Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: c8j7jYQPRx9pceD0gE6+Nn+MNDbKRGaSmZnKMpGy7G4=
Subject key identifier: 9F:7F:6E:1B:8D:5B:3B:2D:64:C8:7D:D5:56:4F:32:BF:C6:86:84:C0
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 0198D583E919924EF05F59BED7EF531C5130
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0DCC
Signing time: Sat 23 Aug 2025 06:00:48 +0000
Manifest this update: Sat 23 Aug 2025 06:00:48 +0000
Manifest next update: Sun 24 Aug 2025 06:00:48 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: P92hhvMTdI1gnrMPuLA9sHwWwfLSrcujzKyciIPjQBY=)
2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:e9:19:92:4e:f0:5f:59:be:d7:ef:53:1c:51:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Aug 23 06:00:48 2025 GMT
Not After : Aug 24 06:00:48 2025 GMT
Subject: CN=9f7f6e1b8d5b3b2d64c87dd5564f32bfc68684c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b2:60:6d:45:b7:f1:a9:18:a9:1c:3e:f5:bd:
96:e3:ee:be:6b:64:53:9b:35:e5:7c:6f:dc:06:fb:
ff:18:01:3b:b1:3f:0f:50:95:bc:cb:27:e9:d8:da:
09:e1:46:8a:4a:c3:16:7d:df:db:b7:b7:40:c4:35:
07:2d:88:39:68:49:28:9c:3b:db:61:4b:2a:1e:75:
e8:5b:b6:d2:65:35:8f:0c:32:39:07:a6:6b:3d:aa:
fa:e8:e3:60:83:e3:c4:02:35:ea:b0:83:1a:93:5c:
66:b3:e2:e1:55:dd:45:a9:ae:63:ce:93:f8:73:4b:
42:b3:e7:0b:54:78:0f:67:a9:38:af:9b:0e:e5:d0:
87:ac:ce:63:87:90:ea:b7:44:32:58:4b:b9:a7:e6:
65:04:f8:bb:0b:ba:58:0a:37:7d:cb:ff:65:53:69:
38:03:cb:fb:24:68:d2:8d:4f:46:b5:56:a0:36:d1:
3f:c4:da:1e:2d:42:15:0d:8d:ba:ae:4d:76:2b:f3:
f6:94:13:4f:32:3d:5c:32:dd:68:f9:1c:df:e4:c2:
00:7f:e7:9c:d1:63:0f:69:01:e9:67:92:a6:23:85:
a8:65:18:f2:4b:28:ed:fa:7c:78:9d:f6:71:13:cc:
0e:88:69:dd:27:52:37:3d:28:29:99:79:cd:3b:d2:
19:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:7F:6E:1B:8D:5B:3B:2D:64:C8:7D:D5:56:4F:32:BF:C6:86:84:C0
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:ba:7b:d9:a1:99:12:57:2f:cf:b4:d3:25:e0:b6:7b:1c:ff:
58:3a:17:99:7e:42:a4:3d:97:67:87:78:58:9b:ec:74:b8:16:
00:34:ba:b4:94:d0:70:4b:31:34:32:01:f3:c2:dd:8c:61:b0:
31:ed:b0:dc:18:6c:ee:fe:03:d2:ca:1c:41:82:a1:ff:c5:54:
b5:f3:3f:0d:c5:5e:ae:af:5d:f3:49:7c:c5:5d:21:dd:1f:18:
f3:43:2e:7c:a2:a6:ce:72:0a:44:13:45:06:ad:ab:ca:0c:07:
34:36:7e:e9:70:46:c9:32:bb:ab:19:77:92:24:0d:e4:0b:d0:
43:e3:01:78:31:81:b1:de:7f:bc:92:7c:49:ca:e0:b5:7f:5b:
01:69:4b:5c:ef:76:5e:d1:9e:81:74:04:a4:e1:dd:e4:53:d3:
09:9d:dc:dd:45:fe:ec:7c:52:ca:ea:e4:24:c1:c1:bf:9a:7c:
22:5b:85:a6:85:fa:00:11:e6:d4:8c:3f:d8:cf:1c:74:7c:5f:
36:94:c5:b3:17:17:46:f3:11:99:62:1f:02:f0:55:fb:29:4c:
1e:1a:e1:95:13:80:99:d7:93:8c:cf:74:b1:b4:07:dc:cb:ea:
ca:be:ee:ff:3f:0c:b5:25:4e:24:25:c0:47:f6:48:05:cd:b4:
89:45:4f:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg+kZkk7wX1m+1+9THFEwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5OWRjMTM2MTlhYWJhN2YyMjJjZWFjYjA1ZjFiYmFjNTli
ZDNhOWEwHhcNMjUwODIzMDYwMDQ4WhcNMjUwODI0MDYwMDQ4WjAzMTEwLwYDVQQD
Eyg5ZjdmNmUxYjhkNWIzYjJkNjRjODdkZDU1NjRmMzJiZmM2ODY4NGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA27JgbUW38akYqRw+9b2W4+6+a2RT
mzXlfG/cBvv/GAE7sT8PUJW8yyfp2NoJ4UaKSsMWfd/bt7dAxDUHLYg5aEkonDvb
YUsqHnXoW7bSZTWPDDI5B6ZrPar66ONgg+PEAjXqsIMak1xms+LhVd1Fqa5jzpP4
c0tCs+cLVHgPZ6k4r5sO5dCHrM5jh5Dqt0QyWEu5p+ZlBPi7C7pYCjd9y/9lU2k4
A8v7JGjSjU9GtVagNtE/xNoeLUIVDY26rk12K/P2lBNPMj1cMt1o+Rzf5MIAf+ec
0WMPaQHpZ5KmI4WoZRjySyjt+nx4nfZxE8wOiGndJ1I3PSgpmXnNO9IZ1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ9/bhuNWzstZMh91VZPMr/GhoTAMB8GA1UdIwQY
MBaAFDmdwTYZqrp/IizqywXxu6xZvTqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTkt
MDAzMmZkYzU0NTBiLzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTktMDAzMmZkYzU0NTBi
LzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApbp72aGZ
Elcvz7TTJeC2exz/WDoXmX5CpD2XZ4d4WJvsdLgWADS6tJTQcEsxNDIB88LdjGGw
Me2w3Bhs7v4D0socQYKh/8VUtfM/DcVerq9d80l8xV0h3R8Y80MufKKmznIKRBNF
Bq2rygwHNDZ+6XBGyTK7qxl3kiQN5AvQQ+MBeDGBsd5/vJJ8ScrgtX9bAWlLXO92
XtGegXQEpOHd5FPTCZ3c3UX+7HxSyurkJMHBv5p8IluFpoX6ABHm1Iw/2M8cdHxf
NpTFsxcXRvMRmWIfAvBV+ylMHhrhlROAmdeTjM90sbQH3Mvqyr7u/z8MtSVOJCXA
R/ZIBc20iUVP1Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:07:34 2025 by rpki-client