Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
File: D0OG59TvxHLBH-nP7z0zCXSzP2E.mft (raw, json)
Hash identifier: 1Aeyzd7akFSE5jPAv3I+CzT9OkWJs6s9KoFwNg87SGo=
Subject key identifier: 79:F8:B5:64:35:5F:87:71:37:11:87:FC:7C:BB:CF:60:75:0A:46:04
Authority key identifier: 0F:43:86:E7:D4:EF:C4:72:C1:1F:E9:CF:EF:3D:33:09:74:B3:3F:61
Certificate issuer: /CN=0f4386e7d4efc472c11fe9cfef3d330974b33f61
Certificate serial: 0198D6611B97927EF9B0F3EFE40B9554F008
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
Manifest number: 08EB
Signing time: Sat 23 Aug 2025 10:02:24 +0000
Manifest this update: Sat 23 Aug 2025 10:02:24 +0000
Manifest next update: Sun 24 Aug 2025 10:02:24 +0000
Files and hashes: 1: D0OG59TvxHLBH-nP7z0zCXSzP2E.crl (hash: 5FsEI5q6hqKw+jx2SX8xarbaNgHJ/0AKoDgKaJR1Yn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:1b:97:92:7e:f9:b0:f3:ef:e4:0b:95:54:f0:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f4386e7d4efc472c11fe9cfef3d330974b33f61
Validity
Not Before: Aug 23 10:02:24 2025 GMT
Not After : Aug 24 10:02:24 2025 GMT
Subject: CN=79f8b564355f8771371187fc7cbbcf60750a4604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b2:90:bc:23:ec:9b:c1:08:ad:22:3d:21:92:
66:6e:a4:67:7a:f6:9a:8a:06:97:62:9c:ed:d5:f2:
31:52:26:e7:ae:bf:12:55:71:48:a6:dd:40:b5:95:
51:96:4b:53:5a:1f:4f:a0:71:e8:89:02:95:a3:f7:
dd:2a:7e:9a:25:0c:90:3e:fc:91:27:1f:96:9e:8f:
cd:80:a3:14:5c:51:12:da:36:1f:1f:3a:96:ae:79:
e0:76:34:cc:a2:24:e0:d9:c0:0a:fc:cc:44:82:e6:
71:e6:0d:86:21:db:72:c1:00:e1:23:43:22:d3:f7:
38:db:2a:a1:90:48:7d:f9:d8:0b:2f:38:ea:b0:6e:
61:40:14:14:e5:60:42:41:82:c8:03:89:aa:3d:cd:
bc:fa:b3:58:a2:41:c7:6c:21:35:33:a4:37:9e:65:
db:d1:2a:ef:aa:87:9f:1c:d4:1a:f1:e2:a9:bd:fa:
52:b4:26:f2:97:b6:2e:80:c3:ae:09:09:2a:83:9e:
7e:b2:dd:7e:55:c7:59:c1:d3:6b:8f:7c:d3:79:bc:
21:00:2e:84:05:3c:56:f1:cc:cb:87:74:33:a3:fb:
d4:53:07:0b:b0:87:9f:07:78:1c:27:39:70:b8:cd:
33:e8:23:42:d7:3e:94:83:9a:f1:e8:2d:1d:d3:dc:
4f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F8:B5:64:35:5F:87:71:37:11:87:FC:7C:BB:CF:60:75:0A:46:04
X509v3 Authority Key Identifier:
keyid:0F:43:86:E7:D4:EF:C4:72:C1:1F:E9:CF:EF:3D:33:09:74:B3:3F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:42:27:8e:3c:00:9c:53:75:ef:60:c5:09:15:6f:41:6b:60:
be:23:94:5f:8c:cf:2f:9f:ae:47:e5:f7:bb:ba:7a:b8:f9:b8:
5a:b2:c7:87:16:ee:b7:88:52:eb:d2:7a:99:e3:f8:8a:54:a2:
7c:87:c7:cc:06:2c:9a:c9:46:a0:7a:79:95:65:f7:99:10:93:
b7:d4:6d:63:60:1c:60:75:02:7d:8a:54:f2:4e:0e:e1:61:25:
4c:b8:f4:45:0a:3b:98:8e:10:53:1b:a1:3f:4d:94:71:a7:c1:
3a:18:8e:85:0c:20:a3:0e:1a:a0:bb:20:4a:0d:e6:f3:02:95:
ba:1c:a0:ed:81:08:bf:7d:0c:df:95:83:cf:c6:c4:fe:29:a5:
eb:99:c6:5e:72:a2:ec:6a:17:74:6c:da:5a:e4:c2:5f:71:49:
93:df:f3:3e:b2:ae:7f:61:8c:91:7e:91:9e:e4:89:be:55:7e:
02:b2:1a:f9:97:d7:d2:e8:b4:91:16:b6:c0:5d:36:b5:71:b7:
50:08:1f:71:2f:30:d5:93:94:9d:69:f8:b8:80:22:72:84:fd:
2f:32:32:79:bd:1b:ac:00:1e:a5:79:aa:03:cc:bd:18:a3:d6:
59:06:4d:87:9f:8f:53:8c:3d:ba:cc:3e:d1:de:2c:30:f4:83:
87:54:4b:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYRuXkn75sPPv5AuVVPAIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNDM4NmU3ZDRlZmM0NzJjMTFmZTljZmVmM2QzMzA5NzRi
MzNmNjEwHhcNMjUwODIzMTAwMjI0WhcNMjUwODI0MTAwMjI0WjAzMTEwLwYDVQQD
Eyg3OWY4YjU2NDM1NWY4NzcxMzcxMTg3ZmM3Y2JiY2Y2MDc1MGE0NjA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrKQvCPsm8EIrSI9IZJmbqRnevaa
igaXYpzt1fIxUibnrr8SVXFIpt1AtZVRlktTWh9PoHHoiQKVo/fdKn6aJQyQPvyR
Jx+Wno/NgKMUXFES2jYfHzqWrnngdjTMoiTg2cAK/MxEguZx5g2GIdtywQDhI0Mi
0/c42yqhkEh9+dgLLzjqsG5hQBQU5WBCQYLIA4mqPc28+rNYokHHbCE1M6Q3nmXb
0SrvqoefHNQa8eKpvfpStCbyl7YugMOuCQkqg55+st1+VcdZwdNrj3zTebwhAC6E
BTxW8czLh3Qzo/vUUwcLsIefB3gcJzlwuM0z6CNC1z6Ug5rx6C0d09xPMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHn4tWQ1X4dxNxGH/Hy7z2B1CkYEMB8GA1UdIwQY
MBaAFA9DhufU78RywR/pz+89Mwl0sz9hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDBPRzU5VHZ4SExCSC1uUDd6MHpDWFN6UDJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS81NmJmYjQtYjNmZS00NjVhLWIzNTct
NTJhYmI1M2I3NTEzLzEvRDBPRzU5VHZ4SExCSC1uUDd6MHpDWFN6UDJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS81NmJmYjQtYjNmZS00NjVhLWIzNTctNTJhYmI1M2I3NTEz
LzEvRDBPRzU5VHZ4SExCSC1uUDd6MHpDWFN6UDJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD0InjjwA
nFN172DFCRVvQWtgviOUX4zPL5+uR+X3u7p6uPm4WrLHhxbut4hS69J6meP4ilSi
fIfHzAYsmslGoHp5lWX3mRCTt9RtY2AcYHUCfYpU8k4O4WElTLj0RQo7mI4QUxuh
P02UcafBOhiOhQwgow4aoLsgSg3m8wKVuhyg7YEIv30M35WDz8bE/iml65nGXnKi
7GoXdGzaWuTCX3FJk9/zPrKuf2GMkX6RnuSJvlV+ArIa+ZfX0ui0kRa2wF02tXG3
UAgfcS8w1ZOUnWn4uIAicoT9LzIyeb0brAAepXmqA8y9GKPWWQZNh5+PU4w9usw+
0d4sMPSDh1RLkg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:13:34 2025 by rpki-client