Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: Siy/ViyZMLAnGTUBIokduajvhX7n05z+iJ7JEGGvZcc=
Subject key identifier: A6:D6:10:0E:5B:D1:E4:0E:AA:A0:EC:E0:A2:ED:FB:4A:E9:7D:E7:5B
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 0198D65EFA3F972B40505F89CEB68302605D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0CAE
Signing time: Sat 23 Aug 2025 10:00:05 +0000
Manifest this update: Sat 23 Aug 2025 10:00:05 +0000
Manifest next update: Sun 24 Aug 2025 10:00:05 +0000
Files and hashes: 1: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: 4vmOV4jcgNaQqVOQMXiphb8Ya9z4YAZvdeHdOylJbsE=)
2: RNk_0Bt2Bdlaf0Pdd2eUPaMyW8E.roa (hash: m6J+0888VMRpST0J5iXwVh9t9K8LOLn/EV2xZ10pPjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5e:fa:3f:97:2b:40:50:5f:89:ce:b6:83:02:60:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Aug 23 10:00:05 2025 GMT
Not After : Aug 24 10:00:05 2025 GMT
Subject: CN=a6d6100e5bd1e40eaaa0ece0a2edfb4ae97de75b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cc:d4:66:19:14:9c:a4:e4:f5:a2:a0:e8:b9:
92:b0:49:77:87:c5:84:01:88:1b:b6:de:2e:fc:52:
12:22:56:ac:52:ae:29:ed:3b:bf:9d:b3:8f:4f:4d:
37:0e:9d:4c:5c:65:20:91:b6:0b:de:a2:87:74:c1:
02:df:ac:2e:03:8d:e2:ed:dc:dc:c2:51:de:a1:a7:
9c:ef:99:ac:35:f2:e2:24:95:37:7f:1f:8d:a4:d3:
d3:d4:61:7d:18:7c:4b:3a:01:4c:7f:ee:1b:36:7b:
33:8d:c9:4e:05:bf:ff:be:24:0e:b4:d0:58:70:e6:
c7:a0:62:4c:57:f4:67:a0:a7:ad:b8:b7:f3:2b:cd:
19:ad:fa:71:7f:0e:67:c4:ef:02:d8:1c:34:11:a3:
af:5a:81:ad:39:c8:62:5c:a8:11:8c:a9:39:2a:9b:
56:61:d9:4f:bb:f0:fc:f7:8c:bb:89:63:f3:cd:30:
d0:6a:32:64:08:77:0d:e8:66:49:51:e2:2f:1c:00:
f3:88:78:b2:ca:3f:e6:ce:3c:b4:75:d2:9e:6e:e1:
40:ea:50:35:60:81:e6:6c:9c:5f:c5:7c:fb:8d:46:
48:b6:5e:09:4e:1f:d1:30:80:e3:d1:54:c1:19:6f:
a6:b7:a7:56:9e:56:cc:07:3c:c1:8e:21:bd:f6:09:
19:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D6:10:0E:5B:D1:E4:0E:AA:A0:EC:E0:A2:ED:FB:4A:E9:7D:E7:5B
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:f7:cd:fd:fa:94:01:3a:c1:59:83:d8:0d:79:1f:24:1a:2d:
e0:b9:5b:b1:97:dc:ed:49:f7:c8:f8:b1:a0:f0:77:63:35:60:
9b:20:3c:74:4b:19:91:5b:db:7c:96:93:98:49:04:27:84:0e:
c5:c5:83:dc:19:48:10:04:33:ac:94:2d:2a:03:8d:92:35:a0:
f1:a3:62:61:80:e3:e7:00:9c:23:7d:91:23:20:2f:16:5c:99:
81:3e:aa:71:6f:61:c2:a7:e3:64:b3:57:c4:1b:d9:f0:68:90:
83:00:65:b5:e6:ab:c0:38:37:28:63:a8:c7:cd:25:e7:b3:9b:
a0:a6:9b:f9:d3:0a:b6:b5:21:5a:df:96:ba:9a:c9:91:fd:7a:
9c:8b:02:fb:9b:ea:28:91:53:41:c3:48:e2:3a:dd:0d:28:2d:
a0:3f:d0:b9:bd:de:9e:ef:fc:01:eb:b2:21:3e:55:75:8b:2e:
cc:d7:a8:75:3c:61:b1:c0:0d:f3:56:ac:74:7d:43:a6:97:31:
af:7b:9a:3c:7d:16:eb:d8:b2:2b:eb:fa:b4:64:a8:0b:0e:46:
9b:56:c4:29:8f:0e:d4:b0:46:64:34:23:83:cd:22:7d:91:fa:
aa:9b:3f:65:a0:0d:25:e0:aa:e7:88:da:59:b9:c8:8e:dd:3c:
d3:27:b9:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWXvo/lytAUF+JzraDAmBdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmOWEyZDIzNzRhYTZhYzcxNGI1ZjhhNmVkZGI4MGRjNjk2
NzljYzYwHhcNMjUwODIzMTAwMDA1WhcNMjUwODI0MTAwMDA1WjAzMTEwLwYDVQQD
EyhhNmQ2MTAwZTViZDFlNDBlYWFhMGVjZTBhMmVkZmI0YWU5N2RlNzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMzUZhkUnKTk9aKg6LmSsEl3h8WE
AYgbtt4u/FISIlasUq4p7Tu/nbOPT003Dp1MXGUgkbYL3qKHdMEC36wuA43i7dzc
wlHeoaec75msNfLiJJU3fx+NpNPT1GF9GHxLOgFMf+4bNnszjclOBb//viQOtNBY
cObHoGJMV/RnoKetuLfzK80Zrfpxfw5nxO8C2Bw0EaOvWoGtOchiXKgRjKk5KptW
YdlPu/D894y7iWPzzTDQajJkCHcN6GZJUeIvHADziHiyyj/mzjy0ddKebuFA6lA1
YIHmbJxfxXz7jUZItl4JTh/RMIDj0VTBGW+mt6dWnlbMBzzBjiG99gkZ4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKbWEA5b0eQOqqDs4KLt+0rpfedbMB8GA1UdIwQY
MBaAFA+aLSN0qmrHFLX4pu3bgNxpZ5zGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wMDI0OGMtMzc5MS00NjI5LWE2YzYt
NmQ5NzE5OTJjMzQ5LzEvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi8wMDI0OGMtMzc5MS00NjI5LWE2YzYtNmQ5NzE5OTJjMzQ5
LzEvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAvfN/fqU
ATrBWYPYDXkfJBot4LlbsZfc7Un3yPixoPB3YzVgmyA8dEsZkVvbfJaTmEkEJ4QO
xcWD3BlIEAQzrJQtKgONkjWg8aNiYYDj5wCcI32RIyAvFlyZgT6qcW9hwqfjZLNX
xBvZ8GiQgwBltearwDg3KGOox80l57OboKab+dMKtrUhWt+WuprJkf16nIsC+5vq
KJFTQcNI4jrdDSgtoD/Qub3enu/8AeuyIT5VdYsuzNeodTxhscAN81asdH1Dppcx
r3uaPH0W69iyK+v6tGSoCw5Gm1bEKY8O1LBGZDQjg80ifZH6qps/ZaANJeCq54ja
WbnIjt080ye5OQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:21:39 2025 by rpki-client