Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json)
Hash identifier: g6UTt2/VOciE2kH7q11uTlR1LBr03e58dsvCTjVwnyc=
Subject key identifier: A0:FF:D4:1A:9E:75:92:83:BF:1E:6B:18:88:F1:E2:40:08:6D:A7:D5
Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Certificate serial: 0197BA7DBA7DE71753DFD3BC8A9FFC04C0C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
Manifest number: 15B6
Signing time: Sun 29 Jun 2025 07:01:31 +0000
Manifest this update: Sun 29 Jun 2025 07:01:31 +0000
Manifest next update: Mon 30 Jun 2025 07:01:31 +0000
Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=)
2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: 6xcWZHwjR6l7X4YXq/lIE+kyepaXH4e/r+g9rPXeSks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:ba:7d:e7:17:53:df:d3:bc:8a:9f:fc:04:c0:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Validity
Not Before: Jun 29 07:01:31 2025 GMT
Not After : Jun 30 07:01:31 2025 GMT
Subject: CN=a0ffd41a9e759283bf1e6b1888f1e240086da7d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:03:65:32:ad:df:e3:4a:9f:c9:5d:58:65:37:
9e:8e:3a:4d:eb:04:32:a6:00:a1:db:eb:59:76:90:
3f:2c:03:15:73:0e:7c:17:c2:ae:c5:d5:91:93:bc:
a0:3a:4e:27:72:3f:c0:1c:b4:1a:4d:9e:05:6f:93:
4d:d1:64:71:cd:29:f1:03:a4:b8:54:3d:c9:53:8c:
f0:63:51:57:9f:e0:55:4b:8d:22:f9:a4:49:39:c9:
03:1d:48:fe:83:ef:8a:7f:d3:1c:44:1e:1a:a4:33:
7d:67:1c:73:36:9d:36:c2:76:3d:7d:9f:d9:37:72:
2e:ac:9a:ca:34:97:15:0c:b2:52:79:67:ca:20:93:
b5:2f:dd:c7:cf:bc:ff:a7:fd:2d:7b:fe:3d:8f:30:
26:a1:25:23:73:60:a0:80:53:64:8c:5f:bb:8c:cb:
09:c5:c9:4d:a2:b1:1d:ec:99:b7:b4:dd:d2:78:99:
45:19:9b:91:12:a1:ef:a2:e3:82:23:28:bc:3c:10:
f3:93:37:b8:4d:22:8f:d9:d3:e4:60:a0:27:42:02:
77:fb:89:df:97:e5:d0:81:d9:31:e7:44:d7:eb:a1:
13:64:d8:81:b4:3e:01:9c:e8:2e:5f:43:78:50:aa:
df:a7:ac:9f:4e:57:05:de:f1:ee:3a:69:da:fc:3b:
0e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FF:D4:1A:9E:75:92:83:BF:1E:6B:18:88:F1:E2:40:08:6D:A7:D5
X509v3 Authority Key Identifier:
keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:6a:a1:82:a7:b3:52:6c:17:21:9a:3f:48:05:c2:6d:fd:af:
44:e6:b1:5a:7f:f7:4c:5e:e1:ae:32:ac:07:9a:2e:21:c3:5e:
a2:6c:ea:d0:a9:47:d4:0a:77:24:71:a0:13:09:b8:06:2f:7f:
7b:14:90:ea:f3:45:2f:8c:24:6d:38:96:75:20:e3:b4:d6:a5:
a2:09:18:ab:a2:0c:a4:07:d7:aa:d1:ac:29:c3:0f:9d:b1:42:
7e:eb:63:35:1c:a6:7a:61:5f:e5:6a:95:69:dc:43:7c:0d:5e:
f4:b1:34:89:19:f9:ed:22:fb:8e:55:9a:2e:ea:bb:d7:66:56:
c5:6a:a1:d5:30:2e:48:6f:6e:b5:1b:c3:fb:14:c3:15:bb:f3:
5b:41:f2:05:18:3d:63:01:fe:6a:26:d5:d3:04:aa:9a:5c:77:
d5:d0:d9:7c:31:63:3c:9a:8b:5f:15:1c:6f:6a:1d:eb:dd:c0:
56:ab:e6:d5:06:9c:fe:68:74:3c:60:20:ef:1e:40:96:f9:3d:
ee:12:7d:90:26:b7:a0:07:92:78:10:90:68:d7:e2:d6:50:27:
be:ba:88:be:55:e9:a8:9e:12:2c:a2:e1:23:3d:96:97:38:e6:
7c:5c:f2:4e:11:13:de:71:9d:38:c5:41:1f:7b:61:ee:7d:0d:
65:96:ab:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fbp95xdT39O8ip/8BMDHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNTFjZmVmOGYzZWQ4NmQxMWFlYWJhZDRkMTllMDZhNWQw
NzBkMzAwHhcNMjUwNjI5MDcwMTMxWhcNMjUwNjMwMDcwMTMxWjAzMTEwLwYDVQQD
EyhhMGZmZDQxYTllNzU5MjgzYmYxZTZiMTg4OGYxZTI0MDA4NmRhN2Q1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgNlMq3f40qfyV1YZTeejjpN6wQy
pgCh2+tZdpA/LAMVcw58F8KuxdWRk7ygOk4ncj/AHLQaTZ4Fb5NN0WRxzSnxA6S4
VD3JU4zwY1FXn+BVS40i+aRJOckDHUj+g++Kf9McRB4apDN9ZxxzNp02wnY9fZ/Z
N3IurJrKNJcVDLJSeWfKIJO1L93Hz7z/p/0te/49jzAmoSUjc2CggFNkjF+7jMsJ
xclNorEd7Jm3tN3SeJlFGZuREqHvouOCIyi8PBDzkze4TSKP2dPkYKAnQgJ3+4nf
l+XQgdkx50TX66ETZNiBtD4BnOguX0N4UKrfp6yfTlcF3vHuOmna/DsO9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKD/1BqedZKDvx5rGIjx4kAIbafVMB8GA1UdIwQY
MBaAFKFRz++PPthtEa6rrU0Z4GpdBw0wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS85NTliOWYtMTQwOC00Y2Y3LThlNzUt
NDA0NmEzMmQyN2E0LzEvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS85NTliOWYtMTQwOC00Y2Y3LThlNzUtNDA0NmEzMmQyN2E0
LzEvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb2qhgqez
UmwXIZo/SAXCbf2vROaxWn/3TF7hrjKsB5ouIcNeomzq0KlH1Ap3JHGgEwm4Bi9/
exSQ6vNFL4wkbTiWdSDjtNalogkYq6IMpAfXqtGsKcMPnbFCfutjNRymemFf5WqV
adxDfA1e9LE0iRn57SL7jlWaLuq712ZWxWqh1TAuSG9utRvD+xTDFbvzW0HyBRg9
YwH+aibV0wSqmlx31dDZfDFjPJqLXxUcb2od693AVqvm1Qac/mh0PGAg7x5Alvk9
7hJ9kCa3oAeSeBCQaNfi1lAnvrqIvlXpqJ4SLKLhIz2WlzjmfFzyThET3nGdOMVB
H3th7n0NZZarmQ==
-----END CERTIFICATE-----
Generated at Sun Jun 29 09:31:22 2025 by rpki-client