Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json)
Hash identifier: +vBjUW2al9iJpt4Ou4yrmqL/LUGzOAVsvDCT8T7/yxU=
Subject key identifier: 7A:36:6A:13:EF:0C:12:CF:6D:DE:6A:F8:4D:9C:F9:6B:F8:41:CE:F6
Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Certificate serial: 0198D5F1C6A74FA934E929B43FD662B2D15A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
Manifest number: 02B0
Signing time: Sat 23 Aug 2025 08:00:48 +0000
Manifest this update: Sat 23 Aug 2025 08:00:48 +0000
Manifest next update: Sun 24 Aug 2025 08:00:48 +0000
Files and hashes: 1: 1-PJ8uFT3vIGcdh8Ryvstj5V11gs.roa (hash: flh68N5wBml9poaLXGZmGeNQ/HSV3CHvsWwwddNW1dc=)
2: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: yqJl0+BAuDfph6aGCZZbyZd23LXM5TS/eh5yCOabS2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 08:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:c6:a7:4f:a9:34:e9:29:b4:3f:d6:62:b2:d1:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Validity
Not Before: Aug 23 08:00:48 2025 GMT
Not After : Aug 24 08:00:48 2025 GMT
Subject: CN=7a366a13ef0c12cf6dde6af84d9cf96bf841cef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:87:2f:81:c9:32:64:16:58:d4:eb:b8:27:
66:d3:a9:d5:a0:5c:d6:11:ae:5c:40:33:dc:da:46:
ce:b2:6e:c5:35:3d:af:33:95:de:8c:66:69:47:8c:
aa:3d:45:e7:bc:cc:bf:5c:ff:f7:35:82:ca:60:db:
b2:02:73:54:98:7e:77:e1:53:d3:1f:b8:07:b0:72:
81:78:11:9e:64:44:72:c8:39:95:3f:17:1f:1c:b1:
01:4e:1f:e3:ba:ff:f0:d7:c4:bb:86:9a:a0:ec:3c:
f6:65:3a:34:af:2e:ae:8d:45:50:3a:0b:57:a1:69:
92:51:17:5f:fa:72:f1:c8:67:9d:d6:c7:05:79:13:
27:92:80:9b:7c:af:3c:46:73:b6:53:8b:b9:00:13:
93:9c:62:c3:56:7e:8c:5c:a1:24:53:1d:3f:aa:9c:
84:e1:f4:0b:dd:fb:c4:16:64:74:b7:f7:57:f6:ec:
1a:f0:23:9b:b2:44:88:c3:5a:ef:db:9c:af:d3:45:
cd:8c:45:5b:2f:b3:b5:bb:1f:bf:3c:89:97:1e:90:
70:ed:5e:47:90:ff:59:fc:75:43:e6:35:fb:83:00:
93:6e:1e:64:14:d1:e8:35:1b:7c:a0:82:1a:9e:dc:
b7:e9:35:01:4e:a2:24:ef:ea:ca:0e:74:df:1b:5d:
da:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:36:6A:13:EF:0C:12:CF:6D:DE:6A:F8:4D:9C:F9:6B:F8:41:CE:F6
X509v3 Authority Key Identifier:
keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:84:aa:32:6f:f9:e3:13:ba:74:65:ba:c1:65:cc:b0:c4:fa:
af:3a:53:e8:4b:f8:6d:06:63:bb:9c:17:51:ff:b2:08:99:5a:
5f:26:8d:2d:82:7c:5d:4f:10:4c:74:b2:b5:22:ac:95:0d:6e:
d6:21:a6:29:8e:de:b7:bd:d3:6d:1f:5d:f7:75:ae:61:d5:bf:
a8:27:cf:ca:77:e0:f6:97:b4:f0:7c:34:dd:e6:e6:0b:d1:b3:
43:ec:10:d3:0b:11:92:b2:46:5e:9f:57:21:ff:8d:ac:7e:16:
a5:bb:fd:e8:98:62:8c:ba:03:b0:c3:62:93:c0:fe:99:a1:89:
41:41:75:27:38:42:a8:30:bb:88:20:35:1a:c9:9a:f2:ac:8a:
98:42:24:bb:e2:55:08:37:47:cf:33:38:ff:16:ab:3f:40:12:
e0:1c:d1:be:93:20:90:a2:b0:55:2d:2d:85:50:9c:48:60:d4:
cf:78:6e:60:bc:f9:e8:97:36:fa:a7:9e:e7:29:fa:ad:7f:ea:
11:0d:9e:39:9b:cb:81:b9:dc:bb:c5:33:f6:85:10:56:8c:0a:
bd:99:46:a1:95:75:6e:c3:69:73:a1:6d:43:be:52:28:a9:81:
34:ed:75:f4:ba:c9:22:a0:2d:47:a5:ca:30:43:58:90:7d:4a:
18:76:58:5f
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZjV8canT6k06Sm0P9ZistFaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5ODY2OWQzMWExNGRiZGM1MDc3MTU5Y2YwYTY1MzUzYmZi
ZmEyMGEwHhcNMjUwODIzMDgwMDQ4WhcNMjUwODI0MDgwMDQ4WjAzMTEwLwYDVQQD
Eyg3YTM2NmExM2VmMGMxMmNmNmRkZTZhZjg0ZDljZjk2YmY4NDFjZWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutOHL4HJMmQWWNTruCdm06nVoFzW
Ea5cQDPc2kbOsm7FNT2vM5XejGZpR4yqPUXnvMy/XP/3NYLKYNuyAnNUmH534VPT
H7gHsHKBeBGeZERyyDmVPxcfHLEBTh/juv/w18S7hpqg7Dz2ZTo0ry6ujUVQOgtX
oWmSURdf+nLxyGed1scFeRMnkoCbfK88RnO2U4u5ABOTnGLDVn6MXKEkUx0/qpyE
4fQL3fvEFmR0t/dX9uwa8CObskSIw1rv25yv00XNjEVbL7O1ux+/PImXHpBw7V5H
kP9Z/HVD5jX7gwCTbh5kFNHoNRt8oIIanty36TUBTqIk7+rKDnTfG13aDwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFHo2ahPvDBLPbd5q+E2c+Wv4Qc72MB8GA1UdIwQY
MBaAFPmGadMaFNvcUHcVnPCmU1O/v6IKMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1ZWnAweG9VMjl4UWR4V2M4S1pUVTctX29nby5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvMmI0MTdkLTI4NjktNDExZi1hZWRh
LTRhMDViYWM1MjY1Zi8xLzEtWVpwMHhvVTI5eFFkeFdjOEtaVFU3LV9vZ28ubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzA3LzJiNDE3ZC0yODY5LTQxMWYtYWVkYS00YTA1YmFjNTI2
NWYvMS8xLVlacDB4b1UyOXhRZHhXYzhLWlRVNy1fb2dvLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArYSq
Mm/54xO6dGW6wWXMsMT6rzpT6Ev4bQZju5wXUf+yCJlaXyaNLYJ8XU8QTHSytSKs
lQ1u1iGmKY7et73TbR9d93WuYdW/qCfPynfg9pe08Hw03ebmC9GzQ+wQ0wsRkrJG
Xp9XIf+NrH4Wpbv96JhijLoDsMNik8D+maGJQUF1JzhCqDC7iCA1Gsma8qyKmEIk
u+JVCDdHzzM4/xarP0AS4BzRvpMgkKKwVS0thVCcSGDUz3huYLz56Jc2+qee5yn6
rX/qEQ2eOZvLgbncu8Uz9oUQVowKvZlGoZV1bsNpc6FtQ75SKKmBNO119LrJIqAt
R6XKMENYkH1KGHZYXw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:08:11 2025 by rpki-client