Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
File: O8RoMnEppQF7l23I7aydG56aFMw.mft (raw, json)
Hash identifier: Q1ZmR308muZ5wgM+dk4CBntdR4agcDuyhIl87TOGKPM=
Subject key identifier: 15:0C:90:B8:56:A6:5F:39:70:4F:F6:71:68:A4:A4:2F:0D:BC:B3:4F
Authority key identifier: 3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC
Certificate issuer: /CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc
Certificate serial: 0198D5BC0FCD493655AC8641D1003C8A1EEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
Manifest number: 15D5
Signing time: Sat 23 Aug 2025 07:02:08 +0000
Manifest this update: Sat 23 Aug 2025 07:02:08 +0000
Manifest next update: Sun 24 Aug 2025 07:02:08 +0000
Files and hashes: 1: O8RoMnEppQF7l23I7aydG56aFMw.crl (hash: MZW3GRHg7ELbNOfKCoN8AUd8L/LLxZOgM9XF6Y+FQqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:0f:cd:49:36:55:ac:86:41:d1:00:3c:8a:1e:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc
Validity
Not Before: Aug 23 07:02:08 2025 GMT
Not After : Aug 24 07:02:08 2025 GMT
Subject: CN=150c90b856a65f39704ff67168a4a42f0dbcb34f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9f:52:ae:6f:65:9c:36:5d:c7:de:17:b2:e1:
96:a2:bf:4f:fd:a9:aa:23:bb:dd:18:95:4b:79:55:
df:7e:25:10:34:29:06:da:53:3e:8c:1c:c9:47:00:
f0:b1:11:53:e1:29:45:e2:54:11:a2:64:56:da:fb:
d5:8a:c2:70:25:d6:28:59:eb:99:3e:07:bc:3f:39:
39:eb:3e:a7:10:54:7d:39:92:a1:e6:ae:7d:a5:4b:
99:ae:ef:92:28:71:0b:5e:a2:86:25:94:d4:ae:f6:
d3:b7:67:56:ea:7f:4b:6b:af:5a:3a:38:25:c0:42:
fa:5f:8a:60:62:c8:27:fd:6d:22:d5:ea:7d:e8:ff:
77:d3:3d:83:18:c7:43:54:64:1d:42:38:e1:da:34:
6d:d5:b9:38:8f:19:2c:8a:a7:8f:a5:5c:dd:c2:61:
a7:b6:7f:81:ea:5d:89:49:ee:91:56:37:8a:05:fd:
44:3f:be:bd:77:04:ef:5b:af:be:8c:81:43:d4:a2:
d8:6e:41:d7:7c:63:de:60:af:14:09:a6:bb:8e:15:
bb:58:b2:d3:15:78:ee:83:da:26:3f:9f:2b:e9:b1:
48:ff:c5:6d:ea:24:ca:9c:ad:40:85:30:e6:e9:fe:
c7:29:fe:60:d5:e8:03:48:a8:fd:fe:81:90:bd:68:
2b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:0C:90:B8:56:A6:5F:39:70:4F:F6:71:68:A4:A4:2F:0D:BC:B3:4F
X509v3 Authority Key Identifier:
keyid:3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:2a:97:59:e9:7a:75:e9:70:d7:b0:0b:d1:bc:8c:cb:4f:f0:
81:43:7b:4a:bc:a9:be:d8:fb:18:f4:07:c2:ce:b5:e7:19:12:
58:3b:cc:e5:6f:f9:62:11:7c:bc:ce:22:fb:c9:46:42:c9:1a:
d7:ce:84:66:2e:f4:cd:dd:93:5c:9f:94:05:1d:21:b2:b6:c8:
4b:b9:7c:c3:3c:66:39:9e:96:20:c3:5b:d7:98:9d:4e:b1:5f:
9c:72:64:d9:39:a0:9a:c1:52:1b:58:03:0a:97:eb:c1:a1:88:
05:1b:86:91:01:04:13:5b:99:95:82:ec:85:d8:5a:ed:11:bf:
aa:c5:a8:d3:9c:78:45:95:18:a6:aa:57:3b:77:b1:26:2c:03:
d3:4a:5c:c1:00:91:77:00:59:80:1b:a9:1f:d0:32:c2:a8:26:
62:7c:8a:7f:82:84:cb:34:c9:d1:dc:75:e8:86:98:2b:b9:e8:
82:7e:58:e0:a9:d6:1d:0f:34:83:cb:29:a7:0f:63:cb:b5:e9:
50:f5:af:dd:d8:cc:4d:b9:15:90:61:2d:2e:dd:76:14:35:10:
e0:e2:6d:eb:60:95:f9:62:63:c3:96:fe:d9:98:06:c4:4c:4e:
f4:34:01:ec:91:c4:57:17:bc:e5:ec:4e:0d:f8:80:ea:d1:61:
7e:9d:7c:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVvA/NSTZVrIZB0QA8ih7vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiYzQ2ODMyNzEyOWE1MDE3Yjk3NmRjOGVkYWM5ZDFiOWU5
YTE0Y2MwHhcNMjUwODIzMDcwMjA4WhcNMjUwODI0MDcwMjA4WjAzMTEwLwYDVQQD
EygxNTBjOTBiODU2YTY1ZjM5NzA0ZmY2NzE2OGE0YTQyZjBkYmNiMzRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJ9Srm9lnDZdx94XsuGWor9P/amq
I7vdGJVLeVXffiUQNCkG2lM+jBzJRwDwsRFT4SlF4lQRomRW2vvVisJwJdYoWeuZ
Pge8Pzk56z6nEFR9OZKh5q59pUuZru+SKHELXqKGJZTUrvbTt2dW6n9La69aOjgl
wEL6X4pgYsgn/W0i1ep96P930z2DGMdDVGQdQjjh2jRt1bk4jxksiqePpVzdwmGn
tn+B6l2JSe6RVjeKBf1EP769dwTvW6++jIFD1KLYbkHXfGPeYK8UCaa7jhW7WLLT
FXjug9omP58r6bFI/8Vt6iTKnK1AhTDm6f7HKf5g1egDSKj9/oGQvWgrgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBUMkLhWpl85cE/2cWikpC8NvLNPMB8GA1UdIwQY
MBaAFDvEaDJxKaUBe5dtyO2snRuemhTMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzhSb01uRXBwUUY3bDIzSTdheWRHNTZhRk13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC84ZDRjMDMtNWZjNy00MWFjLTk0ZjYt
MWYwMmM3ZTkyM2IzLzEvTzhSb01uRXBwUUY3bDIzSTdheWRHNTZhRk13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC84ZDRjMDMtNWZjNy00MWFjLTk0ZjYtMWYwMmM3ZTkyM2Iz
LzEvTzhSb01uRXBwUUY3bDIzSTdheWRHNTZhRk13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABSqXWel6
delw17AL0byMy0/wgUN7Srypvtj7GPQHws615xkSWDvM5W/5YhF8vM4i+8lGQska
186EZi70zd2TXJ+UBR0hsrbIS7l8wzxmOZ6WIMNb15idTrFfnHJk2TmgmsFSG1gD
CpfrwaGIBRuGkQEEE1uZlYLshdha7RG/qsWo05x4RZUYpqpXO3exJiwD00pcwQCR
dwBZgBupH9AywqgmYnyKf4KEyzTJ0dx16IaYK7nogn5Y4KnWHQ80g8sppw9jy7Xp
UPWv3djMTbkVkGEtLt12FDUQ4OJt62CV+WJjw5b+2ZgGxExO9DQB7JHEVxe85exO
DfiA6tFhfp18YQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:15:09 2025 by rpki-client