Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
File: o-zqyBJVNKV5R5YtsokD-tesOvk.mft (raw, json)
Hash identifier: +sPaYmwQGzu3dl40XSwcL7/PVIzYmcHwmXAX9rHpVbY=
Subject key identifier: 8A:9A:B5:64:62:FF:ED:D5:AD:36:B0:15:EA:D4:71:E8:2A:43:23:8D
Authority key identifier: A3:EC:EA:C8:12:55:34:A5:79:47:96:2D:B2:89:03:FA:D7:AC:3A:F9
Certificate issuer: /CN=a3eceac8125534a57947962db28903fad7ac3af9
Certificate serial: 0198D4E0CA0AE4E74AE4E56EE85845BBFD45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
Manifest number: 15C8
Signing time: Sat 23 Aug 2025 03:02:38 +0000
Manifest this update: Sat 23 Aug 2025 03:02:38 +0000
Manifest next update: Sun 24 Aug 2025 03:02:38 +0000
Files and hashes: 1: NZCcmWMu3SL4lvLRXGmLfuZeQm4.roa (hash: EKuPrmDOqjvIb0P5ALzTBFMc5GRcKpakwtWPyDrs5oc=)
2: o-zqyBJVNKV5R5YtsokD-tesOvk.crl (hash: T4kdOT8K6Leu397cQcwgG3lE3yFJgT2zMrFoE98Ht6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:ca:0a:e4:e7:4a:e4:e5:6e:e8:58:45:bb:fd:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3eceac8125534a57947962db28903fad7ac3af9
Validity
Not Before: Aug 23 03:02:38 2025 GMT
Not After : Aug 24 03:02:38 2025 GMT
Subject: CN=8a9ab56462ffedd5ad36b015ead471e82a43238d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6f:ee:20:3f:7a:15:88:6a:88:e5:ec:33:c5:
c1:10:83:c6:bf:69:24:9c:0a:b8:cb:6a:75:87:f5:
d2:68:ac:a3:c5:eb:52:d8:39:28:59:86:9c:0a:31:
a7:cc:c5:45:bd:0a:e3:2d:15:e0:f8:19:70:d1:26:
fe:87:53:a2:10:01:4b:39:53:b3:3b:e4:98:a0:b0:
9d:37:64:d1:a8:51:b4:aa:a4:fa:9d:06:bb:49:44:
cb:d3:c1:b0:e9:46:13:01:c3:a0:c6:38:72:44:09:
6e:c6:37:fd:76:45:d6:8b:91:28:b6:ec:c1:41:6d:
94:f4:db:aa:ad:78:f8:03:20:9d:07:df:af:09:ac:
08:e0:93:18:23:48:87:ec:e6:6f:c1:5f:7d:ff:a8:
da:ee:27:86:a2:c6:23:d9:fc:e6:d7:dd:78:cd:69:
00:58:16:77:5b:44:b9:98:38:8e:1f:ba:f7:c5:80:
a8:a8:5a:b8:c5:d2:8f:c6:80:75:bb:9e:82:d2:33:
db:be:14:9a:c2:17:c6:dd:c2:37:eb:cc:dc:1d:b1:
40:fa:89:39:ed:35:fb:0f:57:8c:b6:ac:7c:a1:3a:
53:39:c0:25:00:c7:b7:6e:71:db:8b:dc:97:10:89:
93:37:9c:0a:1a:d5:9d:0a:cc:7a:b7:a7:68:e0:f6:
3a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9A:B5:64:62:FF:ED:D5:AD:36:B0:15:EA:D4:71:E8:2A:43:23:8D
X509v3 Authority Key Identifier:
keyid:A3:EC:EA:C8:12:55:34:A5:79:47:96:2D:B2:89:03:FA:D7:AC:3A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:9e:cf:6b:fc:fe:29:53:a9:54:9c:e8:4c:7f:de:82:f3:18:
f2:c9:6d:47:6f:12:43:e0:67:8d:a3:48:ea:91:5b:c1:b6:76:
de:45:64:51:c3:18:32:fd:43:50:46:14:9a:bf:42:79:8b:92:
e4:e8:d7:67:dd:fc:ef:ba:1c:3b:8d:37:0c:14:15:d9:e4:b0:
55:08:06:83:1b:36:6a:8d:ac:f7:3c:8f:1f:79:df:4e:28:8f:
10:60:22:c5:61:6a:60:2d:0c:90:7f:fc:e0:38:9e:29:19:9c:
76:0b:14:53:17:61:a8:9e:b1:fe:84:99:6e:a3:af:47:43:8c:
70:9d:15:93:7c:f1:41:2a:40:6f:e4:9d:3b:e7:a8:5b:22:c9:
07:3f:14:1c:ca:25:06:ee:5d:fe:39:19:30:a8:0b:bc:3a:de:
77:c9:7f:91:34:0b:70:87:e6:a4:23:b3:88:14:4c:f7:2b:97:
77:0e:3b:77:af:d9:a3:88:1f:c0:1d:84:82:cd:e0:10:73:55:
16:e8:b7:c8:0a:a7:50:2e:e4:8f:69:1d:63:0d:d7:a1:67:1c:
13:cc:23:3f:a2:d3:b2:78:1f:f6:03:20:98:36:20:f6:98:c5:
85:6e:9f:95:31:7c:20:ba:9b:ec:98:89:31:f0:f6:40:35:5a:
f6:f9:78:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4MoK5OdK5OVu6FhFu/1FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzZWNlYWM4MTI1NTM0YTU3OTQ3OTYyZGIyODkwM2ZhZDdh
YzNhZjkwHhcNMjUwODIzMDMwMjM4WhcNMjUwODI0MDMwMjM4WjAzMTEwLwYDVQQD
Eyg4YTlhYjU2NDYyZmZlZGQ1YWQzNmIwMTVlYWQ0NzFlODJhNDMyMzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlW/uID96FYhqiOXsM8XBEIPGv2kk
nAq4y2p1h/XSaKyjxetS2DkoWYacCjGnzMVFvQrjLRXg+Blw0Sb+h1OiEAFLOVOz
O+SYoLCdN2TRqFG0qqT6nQa7SUTL08Gw6UYTAcOgxjhyRAluxjf9dkXWi5EotuzB
QW2U9NuqrXj4AyCdB9+vCawI4JMYI0iH7OZvwV99/6ja7ieGosYj2fzm1914zWkA
WBZ3W0S5mDiOH7r3xYCoqFq4xdKPxoB1u56C0jPbvhSawhfG3cI368zcHbFA+ok5
7TX7D1eMtqx8oTpTOcAlAMe3bnHbi9yXEImTN5wKGtWdCsx6t6do4PY6AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIqatWRi/+3VrTawFerUcegqQyONMB8GA1UdIwQY
MBaAFKPs6sgSVTSleUeWLbKJA/rXrDr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvby16cXlCSlZOS1Y1UjVZdHNva0QtdGVzT3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9kOTExODctNzU0NS00MWU3LTk4OTQt
YTliZDVlNDEwYWVkLzEvby16cXlCSlZOS1Y1UjVZdHNva0QtdGVzT3ZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9kOTExODctNzU0NS00MWU3LTk4OTQtYTliZDVlNDEwYWVk
LzEvby16cXlCSlZOS1Y1UjVZdHNva0QtdGVzT3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWp7Pa/z+
KVOpVJzoTH/egvMY8sltR28SQ+BnjaNI6pFbwbZ23kVkUcMYMv1DUEYUmr9CeYuS
5OjXZ93877ocO403DBQV2eSwVQgGgxs2ao2s9zyPH3nfTiiPEGAixWFqYC0MkH/8
4DieKRmcdgsUUxdhqJ6x/oSZbqOvR0OMcJ0Vk3zxQSpAb+SdO+eoWyLJBz8UHMol
Bu5d/jkZMKgLvDred8l/kTQLcIfmpCOziBRM9yuXdw47d6/Zo4gfwB2Egs3gEHNV
Fui3yAqnUC7kj2kdYw3XoWccE8wjP6LTsngf9gMgmDYg9pjFhW6flTF8ILqb7JiJ
MfD2QDVa9vl4Bw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:13 2025 by rpki-client