Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
File: oWKOOfRxrdx15xo5G4Ldklx_CB0.mft (raw, json)
Hash identifier: laHI77mJQKa4kwDhXUmLe4dYXNJSgQkpgUAlFk+HBq0=
Subject key identifier: 07:72:B0:8B:CB:CD:06:F1:3F:43:F4:A2:95:DE:32:A6:3D:9B:2C:B4
Authority key identifier: A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
Certificate issuer: /CN=a1628e39f471addc75e71a391b82dd925c7f081d
Certificate serial: 0197B7EA8A34D8AB02C4A9C7504942C4A9AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
Manifest number: 1188
Signing time: Sat 28 Jun 2025 19:01:30 +0000
Manifest this update: Sat 28 Jun 2025 19:01:30 +0000
Manifest next update: Sun 29 Jun 2025 19:01:30 +0000
Files and hashes: 1: 1-rpUgw0W3sKSFdW3yshaE1HCCc0.roa (hash: c/Tt5N/pZWiN2mpptC/U9LHYusWW/dCE4lcNMT3U+WE=)
2: oWKOOfRxrdx15xo5G4Ldklx_CB0.crl (hash: 72TaNgYlaoGODwFwRf5ExFhTghuRJpczZP7k10k/sPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:8a:34:d8:ab:02:c4:a9:c7:50:49:42:c4:a9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1628e39f471addc75e71a391b82dd925c7f081d
Validity
Not Before: Jun 28 19:01:30 2025 GMT
Not After : Jun 29 19:01:30 2025 GMT
Subject: CN=0772b08bcbcd06f13f43f4a295de32a63d9b2cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:38:7e:d8:f7:98:5d:76:da:0f:c7:76:92:00:
fc:39:53:da:30:23:c1:88:0b:bf:32:e0:59:50:6f:
83:f3:ac:56:7d:49:30:b9:e1:18:80:4f:b6:bf:22:
c9:fe:d8:10:0a:76:1e:16:3b:77:ee:2e:9f:bd:2d:
30:f5:d3:da:9a:c8:22:c2:fb:59:af:2a:22:24:3b:
e0:2e:69:6f:aa:6e:3b:b3:95:a2:28:d8:05:8b:bd:
2e:e1:09:0b:cf:59:e2:c4:b9:25:00:4b:dc:8c:9f:
e5:15:4d:66:b2:58:0e:38:c6:f1:c5:e6:93:17:27:
a6:c5:5e:8a:30:2e:94:95:b2:a7:4e:09:41:67:3e:
45:38:a1:84:82:22:f5:86:e8:2e:7c:49:5e:13:f4:
f3:d8:93:53:78:8a:f3:1a:62:49:5b:87:2c:d2:3f:
bb:3d:75:30:16:93:2a:86:6c:94:21:03:9e:8d:a2:
1c:1c:fa:3e:89:f7:e2:3f:ab:9f:5f:0b:8c:65:57:
36:e2:d2:a7:f8:83:10:ff:6c:87:8e:ce:c2:94:58:
2c:ef:05:44:94:07:f5:aa:54:87:94:e6:de:b5:46:
3e:ea:c4:10:87:20:7d:71:d2:20:4c:f3:ab:62:d7:
6d:c0:f3:a5:19:be:bf:5c:08:61:da:84:c7:31:57:
c2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:72:B0:8B:CB:CD:06:F1:3F:43:F4:A2:95:DE:32:A6:3D:9B:2C:B4
X509v3 Authority Key Identifier:
keyid:A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:50:86:ea:41:11:60:71:99:7c:a0:84:6f:4f:c0:9f:de:6b:
06:b3:bb:a1:b4:95:a4:ea:20:55:bd:47:fc:b5:e6:5b:2d:2d:
85:14:04:d6:bc:d4:15:3f:a9:94:c8:47:90:5c:55:88:06:59:
35:ff:37:0b:c8:27:d9:56:09:47:19:cf:97:3d:1b:dd:a2:0c:
80:6e:dd:54:f0:f3:cc:bc:ca:e5:d4:79:0a:98:7f:ae:44:98:
8c:f9:95:a1:68:02:54:80:e2:a2:9e:25:4e:8a:f1:d0:9f:d1:
8f:09:b1:2f:00:61:25:f1:93:15:12:17:23:e1:a0:f7:76:09:
9a:d9:5f:fb:f4:de:b2:1b:0c:b0:9c:71:54:70:5d:a5:69:7a:
4f:4a:51:89:35:37:6f:cb:f1:4b:97:7f:f0:ff:c5:6b:25:6e:
cf:fd:b6:bb:b1:5b:36:b5:54:2d:d9:92:60:f9:0a:0b:87:43:
ba:c1:d3:4e:ad:4b:f4:4e:46:3b:9c:81:ce:ac:02:44:aa:a2:
6f:fd:2e:4e:f4:29:aa:92:91:bc:2d:9c:30:b2:d5:0a:db:71:
45:a0:46:9e:0b:78:b6:05:84:e7:30:36:11:af:ab:0b:a2:53:
c3:1b:c2:7d:74:09:e8:15:4e:55:9c:54:58:90:af:63:89:4b:
d8:ce:b8:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36oo02KsCxKnHUElCxKmqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNjI4ZTM5ZjQ3MWFkZGM3NWU3MWEzOTFiODJkZDkyNWM3
ZjA4MWQwHhcNMjUwNjI4MTkwMTMwWhcNMjUwNjI5MTkwMTMwWjAzMTEwLwYDVQQD
EygwNzcyYjA4YmNiY2QwNmYxM2Y0M2Y0YTI5NWRlMzJhNjNkOWIyY2I0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDh+2PeYXXbaD8d2kgD8OVPaMCPB
iAu/MuBZUG+D86xWfUkwueEYgE+2vyLJ/tgQCnYeFjt37i6fvS0w9dPamsgiwvtZ
ryoiJDvgLmlvqm47s5WiKNgFi70u4QkLz1nixLklAEvcjJ/lFU1mslgOOMbxxeaT
FyemxV6KMC6UlbKnTglBZz5FOKGEgiL1hugufEleE/Tz2JNTeIrzGmJJW4cs0j+7
PXUwFpMqhmyUIQOejaIcHPo+iffiP6ufXwuMZVc24tKn+IMQ/2yHjs7ClFgs7wVE
lAf1qlSHlObetUY+6sQQhyB9cdIgTPOrYtdtwPOlGb6/XAhh2oTHMVfCAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAdysIvLzQbxP0P0opXeMqY9myy0MB8GA1UdIwQY
MBaAFKFijjn0ca3cdecaORuC3ZJcfwgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1dLT09mUnhyZHgxNXhvNUc0TGRrbHhfQ0IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8zODllZDItMWI4Mi00NWM5LWE3MGEt
MDI1YTBlNmYwNWFlLzEvb1dLT09mUnhyZHgxNXhvNUc0TGRrbHhfQ0IwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC8zODllZDItMWI4Mi00NWM5LWE3MGEtMDI1YTBlNmYwNWFl
LzEvb1dLT09mUnhyZHgxNXhvNUc0TGRrbHhfQ0IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKFCG6kER
YHGZfKCEb0/An95rBrO7obSVpOogVb1H/LXmWy0thRQE1rzUFT+plMhHkFxViAZZ
Nf83C8gn2VYJRxnPlz0b3aIMgG7dVPDzzLzK5dR5Cph/rkSYjPmVoWgCVIDiop4l
Torx0J/RjwmxLwBhJfGTFRIXI+Gg93YJmtlf+/TeshsMsJxxVHBdpWl6T0pRiTU3
b8vxS5d/8P/FayVuz/22u7FbNrVULdmSYPkKC4dDusHTTq1L9E5GO5yBzqwCRKqi
b/0uTvQpqpKRvC2cMLLVCttxRaBGngt4tgWE5zA2Ea+rC6JTwxvCfXQJ6BVOVZxU
WJCvY4lL2M64eA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:50:31 2025 by rpki-client