Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
File: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft (raw, json)
Hash identifier: B6n7t8BhqixXx89raMtdEC2juXVnoOYJK5w0HzATTLg=
Subject key identifier: 18:53:DE:42:FD:0F:AE:5F:34:79:DE:C7:74:F8:3B:86:93:31:61:FF
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 0199FB46388A35587FF1EB87B50E6393A524
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
Manifest number: 0BAF
Signing time: Sun 19 Oct 2025 07:01:47 +0000
Manifest this update: Sun 19 Oct 2025 07:01:47 +0000
Manifest next update: Mon 20 Oct 2025 07:01:47 +0000
Files and hashes: 1: F3oEv0QBT7ejRZnF2aTKoyEK5cI.roa (hash: MTTLBQPL1aOScQOGtAiCwXpSCEzlrz60TWKC9wTFgO4=)
2: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl (hash: Udv3JK/DnsdD4dGGwkDeGA54Ck4r6PBzHBaiZHuzuDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:38:8a:35:58:7f:f1:eb:87:b5:0e:63:93:a5:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: Oct 19 07:01:47 2025 GMT
Not After : Oct 20 07:01:47 2025 GMT
Subject: CN=1853de42fd0fae5f3479dec774f83b86933161ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:50:5f:87:a1:e9:8c:10:39:cf:c5:cd:60:61:
70:6b:36:f5:de:ff:69:25:df:2e:99:3a:a8:19:6d:
df:ae:17:87:af:ed:3a:6d:e4:4b:04:93:13:fd:46:
58:27:c8:98:f0:c5:c7:5f:17:7e:c8:d4:91:3e:d5:
d1:85:8c:51:70:07:f9:3e:94:72:01:9f:68:e5:01:
38:30:de:be:15:38:d3:63:d7:02:d5:08:3d:eb:a2:
7e:66:cf:e1:01:e6:04:6b:45:05:13:94:9a:ef:46:
06:7c:45:e1:b7:3d:da:45:2c:ac:9b:f8:78:1d:f1:
f2:1f:84:11:e4:02:3a:91:5e:87:bf:9a:ae:55:e5:
a7:02:cb:9e:a8:d2:e7:e2:a6:a1:2f:44:ce:66:56:
59:d2:6e:22:53:fa:74:5b:75:0b:3d:d4:20:cb:ed:
74:4b:90:d8:5a:ed:cc:85:f6:f3:c7:10:3c:38:33:
76:9b:94:44:4a:4d:b8:d0:29:81:26:07:d0:59:be:
ca:82:3c:26:73:4c:11:d7:e0:3a:08:d7:72:9d:5f:
8b:4c:3c:5f:7b:fd:38:c6:bb:7d:8e:44:6e:06:b8:
88:9e:1a:c7:4e:b4:98:e5:23:73:99:69:75:4f:0f:
5e:5c:db:23:f4:05:2d:5a:ef:5a:68:6f:19:e8:fe:
ff:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:53:DE:42:FD:0F:AE:5F:34:79:DE:C7:74:F8:3B:86:93:31:61:FF
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:13:fe:cc:bc:79:a5:1c:8f:df:ca:37:a9:cc:a3:c7:9c:fa:
2f:2b:0b:02:37:79:f0:36:9c:95:3d:c0:b2:e5:f8:ab:81:69:
bf:a2:0c:80:61:32:fa:d7:ed:84:b0:c4:d0:77:ed:45:c3:5a:
22:79:a4:cc:b4:01:32:7b:49:9b:2b:3e:ce:96:c6:f6:9f:a3:
ee:b2:49:e3:9c:3e:b8:8f:bd:57:18:7b:0d:e9:43:be:98:dd:
48:6e:3b:0a:95:f0:e3:08:ba:73:94:87:02:0e:c4:c1:00:82:
94:ee:e5:36:80:6f:54:1d:41:a0:71:a5:5b:2f:de:dd:c6:42:
76:fc:09:8f:08:60:3f:50:45:56:3d:f3:93:98:4b:00:21:ed:
f6:77:2b:d1:da:93:4c:98:d8:24:1e:ad:ea:b2:35:7c:3d:6b:
df:b9:9c:65:b7:6a:da:3d:63:0b:20:58:71:41:89:59:dc:51:
d0:70:42:2a:f0:f0:92:f3:64:26:bc:29:d1:95:04:8f:ec:04:
76:bc:b6:2a:cd:87:b7:9f:cf:55:56:fb:12:c3:ad:0b:e7:0b:
5c:ff:af:9a:df:cd:3a:cf:6d:70:1b:ed:14:b7:d2:52:65:dc:
7c:aa:f5:19:d9:d0:15:e3:70:f8:25:51:b3:3c:81:79:a6:3f:
51:10:60:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7RjiKNVh/8euHtQ5jk6UkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZjQ2OGQxNTE1YWQ2ZjE0Y2E2OWNmOWM3NzJlNWNiNTdk
Mjc3ZDYwHhcNMjUxMDE5MDcwMTQ3WhcNMjUxMDIwMDcwMTQ3WjAzMTEwLwYDVQQD
EygxODUzZGU0MmZkMGZhZTVmMzQ3OWRlYzc3NGY4M2I4NjkzMzE2MWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1Bfh6HpjBA5z8XNYGFwazb13v9p
Jd8umTqoGW3frheHr+06beRLBJMT/UZYJ8iY8MXHXxd+yNSRPtXRhYxRcAf5PpRy
AZ9o5QE4MN6+FTjTY9cC1Qg966J+Zs/hAeYEa0UFE5Sa70YGfEXhtz3aRSysm/h4
HfHyH4QR5AI6kV6Hv5quVeWnAsueqNLn4qahL0TOZlZZ0m4iU/p0W3ULPdQgy+10
S5DYWu3MhfbzxxA8ODN2m5RESk240CmBJgfQWb7Kgjwmc0wR1+A6CNdynV+LTDxf
e/04xrt9jkRuBriInhrHTrSY5SNzmWl1Tw9eXNsj9AUtWu9aaG8Z6P7/ZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBhT3kL9D65fNHnex3T4O4aTMWH/MB8GA1UdIwQY
MBaAFDv0aNFRWtbxTKac+cdy5ctX0nfWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT19SbzBWRmExdkZNcHB6NXgzTGx5MWZTZDlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC84MjFmMzUtYTg4MC00ZDY0LWFkYzAt
NDYxMTA0NmYxYTRlLzEvT19SbzBWRmExdkZNcHB6NXgzTGx5MWZTZDlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC84MjFmMzUtYTg4MC00ZDY0LWFkYzAtNDYxMTA0NmYxYTRl
LzEvT19SbzBWRmExdkZNcHB6NXgzTGx5MWZTZDlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAehP+zLx5
pRyP38o3qcyjx5z6LysLAjd58DaclT3AsuX4q4Fpv6IMgGEy+tfthLDE0HftRcNa
InmkzLQBMntJmys+zpbG9p+j7rJJ45w+uI+9Vxh7DelDvpjdSG47CpXw4wi6c5SH
Ag7EwQCClO7lNoBvVB1BoHGlWy/e3cZCdvwJjwhgP1BFVj3zk5hLACHt9ncr0dqT
TJjYJB6t6rI1fD1r37mcZbdq2j1jCyBYcUGJWdxR0HBCKvDwkvNkJrwp0ZUEj+wE
dry2Ks2Ht5/PVVb7EsOtC+cLXP+vmt/NOs9tcBvtFLfSUmXcfKr1GdnQFeNw+CVR
szyBeaY/URBgwg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:30 2025 by rpki-client