Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: Ne+dUooZwefMFThfG/NVy9JBQ64J1Su+SwRpKtALzps=
Subject key identifier: 91:7B:AE:BD:40:AC:85:F7:2F:8F:CD:55:FC:73:08:80:2F:3C:A2:26
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 0198D54E21C90DE77C735962E196AFD016FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 122C
Signing time: Sat 23 Aug 2025 05:02:04 +0000
Manifest this update: Sat 23 Aug 2025 05:02:04 +0000
Manifest next update: Sun 24 Aug 2025 05:02:04 +0000
Files and hashes: 1: 3oKx6h0eBr3yZ2nfockvN65K1_o.roa (hash: geWao+6sgTP3cLFpfRuFIKY1lyLCLqYJA9Pcg4p46Gs=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: 3/2HI+MWg8ne2faDwR0EpYdRH6ITohipPBgBUhg/Z1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:21:c9:0d:e7:7c:73:59:62:e1:96:af:d0:16:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: Aug 23 05:02:04 2025 GMT
Not After : Aug 24 05:02:04 2025 GMT
Subject: CN=917baebd40ac85f72f8fcd55fc7308802f3ca226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bf:36:a0:0e:19:b3:95:c1:01:c0:db:fb:de:
2b:d3:e5:d0:ff:bb:67:ef:4c:e1:47:02:99:13:c9:
e6:83:22:aa:db:0f:40:03:a0:b9:17:b7:6d:5c:c8:
91:50:4f:1a:d9:97:d2:95:04:3c:d5:6f:a0:f9:71:
ab:ac:c5:a9:72:3c:87:c8:f9:75:4b:c5:02:5a:96:
a8:5a:d9:5a:1b:b9:9e:91:bf:44:a7:80:a9:1c:0c:
3f:1f:0a:8f:34:45:a0:2a:3a:2a:9f:f1:9b:83:0f:
1a:9b:d8:48:fb:ba:23:73:32:01:c3:50:bb:e2:c0:
8a:5b:22:ee:41:56:89:81:a7:87:04:96:7a:81:96:
b9:5f:4d:bd:bc:af:9c:a2:18:ad:d5:b4:6f:a6:27:
f5:63:b4:9d:07:bf:3c:51:b8:42:a8:56:de:bd:b1:
0f:c4:58:cb:fd:a2:e6:c7:35:de:45:f8:71:e1:28:
c3:72:06:5f:1f:04:91:7e:9b:f2:48:02:fc:3f:f9:
4b:6e:53:df:36:0a:0b:e9:55:c6:ae:8e:02:26:6c:
4d:2b:7d:68:d6:9d:c2:f7:07:1d:2d:85:93:e5:f4:
a6:64:70:01:80:3a:56:81:9e:d8:e9:c4:a8:ac:74:
ab:9b:20:e9:db:65:f8:2a:7e:70:9c:56:77:2e:a3:
58:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7B:AE:BD:40:AC:85:F7:2F:8F:CD:55:FC:73:08:80:2F:3C:A2:26
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:a4:4a:16:c6:c3:4b:6d:f2:61:a5:65:15:42:89:f6:81:f4:
7f:3a:8c:c0:b4:fb:c2:22:ec:73:3e:e0:8c:8d:7d:5c:50:f7:
3a:65:ec:aa:3b:b8:98:19:1d:f4:52:dc:4c:69:13:28:11:2f:
a0:2f:d5:9a:19:0a:fc:93:9e:19:c3:1c:c1:e5:3b:33:bf:14:
60:4b:f7:c3:e4:ee:eb:72:2d:f4:c8:63:cc:a5:27:23:57:c9:
e2:7c:e0:e0:96:aa:42:79:1b:33:e5:1f:32:1b:9e:70:1c:86:
0a:b5:02:3d:4b:3e:81:2c:90:9f:a4:31:ce:50:73:5c:7f:a8:
bf:82:2d:97:16:f0:0c:ec:70:d3:50:8a:95:f5:02:99:9c:72:
6c:b9:30:ed:35:8d:05:0b:c3:94:e2:61:83:4f:c9:b4:68:3c:
e3:70:01:b0:b4:53:bb:2e:24:c5:22:22:6f:75:15:09:3a:1c:
1c:5d:ce:e0:a5:b1:21:bf:d6:61:88:e6:3c:1d:b9:a8:34:8d:
14:d6:6c:74:4c:01:3e:c3:0c:ea:e4:3d:9e:c8:53:13:00:38:
93:4f:91:cb:52:b8:eb:ce:97:75:1e:cf:37:18:bf:53:49:73:
55:aa:eb:2f:d9:f7:64:0a:2d:7c:93:06:78:9d:b5:a4:f0:5d:
a3:e9:d6:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTiHJDed8c1li4Zav0Bb9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNGRlODc1MDFjN2QzMDgyYzc2NjU5ZjRkZWJkOTQyODg0
M2I0Y2IwHhcNMjUwODIzMDUwMjA0WhcNMjUwODI0MDUwMjA0WjAzMTEwLwYDVQQD
Eyg5MTdiYWViZDQwYWM4NWY3MmY4ZmNkNTVmYzczMDg4MDJmM2NhMjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqb82oA4Zs5XBAcDb+94r0+XQ/7tn
70zhRwKZE8nmgyKq2w9AA6C5F7dtXMiRUE8a2ZfSlQQ81W+g+XGrrMWpcjyHyPl1
S8UCWpaoWtlaG7mekb9Ep4CpHAw/HwqPNEWgKjoqn/Gbgw8am9hI+7ojczIBw1C7
4sCKWyLuQVaJgaeHBJZ6gZa5X029vK+cohit1bRvpif1Y7SdB788UbhCqFbevbEP
xFjL/aLmxzXeRfhx4SjDcgZfHwSRfpvySAL8P/lLblPfNgoL6VXGro4CJmxNK31o
1p3C9wcdLYWT5fSmZHABgDpWgZ7Y6cSorHSrmyDp22X4Kn5wnFZ3LqNYjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJF7rr1ArIX3L4/NVfxzCIAvPKImMB8GA1UdIwQY
MBaAFKBN6HUBx9MILHZln03r2UKIQ7TLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80NjVjOTAtNzBmYi00MDE1LWI5Njkt
NzQ4Zjc4NzgzODhhLzEvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS80NjVjOTAtNzBmYi00MDE1LWI5NjktNzQ4Zjc4NzgzODhh
LzEvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmaRKFsbD
S23yYaVlFUKJ9oH0fzqMwLT7wiLscz7gjI19XFD3OmXsqju4mBkd9FLcTGkTKBEv
oC/VmhkK/JOeGcMcweU7M78UYEv3w+Tu63It9MhjzKUnI1fJ4nzg4JaqQnkbM+Uf
MhuecByGCrUCPUs+gSyQn6QxzlBzXH+ov4ItlxbwDOxw01CKlfUCmZxybLkw7TWN
BQvDlOJhg0/JtGg843ABsLRTuy4kxSIib3UVCTocHF3O4KWxIb/WYYjmPB25qDSN
FNZsdEwBPsMM6uQ9nshTEwA4k0+Ry1K4686XdR7PNxi/U0lzVarrL9n3ZAotfJMG
eJ21pPBdo+nWVg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:33 2025 by rpki-client