Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
File: 0pigcUzBvyWsfH8c9sKIbIxhkqM.mft (raw, json)
Hash identifier: yOAsb0v52y5h8ArGod6JYgpHLLNnXcpkINQFKtdi4Yc=
Subject key identifier: 7C:F3:83:60:C2:D7:C3:31:8A:6A:99:CA:B9:37:FE:A2:8B:28:BB:C8
Authority key identifier: D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
Certificate issuer: /CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Certificate serial: 0198D697FED9570BDE7FC9CBB486027C07F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
Manifest number: 03C5
Signing time: Sat 23 Aug 2025 11:02:21 +0000
Manifest this update: Sat 23 Aug 2025 11:02:21 +0000
Manifest next update: Sun 24 Aug 2025 11:02:21 +0000
Files and hashes: 1: 0pigcUzBvyWsfH8c9sKIbIxhkqM.crl (hash: AXrPocDoo75Td/W0YdtDy/x1WdzFVOhxdJxWnYBC9j4=)
2: eBrn60Df7uG_ub_L-IV105lzs58.roa (hash: O8+G2XvuPwR1yEXnK+zmEZeJLzoyxFForxI59j5WNAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:97:fe:d9:57:0b:de:7f:c9:cb:b4:86:02:7c:07:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Validity
Not Before: Aug 23 11:02:21 2025 GMT
Not After : Aug 24 11:02:21 2025 GMT
Subject: CN=7cf38360c2d7c3318a6a99cab937fea28b28bbc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1d:51:b5:13:72:9e:7b:8f:c1:b7:ce:bc:a2:
1b:35:6a:c0:b5:d5:1c:4b:17:f7:06:70:d3:19:48:
ad:4c:cd:eb:28:55:42:b6:c3:ce:02:2e:e2:fa:b6:
ff:dd:6e:c0:f0:b0:51:16:7f:ad:3c:8c:51:2c:95:
50:5d:24:a3:98:e2:a3:de:e5:a7:7e:a6:e3:c1:43:
7c:36:ea:99:69:89:97:35:17:d5:72:d4:21:e0:31:
46:fc:1d:e1:15:4e:91:d0:ab:67:0d:03:57:08:1a:
f6:1b:68:a9:e2:04:60:12:6e:0c:44:c3:f1:ef:1b:
25:e9:e1:24:4e:5b:4a:17:84:ac:d8:ce:a7:af:31:
28:75:6a:c0:ec:00:b6:cd:26:e6:a5:3f:ee:10:c7:
01:6c:64:ff:b4:f2:06:c3:2a:ec:35:f4:78:62:66:
61:b9:bf:4f:77:f6:e2:8b:78:0f:18:c3:ea:26:06:
d4:f8:5f:88:f3:be:c7:de:8c:3d:00:07:58:4e:a7:
91:a4:c0:dd:a6:e5:91:48:52:b8:24:fe:56:77:d3:
c5:47:4a:fc:b5:78:3d:68:a0:76:55:a3:9a:26:80:
93:eb:4f:e9:86:0e:f0:ca:4d:ae:6e:92:b9:44:e5:
6c:9a:c9:d7:4b:bc:1c:48:a6:e2:57:cc:14:cd:2e:
15:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F3:83:60:C2:D7:C3:31:8A:6A:99:CA:B9:37:FE:A2:8B:28:BB:C8
X509v3 Authority Key Identifier:
keyid:D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:43:6f:88:71:34:09:60:73:87:54:5d:2d:30:f9:a1:cc:85:
f6:ea:0a:61:05:3a:b0:e0:b0:74:d6:b4:f8:d6:03:bd:9c:c2:
7d:88:18:77:bb:b5:f4:d1:d0:e9:1f:17:91:fd:c1:0c:5d:d3:
02:e2:a0:a9:09:c8:9e:bb:bf:45:1d:66:09:94:00:75:7e:76:
bc:ad:ce:6b:38:62:e1:c0:ee:df:15:49:18:ef:03:93:86:d9:
33:a5:fb:d8:ba:10:e7:61:28:84:e5:e5:8f:51:85:4a:c3:53:
e4:ee:00:43:d8:ad:db:52:d7:ba:06:1a:b0:ca:1f:73:23:e5:
6d:00:ca:ac:c1:02:51:05:45:6f:ec:99:72:79:b9:27:7b:d8:
0f:12:b9:61:f2:c8:c6:b2:7b:d9:32:06:b3:a3:32:62:a7:58:
75:a4:f7:b2:88:7b:e5:85:76:ac:d3:08:3d:62:3f:a4:bc:3b:
55:e1:3b:85:20:21:fb:d4:51:9e:b0:e6:e2:da:19:ac:81:97:
9b:db:86:e7:df:fc:6c:1e:12:82:26:b4:92:2a:20:e3:e8:87:
d2:9a:d6:48:6d:ae:e3:93:a7:63:ed:be:5f:fc:b2:fb:2b:73:
f1:67:b5:f1:8b:ea:11:70:a5:f4:30:e2:e5:ca:32:d1:a5:84:
71:92:27:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWl/7ZVwvef8nLtIYCfAfzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyOThhMDcxNGNjMWJmMjVhYzdjN2YxY2Y2YzI4ODZjOGM2
MTkyYTMwHhcNMjUwODIzMTEwMjIxWhcNMjUwODI0MTEwMjIxWjAzMTEwLwYDVQQD
Eyg3Y2YzODM2MGMyZDdjMzMxOGE2YTk5Y2FiOTM3ZmVhMjhiMjhiYmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvR1RtRNynnuPwbfOvKIbNWrAtdUc
Sxf3BnDTGUitTM3rKFVCtsPOAi7i+rb/3W7A8LBRFn+tPIxRLJVQXSSjmOKj3uWn
fqbjwUN8NuqZaYmXNRfVctQh4DFG/B3hFU6R0KtnDQNXCBr2G2ip4gRgEm4MRMPx
7xsl6eEkTltKF4Ss2M6nrzEodWrA7AC2zSbmpT/uEMcBbGT/tPIGwyrsNfR4YmZh
ub9Pd/bii3gPGMPqJgbU+F+I877H3ow9AAdYTqeRpMDdpuWRSFK4JP5Wd9PFR0r8
tXg9aKB2VaOaJoCT60/phg7wyk2ubpK5ROVsmsnXS7wcSKbiV8wUzS4VawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHzzg2DC18MximqZyrk3/qKLKLvIMB8GA1UdIwQY
MBaAFNKYoHFMwb8lrHx/HPbCiGyMYZKjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHBpZ2NVekJ2eVdzZkg4YzlzS0liSXhoa3FNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9kOTdhZWEtZmEzMi00NmRhLTg1MWUt
NzVhNDcyNWFhNmZkLzEvMHBpZ2NVekJ2eVdzZkg4YzlzS0liSXhoa3FNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS9kOTdhZWEtZmEzMi00NmRhLTg1MWUtNzVhNDcyNWFhNmZk
LzEvMHBpZ2NVekJ2eVdzZkg4YzlzS0liSXhoa3FNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArkNviHE0
CWBzh1RdLTD5ocyF9uoKYQU6sOCwdNa0+NYDvZzCfYgYd7u19NHQ6R8Xkf3BDF3T
AuKgqQnInru/RR1mCZQAdX52vK3Oazhi4cDu3xVJGO8Dk4bZM6X72LoQ52EohOXl
j1GFSsNT5O4AQ9it21LXugYasMofcyPlbQDKrMECUQVFb+yZcnm5J3vYDxK5YfLI
xrJ72TIGs6MyYqdYdaT3soh75YV2rNMIPWI/pLw7VeE7hSAh+9RRnrDm4toZrIGX
m9uG59/8bB4Sgia0kiog4+iH0prWSG2u45OnY+2+X/yy+ytz8We18YvqEXCl9DDi
5coy0aWEcZInCQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:13:57 2025 by rpki-client