Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: aYBV8JuXUDZ3HH0fz1SwXd3jBhToaGYglflon/MqgEg=
Subject key identifier: 0F:83:C2:5E:00:A5:D8:DC:EC:E9:53:4F:88:05:E0:1F:6E:9B:16:50
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 0197B77C4619BF8F87621FBBB4DCDC65C81E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 1307
Signing time: Sat 28 Jun 2025 17:01:04 +0000
Manifest this update: Sat 28 Jun 2025 17:01:04 +0000
Manifest next update: Sun 29 Jun 2025 17:01:04 +0000
Files and hashes: 1: CHrue45DLIyJD4ONNTGJ0TL9VsA.roa (hash: u/OfuNsymZa5oGvy4EyVltbtk9eDJK5E1jdXxm1UcXE=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: e6JcBOwghoCOVxKrTO3uhq1YqRZ7BqsC2gyzRRROvug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:46:19:bf:8f:87:62:1f:bb:b4:dc:dc:65:c8:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: Jun 28 17:01:04 2025 GMT
Not After : Jun 29 17:01:04 2025 GMT
Subject: CN=0f83c25e00a5d8dcece9534f8805e01f6e9b1650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:23:5a:19:c0:70:00:78:d4:40:df:e9:f3:82:
9c:56:1a:ef:ea:a2:79:62:c1:20:40:f5:a6:ee:56:
5e:c9:bc:14:48:a3:22:42:25:0d:ce:a7:f9:8e:de:
45:5c:44:b6:4d:5e:18:cf:a7:9e:06:05:b8:45:4a:
34:32:8b:4f:0a:f2:5c:83:2e:db:2c:93:3f:98:51:
4e:bd:81:9c:fc:c9:10:2a:4e:31:28:1e:d8:e2:35:
74:3c:7f:4b:37:a5:47:13:46:d5:f0:34:cc:27:27:
f4:8c:3a:92:e2:0d:9f:58:3c:a8:74:db:21:b7:71:
e3:33:6c:4e:8b:05:11:f9:84:53:95:06:ee:4d:90:
04:68:24:00:d3:b1:cb:95:c1:6f:9a:70:d6:39:7c:
fb:9e:9a:08:b5:0c:81:04:ea:dd:02:99:29:73:cf:
59:44:42:5b:18:97:36:ce:f3:f1:af:d8:16:e6:7f:
a9:22:78:6c:5b:ca:ee:16:f4:be:47:7d:93:87:14:
99:27:2f:fd:a1:34:5b:01:3a:80:0f:bb:05:32:39:
71:d2:1f:03:5f:7c:12:b4:64:77:98:32:87:8c:4e:
06:e5:03:1c:f6:14:2a:15:93:5d:78:e9:72:5a:b8:
8e:e9:73:4c:32:f6:87:0f:bb:c1:6a:36:38:d6:29:
ed:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:83:C2:5E:00:A5:D8:DC:EC:E9:53:4F:88:05:E0:1F:6E:9B:16:50
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:6f:2c:8f:1d:c4:91:f1:33:15:59:e9:6f:b9:9d:7b:02:af:
5a:24:0e:e1:48:93:ff:43:10:a7:91:42:5c:65:4b:8b:f1:42:
08:54:44:b1:56:0f:9a:c1:c3:d9:7a:4f:fe:eb:47:a1:3c:25:
86:ac:57:07:d4:17:7f:0a:be:e6:a5:ce:fa:25:db:90:45:1b:
06:e2:ba:2e:a1:5f:2e:a8:44:e3:25:f4:39:b1:cb:56:80:df:
8b:0a:44:08:9c:bd:35:bb:82:50:73:25:85:a6:cd:4c:a9:10:
e0:65:d5:c6:71:ff:39:b4:30:ef:52:e3:d8:05:77:c5:0c:b4:
27:d9:0a:21:0c:c6:8f:44:14:d2:de:d1:2e:db:02:2c:cb:37:
85:cc:da:01:e7:15:7b:8d:4f:12:ea:8b:4c:56:44:00:98:41:
96:0a:0e:7f:cb:42:7d:13:5a:e5:88:39:fe:da:7d:5b:d9:53:
00:c6:2a:7a:50:67:53:c5:b7:a7:f2:6b:db:b4:05:7b:5f:62:
19:ba:fa:57:22:52:fd:06:d1:4a:58:5b:9a:1e:ce:c2:be:e8:
c6:6c:48:d9:86:0d:66:ca:09:80:a0:d9:e5:df:71:4e:5d:12:
9f:87:4c:d7:20:2b:c2:56:96:10:c3:8c:5a:40:05:c7:ad:a4:
7a:d8:e3:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fEYZv4+HYh+7tNzcZcgeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwMjM3NjZjNjJkZWI1MTI5NzE1NTcwOGVjY2I0MjFjOGIw
NDc4MGEwHhcNMjUwNjI4MTcwMTA0WhcNMjUwNjI5MTcwMTA0WjAzMTEwLwYDVQQD
EygwZjgzYzI1ZTAwYTVkOGRjZWNlOTUzNGY4ODA1ZTAxZjZlOWIxNjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSNaGcBwAHjUQN/p84KcVhrv6qJ5
YsEgQPWm7lZeybwUSKMiQiUNzqf5jt5FXES2TV4Yz6eeBgW4RUo0MotPCvJcgy7b
LJM/mFFOvYGc/MkQKk4xKB7Y4jV0PH9LN6VHE0bV8DTMJyf0jDqS4g2fWDyodNsh
t3HjM2xOiwUR+YRTlQbuTZAEaCQA07HLlcFvmnDWOXz7npoItQyBBOrdApkpc89Z
REJbGJc2zvPxr9gW5n+pInhsW8ruFvS+R32ThxSZJy/9oTRbATqAD7sFMjlx0h8D
X3wStGR3mDKHjE4G5QMc9hQqFZNdeOlyWriO6XNMMvaHD7vBajY41int5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA+Dwl4Apdjc7OlTT4gF4B9umxZQMB8GA1UdIwQY
MBaAFKAjdmxi3rUSlxVXCOzLQhyLBHgKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0NOMmJHTGV0UktYRlZjSTdNdENISXNFZUFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9kZjkwOTYtMzZjOS00MzlhLWEwYTAt
YTNhMTAwZWY4NmRlLzEvb0NOMmJHTGV0UktYRlZjSTdNdENISXNFZUFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9kZjkwOTYtMzZjOS00MzlhLWEwYTAtYTNhMTAwZWY4NmRl
LzEvb0NOMmJHTGV0UktYRlZjSTdNdENISXNFZUFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMW8sjx3E
kfEzFVnpb7mdewKvWiQO4UiT/0MQp5FCXGVLi/FCCFREsVYPmsHD2XpP/utHoTwl
hqxXB9QXfwq+5qXO+iXbkEUbBuK6LqFfLqhE4yX0ObHLVoDfiwpECJy9NbuCUHMl
habNTKkQ4GXVxnH/ObQw71Lj2AV3xQy0J9kKIQzGj0QU0t7RLtsCLMs3hczaAecV
e41PEuqLTFZEAJhBlgoOf8tCfRNa5Yg5/tp9W9lTAMYqelBnU8W3p/Jr27QFe19i
Gbr6VyJS/QbRSlhbmh7Owr7oxmxI2YYNZsoJgKDZ5d9xTl0Sn4dM1yArwlaWEMOM
WkAFx62ketjjiA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:51:12 2025 by rpki-client