Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
File: OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft (raw, json)
Hash identifier: pF0n+QLLKlziyexSLFVX8SkLmhb6/ZXQL3SSxSUjHnI=
Subject key identifier: E2:47:71:BF:79:7A:84:39:D4:38:6C:BB:F7:23:C0:2C:28:21:B9:F9
Authority key identifier: 38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
Certificate issuer: /CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Certificate serial: 0198D54E09AA90C11C203A8E0FAFB4CB0A1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
Manifest number: 0B90
Signing time: Sat 23 Aug 2025 05:01:57 +0000
Manifest this update: Sat 23 Aug 2025 05:01:57 +0000
Manifest next update: Sun 24 Aug 2025 05:01:57 +0000
Files and hashes: 1: KI_OzKHWNWDApgfZA8fhKRHWYNw.roa (hash: KgInzOYraW/0zKTqbj1OirpA4x6saReBh+LdfK4ZXdI=)
2: OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl (hash: L/U5p6sEu8YpmGDC/IWWdI8Tt4eGNSguZyHzoyVRQvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:09:aa:90:c1:1c:20:3a:8e:0f:af:b4:cb:0a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Validity
Not Before: Aug 23 05:01:57 2025 GMT
Not After : Aug 24 05:01:57 2025 GMT
Subject: CN=e24771bf797a8439d4386cbbf723c02c2821b9f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8b:d5:35:18:00:de:c9:f6:73:ec:df:a0:fd:
15:82:5e:f3:40:a4:97:c5:05:06:16:be:81:f2:f8:
ca:28:07:3c:92:bd:1a:15:c0:8f:a4:57:6f:83:24:
2d:14:41:96:72:81:7c:d8:7b:e8:57:43:25:fa:d3:
b7:bd:61:84:37:70:f3:1b:42:93:d4:fd:a1:b9:c9:
af:6a:96:26:41:c6:2c:bb:44:a3:34:44:79:ce:5c:
b0:64:95:a2:88:e4:27:91:f6:6f:36:cf:1a:5f:5c:
25:2f:b2:fe:36:6c:ce:c4:9f:fe:91:6a:f7:ff:e9:
b4:7a:86:0e:26:19:d6:f4:23:ba:5a:0f:62:37:0a:
69:7d:0a:bb:bc:05:b0:19:ca:e7:4e:41:70:7f:d1:
66:b6:c0:b9:f9:d6:00:06:61:48:20:81:ce:02:03:
17:e4:18:98:0b:63:9c:2f:9c:17:c9:13:0e:8b:ff:
b4:6f:a2:3f:b5:e4:2f:75:77:c9:34:f0:8c:d5:cd:
68:9d:b7:76:b8:da:72:54:46:89:df:e1:69:f5:8b:
99:71:dc:86:a0:22:9f:d8:41:a5:7b:0a:aa:25:06:
96:15:1b:03:26:0a:59:83:82:c9:8d:e4:48:21:b2:
e1:47:b2:37:ad:b9:a1:dc:a4:73:09:6f:b8:bb:fc:
61:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:47:71:BF:79:7A:84:39:D4:38:6C:BB:F7:23:C0:2C:28:21:B9:F9
X509v3 Authority Key Identifier:
keyid:38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:35:5e:de:2a:2e:fa:3f:35:b6:47:64:08:0e:33:cc:ef:08:
52:0c:0c:7d:b4:43:d8:ed:c7:b4:14:6d:b9:b1:8b:3f:e5:e4:
db:d3:c5:b4:e1:1d:63:5f:44:ba:99:d3:c1:63:6a:2b:9a:49:
8f:e2:91:a0:12:df:b1:02:14:d7:1e:d2:2a:6d:49:02:22:42:
cc:78:de:d0:4c:2c:f6:99:b3:10:d8:5c:4a:d3:70:0d:d1:60:
52:4e:bf:28:ba:57:91:ff:81:95:57:5a:6f:31:6c:7b:04:c9:
de:aa:63:1d:23:dd:25:2d:2c:9c:f5:8c:4d:82:0b:7b:a5:ed:
5e:62:3e:b1:c6:eb:81:47:9e:1a:24:27:cb:ea:3c:34:6b:84:
64:5b:58:9e:55:9a:0b:44:9a:8e:9c:6a:c7:ad:1d:59:d4:29:
a1:27:f9:d9:62:82:ab:1d:9e:03:c2:2d:65:ff:4e:58:dc:c0:
91:64:5d:e5:db:dd:58:8f:ee:7e:22:da:23:e3:6f:9c:21:22:
95:9a:4f:51:ca:1e:39:9e:89:03:37:52:b1:f9:55:50:53:23:
f1:7b:d2:55:76:8b:05:e6:87:8f:00:3a:e2:5f:04:b9:ba:1f:
54:02:83:f2:39:1d:f8:58:4d:e3:8c:03:59:16:eb:9a:a8:68:
d8:18:37:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTgmqkMEcIDqOD6+0ywoaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NWNmNDkzOWJlZWVhZWFmNDQwOWMyODQwZWIzNDRjYWIw
ODUwZTAwHhcNMjUwODIzMDUwMTU3WhcNMjUwODI0MDUwMTU3WjAzMTEwLwYDVQQD
EyhlMjQ3NzFiZjc5N2E4NDM5ZDQzODZjYmJmNzIzYzAyYzI4MjFiOWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3IvVNRgA3sn2c+zfoP0Vgl7zQKSX
xQUGFr6B8vjKKAc8kr0aFcCPpFdvgyQtFEGWcoF82HvoV0Ml+tO3vWGEN3DzG0KT
1P2hucmvapYmQcYsu0SjNER5zlywZJWiiOQnkfZvNs8aX1wlL7L+NmzOxJ/+kWr3
/+m0eoYOJhnW9CO6Wg9iNwppfQq7vAWwGcrnTkFwf9FmtsC5+dYABmFIIIHOAgMX
5BiYC2OcL5wXyRMOi/+0b6I/teQvdXfJNPCM1c1onbd2uNpyVEaJ3+Fp9YuZcdyG
oCKf2EGlewqqJQaWFRsDJgpZg4LJjeRIIbLhR7I3rbmh3KRzCW+4u/xhNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOJHcb95eoQ51Dhsu/cjwCwoIbn5MB8GA1UdIwQY
MBaAFDhc9JOb7urq9ECcKEDrNEyrCFDgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQt
N2I3NjE1ZmYwZTk2LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQtN2I3NjE1ZmYwZTk2
LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPTVe3iou
+j81tkdkCA4zzO8IUgwMfbRD2O3HtBRtubGLP+Xk29PFtOEdY19EupnTwWNqK5pJ
j+KRoBLfsQIU1x7SKm1JAiJCzHje0Ews9pmzENhcStNwDdFgUk6/KLpXkf+BlVda
bzFsewTJ3qpjHSPdJS0snPWMTYILe6XtXmI+scbrgUeeGiQny+o8NGuEZFtYnlWa
C0Sajpxqx60dWdQpoSf52WKCqx2eA8ItZf9OWNzAkWRd5dvdWI/ufiLaI+NvnCEi
lZpPUcoeOZ6JAzdSsflVUFMj8XvSVXaLBeaHjwA64l8EubofVAKD8jkd+FhN44wD
WRbrmqho2Bg34A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:20:41 2025 by rpki-client