f5:e6:58:
f1:c8:93:6c:df:66:79:d8:cc:8a:88:17:6a:d7:37:
e4:55:9d:ab:53:a8:b1:22:2b:33:13:bb:bc:62:aa:
59:47:80:20:68:67:0d:c0:ab:1b:ef:ef:fc:76:17:
88:1d:6c:3e:21:60:24:0a:5c:7d:65:95:57:6c:5f:
5b:33:8c:27:46:fd:06:6d:e3:eb:ba:0c:fd:14:3d:
f2:9d:ac:a9:2b:2d:86:26:0b:da:0d:ab:0a:79:2c:
2b:1d:1e:a6:f0:a5:4d:0d:08:1d:14:a9:20:e9:32:
7b:af:00:67:0e:ce:68:7d:9d:17:c1:4a:c7:65:d3:
70:0a:75:0e:5e:3e:0e:09:4b:da:b6:b4:25:34:fe:
bc:09:1e:72:59:11:12:cf:e3:8f:15:fd:cf:6a:47:
44:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D0:A2:09:7A:42:54:40:EB:2B:F9:83:B3:06:48:DB:FE:B6:9A:35
X509v3 Authority Key Identifier:
keyid:3B:F2:C2:0D:A4:D6:30:18:2E:EE:33:45:AD:9D:1C:4A:D9:17:0D:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:a2:f4:e0:9d:28:fc:fa:ab:55:45:11:fe:3b:8c:52:43:3f:
08:33:e4:46:15:05:54:a1:77:18:51:6b:e8:7d:4f:44:3b:cb:
4a:62:79:54:f5:03:67:a1:00:fd:3e:3c:99:e1:86:30:ed:b1:
1a:0d:cf:e1:7e:3d:1b:8a:f3:f5:8f:54:fc:de:3f:a3:a3:6b:
81:0d:a5:a2:1b:24:cd:8c:4d:a0:62:17:29:aa:36:a2:b4:ce:
82:fc:e9:0d:a7:bb:b1:8a:65:b3:54:2b:47:ec:2c:e5:27:4f:
df:26:30:3e:8f:66:94:85:3a:09:0f:0f:5e:93:bb:75:35:70:
77:5b:a0:71:20:ca:ea:58:07:b6:f1:91:15:4a:34:2a:86:34:
59:de:1e:1e:0e:1e:3f:fd:46:96:97:ce:88:76:b6:2f:02:61:
f6:9e:ce:46:b1:21:0a:cf:04:ba:28:77:8d:41:d7:be:6c:9d:
67:87:c3:d5:1e:dc:db:78:6a:d0:bb:50:f2:18:4e:f8:f7:1b:
32:89:d0:ed:11:30:b9:23:5a:89:91:6f:7e:c4:bc:ed:45:00:
a1:99:44:e3:e4:ce:8a:1f:b0:79:a2:c4:82:d4:d4:36:66:4e:
fc:17:58:9e:8a:86:3c:b6:dc:7c:be:d4:39:d8:ec:e5:a4:73:
4e:cb:a7:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36iDpNi+qaWPzBFCG//AkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZjJjMjBkYTRkNjMwMTgyZWVlMzM0NWFkOWQxYzRhZDkx
NzBkNTAwHhcNMjUwNjI4MTkwMTAzWhcNMjUwNjI5MTkwMTAzWjAzMTEwLwYDVQQD
Eyg2MmQwYTIwOTdhNDI1NDQwZWIyYmY5ODNiMzA2NDhkYmZlYjY5YTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9FkUhVJf9evvp1T5w6Tb9BlCbwHI
p8kx8srHewuNpNHr4cJwwsH2UJmUM7gP5qykMnLoHlG4NZvrsu+jnKgAcbqLK9NX
zcY9V3p+9k1+vr0XX3f8VIlIVP+/eTI97wxV1mVjc7n15ljxyJNs32Z52MyKiBdq
1zfkVZ2rU6ixIiszE7u8YqpZR4AgaGcNwKsb7+/8dheIHWw+IWAkClx9ZZVXbF9b
M4wnRv0GbePrugz9FD3ynaypKy2GJgvaDasKeSwrHR6m8KVNDQgdFKkg6TJ7rwBn
Ds5ofZ0XwUrHZdNwCnUOXj4OCUvatrQlNP68CR5yWRESz+OPFf3PakdEYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGLQogl6QlRA6yv5g7MGSNv+tpo1MB8GA1UdIwQY
MBaAFDvywg2k1jAYLu4zRa2dHErZFw1QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT19MQ0RhVFdNQmd1N2pORnJaMGNTdGtYRFZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8wNzJiNDYtMGRhMS00MmQyLTg5OWMt
YTBiZGE4YWY3NTZhLzEvT19MQ0RhVFdNQmd1N2pORnJaMGNTdGtYRFZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny8wNzJiNDYtMGRhMS00MmQyLTg5OWMtYTBiZGE4YWY3NTZh
LzEvT19MQ0RhVFdNQmd1N2pORnJaMGNTdGtYRFZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHqL04J0o
/PqrVUUR/juMUkM/CDPkRhUFVKF3GFFr6H1PRDvLSmJ5VPUDZ6EA/T48meGGMO2x
Gg3P4X49G4rz9Y9U/N4/o6NrgQ2lohskzYxNoGIXKao2orTOgvzpDae7sYpls1Qr
R+ws5SdP3yYwPo9mlIU6CQ8PXpO7dTVwd1ugcSDK6lgHtvGRFUo0KoY0Wd4eHg4e
P/1GlpfOiHa2LwJh9p7ORrEhCs8Euih3jUHXvmydZ4fD1R7c23hq0LtQ8hhO+Pcb
MonQ7REwuSNaiZFvfsS87UUAoZlE4+TOih+weaLEgtTUNmZO/BdYnoqGPLbcfL7U
Odjs5aRzTsunIg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 01:03:48 2025 by rpki-client