Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
File: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft (raw, json)
Hash identifier: PaGdpUO/XMiI3cd2AVVFzyE3oS+FkjeFbu8zFFljXNs=
Subject key identifier: ED:3E:2F:DB:76:E9:DC:1C:62:54:1D:42:34:9D:A2:7B:C2:0C:5D:36
Authority key identifier: E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99
Certificate issuer: /CN=e0e3976d9ecb8309a8181fbd025ca52fef161999
Certificate serial: 0197B6D72C595964F42B07C8A08900E99BD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
Manifest number: 09D0
Signing time: Sat 28 Jun 2025 14:00:44 +0000
Manifest this update: Sat 28 Jun 2025 14:00:44 +0000
Manifest next update: Sun 29 Jun 2025 14:00:44 +0000
Files and hashes: 1: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl (hash: qvnMjzGh3phvKlR8gzSQV5mo+x/1tuUnabyGNlDWVJc=)
2: cK4llrkBdLlV4HeILjRyQ98esEM.roa (hash: MuU2BWlfRFj75k9zGngWfQu7w/ZtaYOQ1aHN3Tj8NDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:2c:59:59:64:f4:2b:07:c8:a0:89:00:e9:9b:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0e3976d9ecb8309a8181fbd025ca52fef161999
Validity
Not Before: Jun 28 14:00:44 2025 GMT
Not After : Jun 29 14:00:44 2025 GMT
Subject: CN=ed3e2fdb76e9dc1c62541d42349da27bc20c5d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:94:53:29:54:ee:47:90:cc:a7:13:18:f7:42:
55:00:b6:13:56:a5:cf:9c:74:d2:ce:6e:fe:21:99:
b5:9a:d8:81:02:8c:74:d5:6b:63:e6:6e:46:a2:97:
b7:73:94:15:4d:a2:46:df:19:d1:55:a6:dc:eb:4c:
24:48:8f:e0:fe:3c:c4:96:89:5b:f1:a3:96:aa:a2:
b5:19:e9:ac:6b:4d:12:27:d2:8d:77:ae:68:38:eb:
83:d4:d4:bf:4e:37:87:35:e1:df:cd:1e:5a:56:4f:
4f:f6:4d:7e:0d:1b:0c:96:73:5e:fd:8d:02:57:e8:
2b:4e:c2:20:34:fd:8e:16:3c:45:e8:34:c7:fd:47:
9c:74:3b:48:18:98:18:46:cc:5b:f6:d1:71:57:52:
ff:ba:ce:66:a7:84:2c:ca:a3:3d:31:55:1c:c0:f1:
7e:b5:c4:81:34:8d:fb:af:88:c6:61:ed:f0:e4:75:
a7:b1:ae:5b:08:e8:0b:aa:43:58:b6:78:56:3b:e2:
dc:9f:6e:f3:96:d8:65:a1:92:1f:88:d4:a4:65:a3:
a9:6f:9d:98:84:f7:f7:18:7f:96:50:ed:3d:1d:9e:
d2:e4:1b:4c:d4:1f:2f:b6:c4:3d:75:34:b5:16:3d:
9c:1a:85:75:85:46:12:06:6b:1a:d8:3f:3f:63:8c:
70:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3E:2F:DB:76:E9:DC:1C:62:54:1D:42:34:9D:A2:7B:C2:0C:5D:36
X509v3 Authority Key Identifier:
keyid:E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:4a:e2:47:4f:64:c8:ed:39:c8:fc:52:78:5b:28:94:13:01:
01:a0:3d:44:1d:6a:65:23:5b:b0:28:12:58:c3:ae:8a:5e:e7:
e2:50:cf:8d:bc:60:46:1a:7d:ba:4f:89:0d:2b:eb:46:0e:57:
60:90:1d:b2:d5:75:83:cf:c9:a7:d3:ce:9c:ad:ed:0b:46:ea:
3e:51:b6:fc:ad:86:a4:fb:27:97:29:1c:17:90:07:ea:b9:ff:
ee:68:a4:21:86:a0:f1:20:e4:43:64:53:8f:6e:d8:06:7b:0a:
0d:ab:40:a4:ec:d3:cf:a6:91:aa:78:7b:bd:81:03:37:e1:a6:
d8:55:4d:4b:03:e2:10:3b:39:88:18:1c:11:a8:07:16:f0:5a:
e2:a9:7e:a4:b0:c8:4b:d7:8f:72:0b:95:0f:74:67:51:8b:fe:
92:38:98:62:bd:10:da:a1:64:38:50:9e:83:9b:09:09:d3:1b:
c4:49:fc:21:26:0b:7b:c5:37:00:5e:f2:6e:2d:78:8b:8c:a2:
08:84:df:d2:f3:65:33:6d:11:2e:66:10:5e:8b:19:7e:df:9e:
e3:a5:3a:a9:9c:1b:53:e7:74:74:8e:f6:e2:7a:40:6c:e7:b8:
a5:35:2e:3b:2c:b6:e5:c7:90:b3:64:87:bf:94:d3:06:86:c4:
c2:e6:5d:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe21yxZWWT0KwfIoIkA6ZvVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwZTM5NzZkOWVjYjgzMDlhODE4MWZiZDAyNWNhNTJmZWYx
NjE5OTkwHhcNMjUwNjI4MTQwMDQ0WhcNMjUwNjI5MTQwMDQ0WjAzMTEwLwYDVQQD
EyhlZDNlMmZkYjc2ZTlkYzFjNjI1NDFkNDIzNDlkYTI3YmMyMGM1ZDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZRTKVTuR5DMpxMY90JVALYTVqXP
nHTSzm7+IZm1mtiBAox01Wtj5m5Gope3c5QVTaJG3xnRVabc60wkSI/g/jzElolb
8aOWqqK1Gemsa00SJ9KNd65oOOuD1NS/TjeHNeHfzR5aVk9P9k1+DRsMlnNe/Y0C
V+grTsIgNP2OFjxF6DTH/UecdDtIGJgYRsxb9tFxV1L/us5mp4QsyqM9MVUcwPF+
tcSBNI37r4jGYe3w5HWnsa5bCOgLqkNYtnhWO+Lcn27zlthloZIfiNSkZaOpb52Y
hPf3GH+WUO09HZ7S5BtM1B8vtsQ9dTS1Fj2cGoV1hUYSBmsa2D8/Y4xwIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO0+L9t26dwcYlQdQjSdonvCDF02MB8GA1UdIwQY
MBaAFODjl22ey4MJqBgfvQJcpS/vFhmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQt
OGJlMGQ5NzY4MmFiLzEvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQtOGJlMGQ5NzY4MmFi
LzEvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYkriR09k
yO05yPxSeFsolBMBAaA9RB1qZSNbsCgSWMOuil7n4lDPjbxgRhp9uk+JDSvrRg5X
YJAdstV1g8/Jp9POnK3tC0bqPlG2/K2GpPsnlykcF5AH6rn/7mikIYag8SDkQ2RT
j27YBnsKDatApOzTz6aRqnh7vYEDN+Gm2FVNSwPiEDs5iBgcEagHFvBa4ql+pLDI
S9ePcguVD3RnUYv+kjiYYr0Q2qFkOFCeg5sJCdMbxEn8ISYLe8U3AF7ybi14i4yi
CITf0vNlM20RLmYQXosZft+e46U6qZwbU+d0dI724npAbOe4pTUuOyy25ceQs2SH
v5TTBobEwuZdjQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:32:49 2025 by rpki-client