Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: zyJPHpwkABfjRBa4rE9pXClFqBA/G/QGbB0bpeqcNVo=
Subject key identifier: 6D:3D:A7:4B:37:5F:58:53:C2:3D:99:8D:82:92:50:8B:95:5E:34:7D
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 0197B933BB42967D2DD22CC4D6FBED533BCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0DAA
Signing time: Sun 29 Jun 2025 01:01:04 +0000
Manifest this update: Sun 29 Jun 2025 01:01:04 +0000
Manifest next update: Mon 30 Jun 2025 01:01:04 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: PunabK5okW8dd7GkIkQfji/xUQTWFsg5U0nRMRQ4+w4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:bb:42:96:7d:2d:d2:2c:c4:d6:fb:ed:53:3b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Jun 29 01:01:04 2025 GMT
Not After : Jun 30 01:01:04 2025 GMT
Subject: CN=6d3da74b375f5853c23d998d8292508b955e347d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:14:a0:bb:12:e5:9e:7c:74:ea:cd:0c:25:7b:
04:eb:d9:a2:ac:fe:22:87:dc:35:41:8d:8c:20:5c:
85:cf:4d:27:1a:0c:c5:f0:9b:ff:d7:67:53:6f:0e:
cd:e3:e3:25:1a:5b:36:27:3e:a1:f5:6a:aa:ba:de:
3a:90:40:ab:17:9e:88:81:5f:c5:c0:a1:cb:14:8a:
cf:a6:36:62:54:30:67:48:9b:62:19:a1:12:37:a0:
9b:9c:15:b6:fe:1f:9e:29:10:76:46:ff:3d:d2:a2:
fc:5a:11:d8:83:41:75:44:0e:ee:69:dc:93:3c:ec:
f8:6f:e3:07:ca:d0:ff:5b:50:ae:fb:dc:05:27:e7:
f0:9f:5b:17:11:10:27:1f:ca:ca:3a:b7:aa:dd:a6:
b4:d0:44:4c:65:cf:43:6b:12:ff:b6:ed:5a:47:86:
ed:57:0d:66:20:01:64:df:c8:bc:f8:f1:fa:ff:5a:
c3:09:df:04:39:93:ce:77:a1:45:a7:51:ce:d6:05:
13:58:ed:36:b2:63:8e:53:35:71:04:c6:1d:8d:82:
a0:8c:87:73:c3:4c:1f:02:6d:59:57:3d:41:d3:51:
1a:ad:fb:69:90:13:98:2a:79:5d:fd:f7:64:81:af:
74:b1:2f:4a:22:b7:11:09:65:e4:91:fe:34:33:9f:
e6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3D:A7:4B:37:5F:58:53:C2:3D:99:8D:82:92:50:8B:95:5E:34:7D
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:c3:b1:bc:a3:8d:88:f7:f0:a2:82:e8:a4:56:83:1e:91:3f:
4e:a7:8f:7e:54:9a:f6:52:88:55:c1:2d:24:d9:18:9c:80:a3:
2f:09:5e:13:46:ac:71:3e:10:e0:8a:15:fb:b9:83:15:59:f7:
f0:83:3d:a7:67:77:cb:d7:8f:67:af:c6:fa:87:2c:0b:8b:0e:
6a:be:ee:96:33:39:53:42:3c:0e:0f:6b:3f:f5:30:4b:57:f7:
32:6d:f9:85:3b:7a:1f:8e:c2:74:8f:f3:64:c9:6a:8c:0e:21:
45:e0:79:5b:71:64:b8:68:84:f7:da:c1:c3:d9:af:f3:61:a3:
7a:30:dd:d5:1e:c9:6b:82:55:82:27:4c:b0:5e:05:8b:54:f9:
b3:17:12:82:9d:0a:0c:a2:9e:1c:77:2c:dc:05:88:58:60:8d:
c8:6b:69:50:fc:81:7e:f5:fc:cb:b7:0e:33:fa:2d:9b:ae:7d:
2f:a5:16:39:28:9d:b5:6f:97:da:4c:ea:90:00:f4:41:20:e1:
73:3e:89:e3:5b:8e:32:1f:de:48:cf:e9:58:29:b7:a3:76:8f:
cf:91:11:b5:33:99:07:32:dc:95:2e:9d:aa:d7:23:03:53:42:
dd:0e:1c:30:26:24:3d:1c:1f:1a:b5:37:bd:60:ad:ab:b5:2c:
64:ff:95:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe5M7tCln0t0izE1vvtUzvMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNjg0ZTUwZTMzZjNhMDAxNWM4Zjg5OWM4OGJjYjEzN2Jj
ZmI1ZjkwHhcNMjUwNjI5MDEwMTA0WhcNMjUwNjMwMDEwMTA0WjAzMTEwLwYDVQQD
Eyg2ZDNkYTc0YjM3NWY1ODUzYzIzZDk5OGQ4MjkyNTA4Yjk1NWUzNDdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhSguxLlnnx06s0MJXsE69mirP4i
h9w1QY2MIFyFz00nGgzF8Jv/12dTbw7N4+MlGls2Jz6h9Wqqut46kECrF56IgV/F
wKHLFIrPpjZiVDBnSJtiGaESN6CbnBW2/h+eKRB2Rv890qL8WhHYg0F1RA7uadyT
POz4b+MHytD/W1Cu+9wFJ+fwn1sXERAnH8rKOreq3aa00ERMZc9DaxL/tu1aR4bt
Vw1mIAFk38i8+PH6/1rDCd8EOZPOd6FFp1HO1gUTWO02smOOUzVxBMYdjYKgjIdz
w0wfAm1ZVz1B01EarftpkBOYKnld/fdkga90sS9KIrcRCWXkkf40M5/mFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG09p0s3X1hTwj2ZjYKSUIuVXjR9MB8GA1UdIwQY
MBaAFKtoTlDjPzoAFcj4mciLyxN7z7X5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjIt
ODBlNWQ1M2VkYjQxLzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjItODBlNWQ1M2VkYjQx
LzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMsOxvKON
iPfwooLopFaDHpE/TqePflSa9lKIVcEtJNkYnICjLwleE0ascT4Q4IoV+7mDFVn3
8IM9p2d3y9ePZ6/G+ocsC4sOar7uljM5U0I8Dg9rP/UwS1f3Mm35hTt6H47CdI/z
ZMlqjA4hReB5W3FkuGiE99rBw9mv82GjejDd1R7Ja4JVgidMsF4Fi1T5sxcSgp0K
DKKeHHcs3AWIWGCNyGtpUPyBfvX8y7cOM/otm659L6UWOSidtW+X2kzqkAD0QSDh
cz6J41uOMh/eSM/pWCm3o3aPz5ERtTOZBzLclS6dqtcjA1NC3Q4cMCYkPRwfGrU3
vWCtq7UsZP+VPA==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:15:07 2025 by rpki-client