Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: FBswqxdcU/qZN+Wj29FQC0CVQ1+lxamApus6h8KbTDU=
Subject key identifier: 1F:5E:54:E7:EA:DE:A5:FB:A3:3D:2B:C8:3B:80:A8:BA:2D:C2:71:09
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 0198D5162EB427A9953FC6722D0C037E9D3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 0612
Signing time: Sat 23 Aug 2025 04:00:57 +0000
Manifest this update: Sat 23 Aug 2025 04:00:57 +0000
Manifest next update: Sun 24 Aug 2025 04:00:57 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: X0Ri3w1u5iPLPWXVfjJE3H49/7NYoH1x3P5iLFZHKFo=)
2: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=)
3: Uw9JbudeiyQ7Eqq4TZWKYitXR5Q.roa (hash: PECjzeRoLCDiJc+fMhDdhpnjzdeMhIqjV/edQ5qJgEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:2e:b4:27:a9:95:3f:c6:72:2d:0c:03:7e:9d:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Aug 23 04:00:57 2025 GMT
Not After : Aug 24 04:00:57 2025 GMT
Subject: CN=1f5e54e7eadea5fba33d2bc83b80a8ba2dc27109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3c:ed:3a:3f:72:e7:fd:af:cd:06:8c:0c:7f:
84:dc:71:b3:3a:0b:2d:c1:95:a2:ad:2e:5e:f7:03:
f7:c2:32:04:de:c6:40:86:b4:13:15:43:83:56:fe:
84:73:eb:d4:16:59:09:e6:65:d2:fe:5f:d4:71:5a:
4e:dd:5b:a5:50:4c:9c:ac:cd:d0:cb:63:8d:6d:b4:
5f:ac:32:41:44:73:a9:91:ef:3e:09:5b:b0:9f:66:
a9:e9:47:a9:64:4e:48:cd:0d:60:93:38:55:81:5b:
cd:df:93:d8:7c:4d:64:89:cc:b1:47:6a:e0:ed:d8:
be:47:71:79:c1:42:88:a2:c4:7f:87:4e:0f:b5:73:
ce:71:57:1f:ab:5a:16:6e:95:5c:d1:71:39:d8:bc:
08:4e:ad:bd:b2:4f:3c:4a:0c:06:fc:3d:dc:4b:80:
5e:c0:d8:9f:2b:42:3b:eb:51:b3:4f:55:c6:ec:72:
a9:3d:16:bb:20:43:1f:04:53:45:2f:20:ef:67:13:
43:49:ab:28:0a:12:73:ba:77:8b:2e:f7:7d:f8:cf:
35:02:a5:3b:36:17:e8:c9:5c:48:38:89:5a:99:94:
45:e1:dd:45:e6:2c:7f:b8:44:fe:6d:69:fe:63:87:
98:8a:1b:2c:d1:cd:f7:00:41:79:b0:d8:50:a5:ff:
c9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5E:54:E7:EA:DE:A5:FB:A3:3D:2B:C8:3B:80:A8:BA:2D:C2:71:09
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:29:82:56:92:1b:33:c0:11:dd:ca:cc:d3:73:6d:1f:76:0d:
85:8f:98:16:95:00:45:20:fe:67:c5:c1:21:25:ae:75:b8:1c:
7c:03:82:7a:93:f2:dc:70:26:22:3b:b5:6b:52:58:c4:27:b5:
d2:c0:f7:1a:78:80:9d:db:c6:b9:8f:38:ad:c5:f1:e1:45:6d:
f7:dc:89:05:4f:d2:67:a1:5d:ec:68:08:f6:8f:8f:e5:61:8a:
2e:c8:9a:b4:e6:91:bd:fd:17:27:f4:de:7b:19:c2:a6:aa:8f:
43:7b:41:f5:93:08:7a:ed:0f:0a:c3:a8:15:c2:fc:66:c8:b4:
7a:0b:e2:ce:9c:74:dc:19:b5:a4:b9:cc:b3:a6:48:31:c8:80:
09:20:88:8c:f5:e6:b3:5a:56:96:1e:c0:24:2c:d4:02:4c:b8:
47:58:85:53:65:1d:1a:99:85:a1:99:f9:36:8e:4b:09:46:8c:
9e:61:30:2e:8e:1a:1e:48:a7:7d:c5:27:a6:17:b8:fa:a1:be:
83:c1:31:77:ee:79:74:6f:c2:fa:a6:1e:4c:aa:70:ff:1c:79:
54:35:26:fa:a8:df:bd:76:18:d9:60:78:c8:4a:b1:2b:e0:4c:
01:df:87:c7:73:b2:51:be:da:48:fd:8a:80:00:b3:da:2c:7b:
1d:5b:ea:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFi60J6mVP8ZyLQwDfp08MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhODM5OTM2YWVlZmYyODg2NzhlNzcyNjMzMDIwZmEyNTli
ZDljZjIwHhcNMjUwODIzMDQwMDU3WhcNMjUwODI0MDQwMDU3WjAzMTEwLwYDVQQD
EygxZjVlNTRlN2VhZGVhNWZiYTMzZDJiYzgzYjgwYThiYTJkYzI3MTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzztOj9y5/2vzQaMDH+E3HGzOgst
wZWirS5e9wP3wjIE3sZAhrQTFUODVv6Ec+vUFlkJ5mXS/l/UcVpO3VulUEycrM3Q
y2ONbbRfrDJBRHOpke8+CVuwn2ap6UepZE5IzQ1gkzhVgVvN35PYfE1kicyxR2rg
7di+R3F5wUKIosR/h04PtXPOcVcfq1oWbpVc0XE52LwITq29sk88SgwG/D3cS4Be
wNifK0I761GzT1XG7HKpPRa7IEMfBFNFLyDvZxNDSasoChJzuneLLvd9+M81AqU7
NhfoyVxIOIlamZRF4d1F5ix/uET+bWn+Y4eYihss0c33AEF5sNhQpf/JowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB9eVOfq3qX7oz0ryDuAqLotwnEJMB8GA1UdIwQY
MBaAFDqDmTau7/KIZ453JjMCD6JZvZzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQt
ODM1ZjRlMzcyODNjLzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQtODM1ZjRlMzcyODNj
LzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACymCVpIb
M8AR3crM03NtH3YNhY+YFpUARSD+Z8XBISWudbgcfAOCepPy3HAmIju1a1JYxCe1
0sD3GniAndvGuY84rcXx4UVt99yJBU/SZ6Fd7GgI9o+P5WGKLsiatOaRvf0XJ/Te
exnCpqqPQ3tB9ZMIeu0PCsOoFcL8Zsi0egvizpx03Bm1pLnMs6ZIMciACSCIjPXm
s1pWlh7AJCzUAky4R1iFU2UdGpmFoZn5No5LCUaMnmEwLo4aHkinfcUnphe4+qG+
g8Exd+55dG/C+qYeTKpw/xx5VDUm+qjfvXYY2WB4yEqxK+BMAd+Hx3OyUb7aSP2K
gACz2ix7HVvq2Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:56 2025 by rpki-client