Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
File: oAy0uNVpR3USzleIW6aiiY-8LZU.mft (raw, json)
Hash identifier: BvIiZkS3bEHqXKOOP2hqUsg9SLQsHlVrOgV5kOxu+H8=
Subject key identifier: 7F:E2:2B:33:5C:C9:EC:84:AA:5B:A9:C4:54:89:0A:34:EA:6E:E8:88
Authority key identifier: A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
Certificate issuer: /CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Certificate serial: 0198D5BBC262EB8EF3AF2435AC18E635E411
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
Manifest number: 1151
Signing time: Sat 23 Aug 2025 07:01:48 +0000
Manifest this update: Sat 23 Aug 2025 07:01:48 +0000
Manifest next update: Sun 24 Aug 2025 07:01:48 +0000
Files and hashes: 1: RDMJmsptAt79z1bZNxCRYGoDbOA.roa (hash: psHiDB3pvgN7EOgCxCvfgOl6kkNmShVGm0R8glPdahE=)
2: oAy0uNVpR3USzleIW6aiiY-8LZU.crl (hash: xEMPa3KrVFKYNJ/S7QNkslXV6h5HZpwgR4D7LbShNEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:c2:62:eb:8e:f3:af:24:35:ac:18:e6:35:e4:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Validity
Not Before: Aug 23 07:01:48 2025 GMT
Not After : Aug 24 07:01:48 2025 GMT
Subject: CN=7fe22b335cc9ec84aa5ba9c454890a34ea6ee888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fa:3e:e7:4c:cd:10:be:5e:cd:3c:91:21:4e:
7e:c3:f1:fb:ea:d2:0b:40:b5:60:6b:7b:e4:25:bc:
48:94:29:53:af:6e:4c:fd:2f:56:44:e8:18:d3:77:
72:85:23:ad:6a:b0:e3:76:0e:c3:f9:ad:14:90:83:
dd:85:5f:4c:61:5c:44:ed:08:e8:18:0e:38:7a:48:
04:e5:a8:61:61:a5:a2:c1:c3:4c:1c:ae:74:38:7c:
73:cd:45:84:4c:1f:5e:b7:11:f8:00:69:9c:b3:ee:
42:78:21:78:6b:5f:60:19:93:ff:16:68:34:73:72:
ec:d9:8c:f7:be:57:d1:22:b0:fe:f1:10:5a:19:78:
a9:6f:94:e6:e9:98:b6:af:a9:58:53:92:bf:35:f9:
36:6c:d6:41:5e:fa:8a:00:0d:6d:12:29:14:9b:7b:
b9:e7:8b:8f:f6:03:47:3c:3a:7f:13:c8:00:89:24:
05:a6:68:de:72:a8:8f:64:dc:e5:d0:62:1b:73:ab:
b9:bb:c9:cc:1d:c0:fc:11:23:9f:c5:53:76:d6:3e:
7c:80:2a:6c:89:5e:32:4e:ee:e0:58:42:75:31:53:
95:93:84:fb:8c:0c:06:9f:87:18:7b:f0:1f:74:ea:
26:21:0a:b8:1f:21:b6:d2:22:ba:c2:14:d5:73:aa:
76:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E2:2B:33:5C:C9:EC:84:AA:5B:A9:C4:54:89:0A:34:EA:6E:E8:88
X509v3 Authority Key Identifier:
keyid:A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:b8:94:5f:03:aa:22:3b:8c:70:f2:dd:1c:c3:10:b7:05:b0:
87:6e:97:6d:e9:fb:6d:0b:64:99:f4:2b:60:48:5d:f2:ad:d0:
07:a8:be:73:a6:ab:a9:36:c9:27:76:1f:2d:e4:ea:c1:97:07:
a6:b0:ab:cf:51:91:d3:8e:74:88:f5:e0:2d:34:2e:ed:09:37:
24:20:17:25:a1:5e:88:f4:0a:14:9f:93:f1:89:c8:94:3c:94:
6a:ac:59:f7:6e:0a:a4:3f:f2:59:43:c1:56:22:70:08:09:bd:
c1:b0:b7:eb:8c:96:0a:2c:20:0f:2b:85:28:ee:1c:67:21:fb:
8e:6d:7b:8f:a9:cf:ed:5c:6a:63:c0:4d:71:ab:59:2e:23:25:
46:9e:6b:f5:e4:ba:43:ba:0c:b7:05:f1:3c:d3:8a:7c:e0:f4:
95:2a:88:4b:14:f5:24:a3:0a:f7:94:40:24:27:03:d2:25:2e:
01:3f:51:eb:76:c0:18:17:1b:e4:f1:5f:8b:19:57:58:0a:34:
11:38:0a:98:98:d8:5c:54:ff:a7:30:f9:19:a3:8c:cd:8e:2c:
fd:32:c7:3c:83:48:a7:04:63:d4:8e:9e:c2:88:86:63:66:8c:
40:0f:8d:ab:17:77:dd:50:c8:50:47:e3:7a:79:51:5d:56:d2:
f2:1e:25:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu8Ji647zryQ1rBjmNeQRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwMGNiNGI4ZDU2OTQ3NzUxMmNlNTc4ODViYTZhMjg5OGZi
YzJkOTUwHhcNMjUwODIzMDcwMTQ4WhcNMjUwODI0MDcwMTQ4WjAzMTEwLwYDVQQD
Eyg3ZmUyMmIzMzVjYzllYzg0YWE1YmE5YzQ1NDg5MGEzNGVhNmVlODg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjfo+50zNEL5ezTyRIU5+w/H76tIL
QLVga3vkJbxIlClTr25M/S9WROgY03dyhSOtarDjdg7D+a0UkIPdhV9MYVxE7Qjo
GA44ekgE5ahhYaWiwcNMHK50OHxzzUWETB9etxH4AGmcs+5CeCF4a19gGZP/Fmg0
c3Ls2Yz3vlfRIrD+8RBaGXipb5Tm6Zi2r6lYU5K/Nfk2bNZBXvqKAA1tEikUm3u5
54uP9gNHPDp/E8gAiSQFpmjecqiPZNzl0GIbc6u5u8nMHcD8ESOfxVN21j58gCps
iV4yTu7gWEJ1MVOVk4T7jAwGn4cYe/AfdOomIQq4HyG20iK6whTVc6p2CQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH/iKzNcyeyEqlupxFSJCjTqbuiIMB8GA1UdIwQY
MBaAFKAMtLjVaUd1Es5XiFumoomPvC2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0F5MHVOVnBSM1VTemxlSVc2YWlpWS04TFpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mOGZkNTktMDExNS00ZGIzLWJkODUt
MThjNzBlYmY2ODFhLzEvb0F5MHVOVnBSM1VTemxlSVc2YWlpWS04TFpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9mOGZkNTktMDExNS00ZGIzLWJkODUtMThjNzBlYmY2ODFh
LzEvb0F5MHVOVnBSM1VTemxlSVc2YWlpWS04TFpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADriUXwOq
IjuMcPLdHMMQtwWwh26Xben7bQtkmfQrYEhd8q3QB6i+c6arqTbJJ3YfLeTqwZcH
prCrz1GR0450iPXgLTQu7Qk3JCAXJaFeiPQKFJ+T8YnIlDyUaqxZ924KpD/yWUPB
ViJwCAm9wbC364yWCiwgDyuFKO4cZyH7jm17j6nP7VxqY8BNcatZLiMlRp5r9eS6
Q7oMtwXxPNOKfOD0lSqISxT1JKMK95RAJCcD0iUuAT9R63bAGBcb5PFfixlXWAo0
ETgKmJjYXFT/pzD5GaOMzY4s/TLHPINIpwRj1I6ewoiGY2aMQA+Nqxd33VDIUEfj
enlRXVbS8h4lLg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:11:10 2025 by rpki-client