Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json)
Hash identifier: j2bGlE/C0ds6Cw2HWYF5ZzazRrv1TUu4LO7vUlD1P0k=
Subject key identifier: 2F:8D:9F:0D:62:05:48:A4:3C:27:2D:5E:AC:69:0E:54:6F:F6:36:70
Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Certificate serial: 0199FC8F2E05C552044348F4F166982A366D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
Manifest number: 0A8F
Signing time: Sun 19 Oct 2025 13:01:05 +0000
Manifest this update: Sun 19 Oct 2025 13:01:05 +0000
Manifest next update: Mon 20 Oct 2025 13:01:05 +0000
Files and hashes: 1: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: 8sRDIvy3Dggbw/PmAxlBBPN56Lykfd4ocUstRJkYRts=)
2: Uekfh-0K2vRcuzrLz8uBXFaOroQ.roa (hash: QN8HhWjjJPearCTxHxonyEJ2yJIbW9sXZXyp6RMDaE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:2e:05:c5:52:04:43:48:f4:f1:66:98:2a:36:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Validity
Not Before: Oct 19 13:01:05 2025 GMT
Not After : Oct 20 13:01:05 2025 GMT
Subject: CN=2f8d9f0d620548a43c272d5eac690e546ff63670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f1:d6:a8:eb:fd:9e:ac:3f:ee:51:0b:bc:f0:
7a:4d:09:1a:1a:a4:04:7f:5e:5a:92:31:89:30:3a:
31:8a:cd:d3:7d:75:83:d3:3c:0f:c9:1a:33:0c:b2:
69:ef:dd:16:db:e5:df:02:dd:09:0f:31:fb:7d:ed:
4f:ed:47:ca:51:20:cd:94:c8:3c:99:a0:2f:78:98:
85:c5:20:b5:99:dd:00:56:37:14:97:64:fb:39:8d:
9d:64:2d:19:6d:db:60:1d:d8:48:9d:6f:97:63:53:
b7:59:97:34:91:23:de:3d:92:21:ba:3e:c5:13:6a:
76:5c:ca:8d:3e:b9:ab:61:0e:c1:dc:e3:9b:4d:0f:
27:31:3c:bf:5d:f8:c5:62:b6:f0:c0:b4:66:15:41:
b0:81:16:47:e6:98:92:fc:39:2c:36:6d:72:e6:65:
7f:21:4f:e5:35:82:f8:fb:25:0d:42:3a:62:93:a6:
ec:05:92:28:18:22:f5:e1:4d:bc:71:35:9d:e4:0e:
c2:f7:db:27:53:c3:12:f0:46:b4:76:01:f3:8d:03:
5d:d3:ad:e1:53:46:4d:92:9a:53:ba:a3:b2:7a:e6:
f6:ce:17:93:1d:b7:25:18:07:65:0a:a4:a0:e2:3d:
af:a4:c7:f5:16:57:8a:8c:54:ee:1b:75:ce:96:b5:
b4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:8D:9F:0D:62:05:48:A4:3C:27:2D:5E:AC:69:0E:54:6F:F6:36:70
X509v3 Authority Key Identifier:
keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:f3:00:ec:f3:4c:01:12:9e:a0:87:76:cc:25:3e:b1:8e:09:
b9:35:7a:ff:e9:72:b9:cf:40:89:2e:28:55:fe:28:f6:9d:a6:
e3:23:ff:85:07:00:3e:8d:d2:6e:e2:bb:52:b5:6c:38:f4:8c:
24:02:9a:2a:86:0f:01:aa:a0:32:17:0f:e0:3a:c6:cc:3c:3b:
8e:5a:02:44:41:7c:ba:04:c6:57:87:5e:69:a9:82:e9:f5:a6:
e5:b3:cd:8d:6a:84:e0:e4:e7:73:1a:a9:83:f5:e9:c6:9b:98:
8b:97:4c:84:74:51:c8:55:c4:29:60:cb:53:b8:7c:21:b1:9d:
61:8b:e6:83:48:16:f3:81:67:f0:8b:e9:37:b8:57:ab:c4:07:
67:36:8f:6f:a4:00:d9:c5:92:e7:5b:25:ef:e7:53:b8:4c:4a:
45:49:18:73:2d:26:a0:d9:2c:db:f6:5a:23:5d:93:31:ef:25:
a7:39:4b:b7:33:6d:b3:e7:c2:01:af:0e:ef:fe:6f:31:81:c5:
6d:50:c3:7c:c9:15:3b:ab:42:78:fc:6e:61:83:59:be:34:03:
9e:d1:f6:61:94:2e:e4:aa:6f:43:eb:cc:a8:b5:75:8c:02:c4:
4b:75:58:e5:f3:81:e8:65:6a:d9:eb:8a:97:c6:21:71:a6:47:
29:17:8d:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8jy4FxVIEQ0j08WaYKjZtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNjA0ZWMwY2ZlZTk2NmM0MTliM2E2ZDVmMDgyYjU2M2Mx
ODY4YmQwHhcNMjUxMDE5MTMwMTA1WhcNMjUxMDIwMTMwMTA1WjAzMTEwLwYDVQQD
EygyZjhkOWYwZDYyMDU0OGE0M2MyNzJkNWVhYzY5MGU1NDZmZjYzNjcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfHWqOv9nqw/7lELvPB6TQkaGqQE
f15akjGJMDoxis3TfXWD0zwPyRozDLJp790W2+XfAt0JDzH7fe1P7UfKUSDNlMg8
maAveJiFxSC1md0AVjcUl2T7OY2dZC0ZbdtgHdhInW+XY1O3WZc0kSPePZIhuj7F
E2p2XMqNPrmrYQ7B3OObTQ8nMTy/XfjFYrbwwLRmFUGwgRZH5piS/DksNm1y5mV/
IU/lNYL4+yUNQjpik6bsBZIoGCL14U28cTWd5A7C99snU8MS8Ea0dgHzjQNd063h
U0ZNkppTuqOyeub2zheTHbclGAdlCqSg4j2vpMf1FleKjFTuG3XOlrW0vwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC+Nnw1iBUikPCctXqxpDlRv9jZwMB8GA1UdIwQY
MBaAFDtgTsDP7pZsQZs6bV8IK1Y8GGi9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgt
ODdlOWYyMWI0MThiLzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgtODdlOWYyMWI0MThi
LzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVfMA7PNM
ARKeoId2zCU+sY4JuTV6/+lyuc9AiS4oVf4o9p2m4yP/hQcAPo3SbuK7UrVsOPSM
JAKaKoYPAaqgMhcP4DrGzDw7jloCREF8ugTGV4deaamC6fWm5bPNjWqE4OTncxqp
g/XpxpuYi5dMhHRRyFXEKWDLU7h8IbGdYYvmg0gW84Fn8IvpN7hXq8QHZzaPb6QA
2cWS51sl7+dTuExKRUkYcy0moNks2/ZaI12TMe8lpzlLtzNts+fCAa8O7/5vMYHF
bVDDfMkVO6tCePxuYYNZvjQDntH2YZQu5KpvQ+vMqLV1jALES3VY5fOB6GVq2euK
l8YhcaZHKReNdA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:30 2025 by rpki-client