Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json)
Hash identifier: N24J8GELRmOCdCVn5il7pIR5Poa3JVDP3x3LlVDaW/E=
Subject key identifier: FD:74:BC:E4:86:71:18:80:75:47:20:4D:A7:5D:3E:CF:29:FA:39:AF
Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Certificate serial: 0198D6603A9FAEE28E7793D2B7E1028AEE67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 10:01:27 +0000
Manifest this update: Sat 23 Aug 2025 10:01:27 +0000
Manifest next update: Sun 24 Aug 2025 10:01:27 +0000
Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: bXJN7CPEh5XFdepahsqj9qg0uF+OGTN4npeLFRNjxDM=)
2: ZyIu060SPaMWxMQNL4CIeyP46Zk.roa (hash: GVU/SWZQhKij7yAFfd4z7w9wi6LHgd9IcJaXLlSPbVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:3a:9f:ae:e2:8e:77:93:d2:b7:e1:02:8a:ee:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Validity
Not Before: Aug 23 10:01:27 2025 GMT
Not After : Aug 24 10:01:27 2025 GMT
Subject: CN=fd74bce4867118807547204da75d3ecf29fa39af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5c:d6:fc:fe:1e:8c:ec:9d:9a:85:78:fd:69:
39:87:da:74:b7:03:c0:8b:d1:66:0b:33:a9:95:b9:
2c:8a:24:d1:66:1d:ed:11:0c:b8:2a:5d:ff:fe:72:
04:3e:ae:4c:e8:d7:82:89:42:24:d8:a6:62:0a:d2:
0a:4d:3b:92:3f:55:f5:4b:42:36:2b:2c:3f:09:c8:
dd:a0:0b:4c:24:fe:5d:ab:66:15:c0:5d:2e:66:e3:
f3:51:4a:b8:6e:f8:ca:df:9d:a5:fc:3e:5c:7a:47:
7f:eb:5e:98:d5:b3:61:7a:f2:61:8f:a0:f8:66:62:
83:d5:a2:88:d9:e6:5a:57:df:a0:40:a7:73:dc:3d:
b2:27:89:aa:f6:9c:ff:aa:3c:68:01:11:89:85:68:
15:e6:46:d9:90:67:a5:90:c1:35:6d:a0:fe:11:63:
0d:47:57:e2:96:c1:8a:84:23:82:68:14:56:ae:5d:
39:a2:2b:ea:91:01:f8:66:a1:39:7f:ba:a6:de:bc:
25:e2:a8:4d:ce:1a:11:c7:38:44:6c:52:48:f6:8b:
ed:6b:87:de:50:5e:f8:71:3e:45:16:5b:1c:41:7c:
99:d4:2e:bb:b4:a2:b3:58:19:cf:13:55:0c:27:5f:
52:7d:98:2c:90:c7:04:7d:87:8a:3c:2f:7d:4f:c3:
f0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:74:BC:E4:86:71:18:80:75:47:20:4D:A7:5D:3E:CF:29:FA:39:AF
X509v3 Authority Key Identifier:
keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:7c:62:2d:b3:e4:6b:07:61:c2:9d:62:3b:35:28:4a:1f:fa:
27:63:fc:20:c7:3d:8c:1f:e4:11:32:3b:20:c2:b3:6e:8f:8b:
c5:52:6b:db:ee:bb:96:7e:96:12:ac:2c:7f:40:3f:a3:ba:5c:
67:76:b4:1c:e2:fb:70:8c:a3:e1:ca:55:36:fd:e6:89:a3:42:
89:df:80:26:4b:ae:62:51:03:57:18:fb:22:e6:f9:69:c0:4a:
41:1e:02:cc:84:06:52:5f:75:4a:aa:76:16:e5:88:68:88:ed:
72:e7:f8:b8:96:6c:7f:26:42:93:02:e5:b7:79:e2:73:4d:de:
04:c2:7e:ef:49:10:58:ed:69:b5:39:98:26:eb:f5:4d:a5:27:
f0:bc:2b:60:84:eb:f5:5c:c8:bb:42:6e:7d:c3:e9:95:79:a9:
73:df:cb:c1:34:49:01:9f:47:ab:9a:45:f5:b4:c4:3b:27:4f:
c6:1e:2e:2e:8f:27:05:df:18:6e:8e:16:ae:d2:8d:48:02:97:
18:a9:2f:74:0e:6f:20:bf:d4:df:17:93:f4:52:3d:97:b2:e4:
40:25:04:f8:fd:0b:65:14:f1:18:47:d1:8c:f2:78:0e:d6:30:
44:9f:e7:3e:71:1f:0c:63:ed:17:fb:ff:f9:ff:41:9e:f9:5d:
e0:7f:5b:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYDqfruKOd5PSt+ECiu5nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxODY0NzAwNWZhOGIwNmU0N2VlMmVmYmZkZWRjOTdhMGM3
NzU1ZjgwHhcNMjUwODIzMTAwMTI3WhcNMjUwODI0MTAwMTI3WjAzMTEwLwYDVQQD
EyhmZDc0YmNlNDg2NzExODgwNzU0NzIwNGRhNzVkM2VjZjI5ZmEzOWFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5FzW/P4ejOydmoV4/Wk5h9p0twPA
i9FmCzOplbksiiTRZh3tEQy4Kl3//nIEPq5M6NeCiUIk2KZiCtIKTTuSP1X1S0I2
Kyw/CcjdoAtMJP5dq2YVwF0uZuPzUUq4bvjK352l/D5cekd/616Y1bNhevJhj6D4
ZmKD1aKI2eZaV9+gQKdz3D2yJ4mq9pz/qjxoARGJhWgV5kbZkGelkME1baD+EWMN
R1filsGKhCOCaBRWrl05oivqkQH4ZqE5f7qm3rwl4qhNzhoRxzhEbFJI9ovta4fe
UF74cT5FFlscQXyZ1C67tKKzWBnPE1UMJ19SfZgskMcEfYeKPC99T8Pw8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP10vOSGcRiAdUcgTaddPs8p+jmvMB8GA1UdIwQY
MBaAFNGGRwBfqLBuR+4u+/3tyXoMd1X4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQt
YzIxMDQ2NzNjMjBiLzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQtYzIxMDQ2NzNjMjBi
LzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeXxiLbPk
awdhwp1iOzUoSh/6J2P8IMc9jB/kETI7IMKzbo+LxVJr2+67ln6WEqwsf0A/o7pc
Z3a0HOL7cIyj4cpVNv3miaNCid+AJkuuYlEDVxj7Iub5acBKQR4CzIQGUl91Sqp2
FuWIaIjtcuf4uJZsfyZCkwLlt3nic03eBMJ+70kQWO1ptTmYJuv1TaUn8LwrYITr
9VzIu0JufcPplXmpc9/LwTRJAZ9Hq5pF9bTEOydPxh4uLo8nBd8Ybo4WrtKNSAKX
GKkvdA5vIL/U3xeT9FI9l7LkQCUE+P0LZRTxGEfRjPJ4DtYwRJ/nPnEfDGPtF/v/
+f9Bnvld4H9b6g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:35:46 2025 by rpki-client