Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
File: oNMhbMzIY-ygw90YmUGxueo3ys0.mft (raw, json)
Hash identifier: UvccDTgGRVo5JNGh06Ke4YUe7z3lOGlJNgvQhtKRqnk=
Subject key identifier: 45:A4:84:37:F6:5E:A3:F7:EC:D4:ED:EC:10:27:37:90:2F:DA:58:99
Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Certificate serial: 0197BA7D0EF67EF1F4C4A36AE882A92472D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
Manifest number: 0E01
Signing time: Sun 29 Jun 2025 07:00:47 +0000
Manifest this update: Sun 29 Jun 2025 07:00:47 +0000
Manifest next update: Mon 30 Jun 2025 07:00:47 +0000
Files and hashes: 1: YAQOG7HS14oLGl_AE__5KljKQek.roa (hash: vYFfnqVBOtNvOIxvJDmuRRaUo+YW3T+OADCuratSdoU=)
2: i2HYpKIvdGotH7mKcmQ5RAG3huY.roa (hash: 4Nz6YUMbPlVe3PbppTQU2sGDWl5KATygr4DtzeG8qCU=)
3: oNMhbMzIY-ygw90YmUGxueo3ys0.crl (hash: HcfiPGNfWKjITs+d3rSjnoX+qt6O3Dw/Rzka08Tdng8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:0e:f6:7e:f1:f4:c4:a3:6a:e8:82:a9:24:72:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Validity
Not Before: Jun 29 07:00:47 2025 GMT
Not After : Jun 30 07:00:47 2025 GMT
Subject: CN=45a48437f65ea3f7ecd4edec102737902fda5899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:39:80:bf:6b:67:a3:48:f2:ee:8c:90:ea:9e:
b5:bf:e4:e1:a6:f3:54:7a:5c:8d:a5:51:83:cb:db:
81:a6:f2:45:4b:79:5e:b4:e3:b6:0b:9d:73:02:b5:
14:f8:d5:b7:2c:02:43:c4:71:e7:cb:ae:07:00:f4:
b0:19:4d:0b:43:b5:28:4f:3b:9e:fb:29:27:20:d4:
ab:c7:22:ea:14:85:6d:13:0c:e8:f2:de:3a:84:4f:
c2:e8:f6:fc:93:82:67:51:b7:83:13:6b:16:b0:59:
73:79:2c:ac:09:36:0c:66:64:a6:4b:a9:05:6b:69:
93:37:e1:ae:50:9d:a0:06:39:88:bd:3f:2c:6a:b0:
d6:10:36:82:ec:ff:11:f9:45:6c:6b:ca:5a:05:ea:
9e:b8:8d:4a:62:a4:22:b9:c6:33:dc:7a:26:c0:2f:
ae:b6:3b:22:75:64:99:fd:59:15:cd:61:b5:06:6b:
7b:b1:0d:fc:4b:30:14:bb:44:95:8e:52:04:98:9c:
f7:6d:7f:df:84:04:6a:bb:51:0c:76:c7:f0:32:6e:
eb:c1:44:52:91:c4:f9:f8:fd:55:d4:6b:f6:9d:a8:
ac:46:e9:42:81:d9:e9:9d:61:f2:89:a8:76:62:77:
88:50:4b:80:be:bf:0f:43:6c:1e:87:bf:21:bf:0b:
ea:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A4:84:37:F6:5E:A3:F7:EC:D4:ED:EC:10:27:37:90:2F:DA:58:99
X509v3 Authority Key Identifier:
keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:bb:f8:8b:eb:95:7b:12:91:70:26:c0:0b:74:4e:0c:3f:b3:
5c:66:a0:62:f5:18:7a:e0:1b:a6:78:b3:27:e0:df:10:cc:8f:
de:3c:3e:e8:e7:63:ed:ba:dc:24:bd:85:18:aa:06:52:48:3d:
9a:e2:de:4f:8e:3c:3d:30:db:33:64:4e:70:b3:69:6a:c1:b4:
0d:f8:18:ea:8b:0d:32:9a:a5:44:8a:b8:68:0c:6f:03:81:26:
da:78:15:38:f0:82:c4:76:7e:29:ba:f0:bf:73:d5:92:51:f2:
f0:c1:85:05:cf:ae:71:0f:99:df:13:b4:83:ef:9d:88:0d:d7:
b2:14:b1:8c:3b:0f:35:48:20:ac:c5:b4:35:9f:87:1c:34:27:
f1:76:f1:74:ed:11:98:87:7b:c3:04:3a:f5:66:5d:10:e2:68:
9c:9f:7c:3b:74:47:71:97:a6:df:fd:6e:a9:55:af:cd:e6:91:
85:02:75:73:e3:34:f2:d6:1a:20:dd:de:2c:84:ea:fe:fe:76:
d1:09:a0:cd:85:00:f1:bc:2a:b2:e3:63:5b:74:66:2e:09:8c:
2a:a3:c2:60:b9:c8:b9:e4:5b:3e:7a:c5:80:3e:cc:d1:41:71:
ce:8b:c0:11:52:f2:1b:37:ad:3a:cf:05:56:7b:c3:bc:eb:24:
71:df:f5:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fQ72fvH0xKNq6IKpJHLYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZDMyMTZjY2NjODYzZWNhMGMzZGQxODk5NDFiMWI5ZWEz
N2NhY2QwHhcNMjUwNjI5MDcwMDQ3WhcNMjUwNjMwMDcwMDQ3WjAzMTEwLwYDVQQD
Eyg0NWE0ODQzN2Y2NWVhM2Y3ZWNkNGVkZWMxMDI3Mzc5MDJmZGE1ODk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzmAv2tno0jy7oyQ6p61v+ThpvNU
elyNpVGDy9uBpvJFS3letOO2C51zArUU+NW3LAJDxHHny64HAPSwGU0LQ7UoTzue
+yknINSrxyLqFIVtEwzo8t46hE/C6Pb8k4JnUbeDE2sWsFlzeSysCTYMZmSmS6kF
a2mTN+GuUJ2gBjmIvT8sarDWEDaC7P8R+UVsa8paBeqeuI1KYqQiucYz3HomwC+u
tjsidWSZ/VkVzWG1Bmt7sQ38SzAUu0SVjlIEmJz3bX/fhARqu1EMdsfwMm7rwURS
kcT5+P1V1Gv2naisRulCgdnpnWHyiah2YneIUEuAvr8PQ2weh78hvwvqaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEWkhDf2XqP37NTt7BAnN5Av2liZMB8GA1UdIwQY
MBaAFKDTIWzMyGPsoMPdGJlBsbnqN8rNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0Mzgt
MGQ0NGMwNGE4NDQ4LzEvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0MzgtMGQ0NGMwNGE4NDQ4
LzEvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn7v4i+uV
exKRcCbAC3RODD+zXGagYvUYeuAbpnizJ+DfEMyP3jw+6Odj7brcJL2FGKoGUkg9
muLeT448PTDbM2ROcLNpasG0DfgY6osNMpqlRIq4aAxvA4Em2ngVOPCCxHZ+Kbrw
v3PVklHy8MGFBc+ucQ+Z3xO0g++diA3XshSxjDsPNUggrMW0NZ+HHDQn8XbxdO0R
mId7wwQ69WZdEOJonJ98O3RHcZem3/1uqVWvzeaRhQJ1c+M08tYaIN3eLITq/v52
0QmgzYUA8bwqsuNjW3RmLgmMKqPCYLnIueRbPnrFgD7M0UFxzovAEVLyGzetOs8F
VnvDvOskcd/1rw==
-----END CERTIFICATE-----
Generated at Sun Jun 29 16:55:33 2025 by rpki-client