Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
File: OX2fPb_DZTMuKCvRdqaAdURtHRs.mft (raw, json)
Hash identifier: EcKKryIHefjLrimdgogEtvWyro/Zgy2Iq0LkgYPU/wI=
Subject key identifier: 40:5D:51:99:EE:20:75:80:F4:23:2F:52:6D:58:1E:DF:79:14:34:70
Authority key identifier: 39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
Certificate issuer: /CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Certificate serial: 0197B632DD46FBDDF3DC1732DF031B85ECD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
Manifest number: 0FD9
Signing time: Sat 28 Jun 2025 11:01:16 +0000
Manifest this update: Sat 28 Jun 2025 11:01:16 +0000
Manifest next update: Sun 29 Jun 2025 11:01:16 +0000
Files and hashes: 1: OX2fPb_DZTMuKCvRdqaAdURtHRs.crl (hash: DBaC6ZfRzpYrd6R6411EQxlmfvXe5g4B47eFvEcEWss=)
2: PKmiIVXi-5ieWf281G2v09ZDGMA.roa (hash: 6UbdjRvfhwNfGfOQcI0HpEZ2pxwE+yP96jeW3uJG9VU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:dd:46:fb:dd:f3:dc:17:32:df:03:1b:85:ec:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Validity
Not Before: Jun 28 11:01:16 2025 GMT
Not After : Jun 29 11:01:16 2025 GMT
Subject: CN=405d5199ee207580f4232f526d581edf79143470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:22:0d:22:8c:4e:50:95:1d:e9:62:f0:85:05:
20:e1:a6:3f:2c:0b:e3:8e:6b:a6:61:65:13:0f:6b:
3e:d7:31:64:80:fc:8b:9f:32:34:90:10:34:c5:e5:
d5:6e:df:c6:fa:91:42:1b:24:8e:04:5a:cb:0d:8c:
01:15:24:2b:8e:3c:1a:20:56:c4:a3:7d:d3:2c:7d:
df:7e:24:61:39:24:a0:2d:fc:0d:c4:4d:84:c3:24:
27:95:62:47:62:a4:d9:5d:61:8c:e3:e6:e0:8d:4b:
1d:f6:e2:d5:d9:79:5e:67:13:80:ab:65:6d:4d:ff:
9c:51:e4:a7:28:4f:ea:54:58:9d:66:7f:fb:8a:62:
8d:00:6b:81:25:cb:23:b0:dd:be:37:c7:6c:47:a6:
e8:6e:53:0c:1f:86:52:98:00:79:e6:7d:48:77:14:
00:cd:95:5c:bb:49:1d:1a:a8:48:c9:cc:1c:e6:4c:
8a:11:6e:54:87:01:46:40:a1:cd:56:dc:32:ab:a9:
58:89:8b:4b:58:b1:e9:f1:b6:91:d3:0a:44:3b:78:
0d:ba:1a:f7:fb:b8:a0:62:52:28:fe:b4:bc:27:48:
f5:09:ff:c1:d1:a7:c5:60:8f:49:cc:4b:71:be:6e:
9c:89:5f:49:3f:4b:8a:bd:3d:56:d2:b6:ec:9c:33:
56:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5D:51:99:EE:20:75:80:F4:23:2F:52:6D:58:1E:DF:79:14:34:70
X509v3 Authority Key Identifier:
keyid:39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:11:6c:b1:cf:d2:a3:57:dc:3e:bd:26:80:2a:ad:4c:4e:6d:
ed:75:98:d4:13:de:47:70:e5:5b:c9:18:3b:5f:f8:ef:11:e2:
ab:06:20:87:4e:7f:b7:8b:a7:18:61:a3:6b:26:ce:e9:67:c2:
de:cd:0d:cf:b2:c3:69:c5:be:e9:24:7a:78:32:87:2b:ec:2f:
b1:de:86:cc:11:62:01:49:13:b7:c5:53:06:b0:16:5d:22:e1:
7c:e6:9e:a2:1b:48:91:87:f1:07:7a:28:a5:0f:99:bd:7f:28:
d7:e9:a9:65:97:21:c3:67:32:8f:ab:27:e7:4e:c3:38:e2:60:
09:9f:c3:31:8b:fe:03:39:b3:78:4b:38:33:65:99:bd:14:3c:
32:45:de:98:00:ed:cd:98:b7:2f:6d:b3:54:a9:cc:40:e5:97:
5e:5b:50:f5:a7:f2:02:ac:4a:6a:12:88:0c:8c:3e:fa:32:90:
74:4f:bb:98:dd:58:3d:40:2c:33:1f:ee:9d:d7:38:e4:9b:76:
0d:ac:b6:bf:7e:70:94:a9:5f:a0:65:cf:79:73:1d:82:ec:bf:
16:94:90:3c:52:55:32:c2:f1:12:97:9c:ce:bb:fe:24:d6:de:
63:39:86:22:2d:e7:40:8c:0b:7b:b9:26:7a:5b:84:df:df:6e:
78:26:58:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2Mt1G+93z3Bcy3wMbhezSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5N2Q5ZjNkYmZjMzY1MzMyZTI4MmJkMTc2YTY4MDc1NDQ2
ZDFkMWIwHhcNMjUwNjI4MTEwMTE2WhcNMjUwNjI5MTEwMTE2WjAzMTEwLwYDVQQD
Eyg0MDVkNTE5OWVlMjA3NTgwZjQyMzJmNTI2ZDU4MWVkZjc5MTQzNDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1yINIoxOUJUd6WLwhQUg4aY/LAvj
jmumYWUTD2s+1zFkgPyLnzI0kBA0xeXVbt/G+pFCGySOBFrLDYwBFSQrjjwaIFbE
o33TLH3ffiRhOSSgLfwNxE2EwyQnlWJHYqTZXWGM4+bgjUsd9uLV2XleZxOAq2Vt
Tf+cUeSnKE/qVFidZn/7imKNAGuBJcsjsN2+N8dsR6boblMMH4ZSmAB55n1IdxQA
zZVcu0kdGqhIycwc5kyKEW5UhwFGQKHNVtwyq6lYiYtLWLHp8baR0wpEO3gNuhr3
+7igYlIo/rS8J0j1Cf/B0afFYI9JzEtxvm6ciV9JP0uKvT1W0rbsnDNWhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEBdUZnuIHWA9CMvUm1YHt95FDRwMB8GA1UdIwQY
MBaAFDl9nz2/w2UzLigr0XamgHVEbR0bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1gyZlBiX0RaVE11S0N2UmRxYUFkVVJ0SFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9hZjJmOGYtMTIxMi00OTQzLWJkMGMt
ZDg2YWIyZmU3NjQ4LzEvT1gyZlBiX0RaVE11S0N2UmRxYUFkVVJ0SFJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9hZjJmOGYtMTIxMi00OTQzLWJkMGMtZDg2YWIyZmU3NjQ4
LzEvT1gyZlBiX0RaVE11S0N2UmRxYUFkVVJ0SFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZxFssc/S
o1fcPr0mgCqtTE5t7XWY1BPeR3DlW8kYO1/47xHiqwYgh05/t4unGGGjaybO6WfC
3s0Nz7LDacW+6SR6eDKHK+wvsd6GzBFiAUkTt8VTBrAWXSLhfOaeohtIkYfxB3oo
pQ+ZvX8o1+mpZZchw2cyj6sn507DOOJgCZ/DMYv+AzmzeEs4M2WZvRQ8MkXemADt
zZi3L22zVKnMQOWXXltQ9afyAqxKahKIDIw++jKQdE+7mN1YPUAsMx/undc45Jt2
Day2v35wlKlfoGXPeXMdguy/FpSQPFJVMsLxEpeczrv+JNbeYzmGIi3nQIwLe7km
eluE399ueCZY+Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:31:51 2025 by rpki-client