Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bba0f-d56d-4d7f-a8b5-4c87fe5fdadc/1/O63rHzjiUanY1hTzLTbyat9P1YA.mft
File: O63rHzjiUanY1hTzLTbyat9P1YA.mft (raw, json)
Hash identifier: /x3UjEMohydwE0fQoE/S8n8LDz1m1Q5HhMTYSP6dPo8=
Subject key identifier: 2B:D9:3E:13:87:03:A4:08:92:15:1F:3D:88:EB:4F:C4:B9:54:4E:09
Authority key identifier: 3B:AD:EB:1F:38:E2:51:A9:D8:D6:14:F3:2D:36:F2:6A:DF:4F:D5:80
Certificate issuer: /CN=3badeb1f38e251a9d8d614f32d36f26adf4fd580
Certificate serial: 0198D4E0A579452ED5FFA6B2D4C83EB81073
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O63rHzjiUanY1hTzLTbyat9P1YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bba0f-d56d-4d7f-a8b5-4c87fe5fdadc/1/O63rHzjiUanY1hTzLTbyat9P1YA.mft
Manifest number: 0DF4
Signing time: Sat 23 Aug 2025 03:02:28 +0000
Manifest this update: Sat 23 Aug 2025 03:02:28 +0000
Manifest next update: Sun 24 Aug 2025 03:02:28 +0000
Files and hashes: 1: O63rHzjiUanY1hTzLTbyat9P1YA.crl (hash: sM30V3Xqz36AKiRz8xzNRRuSdZ3im9tHj0piAHgjpHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/1bba0f-d56d-4d7f-a8b5-4c87fe5fdadc/1/O63rHzjiUanY1hTzLTbyat9P1YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/1bba0f-d56d-4d7f-a8b5-4c87fe5fdadc/1/O63rHzjiUanY1hTzLTbyat9P1YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/O63rHzjiUanY1hTzLTbyat9P1YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:a5:79:45:2e:d5:ff:a6:b2:d4:c8:3e:b8:10:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3badeb1f38e251a9d8d614f32d36f26adf4fd580
Validity
Not Before: Aug 23 03:02:28 2025 GMT
Not After : Aug 24 03:02:28 2025 GMT
Subject: CN=2bd93e138703a40892151f3d88eb4fc4b9544e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:66:16:9b:7b:a8:2c:8a:5e:e5:b2:53:10:c8:
ec:cd:2f:40:07:e3:56:ed:73:5c:a8:b6:7e:1d:01:
22:92:d6:ac:e1:6b:69:fc:8a:96:a4:b2:56:14:1d:
b9:56:f1:45:3a:a9:bc:9b:74:2f:da:d0:cf:68:a9:
5a:78:7d:10:3a:dd:76:9a:f3:7c:0b:ba:2d:92:32:
27:bb:77:c6:56:41:56:cb:79:bb:d2:94:0b:1e:d1:
ab:02:65:36:24:b4:ce:71:42:b8:28:71:a0:8a:84:
32:9a:7f:9f:28:0e:4e:41:84:da:8c:40:39:51:82:
ae:71:7f:25:7c:c9:7d:00:ed:fc:10:76:47:22:58:
4f:9f:85:77:be:0f:0c:11:e5:c1:68:b5:72:34:25:
a1:7c:0a:1e:00:be:63:eb:d6:bd:5f:67:4f:2e:8f:
c1:9a:de:6c:aa:09:40:80:d3:59:a3:a9:7b:b6:f9:
62:79:05:f6:bc:85:68:98:4a:50:8a:c1:2c:eb:ba:
94:4f:01:d8:68:b7:ca:6c:92:14:81:81:6c:29:17:
46:0d:22:b0:82:39:83:4e:52:8c:ce:69:3a:ea:f6:
05:94:74:fb:ec:73:08:05:8b:97:36:e8:48:ad:48:
4e:21:a7:ea:ee:6e:12:c2:9a:df:e5:fb:af:d5:6c:
43:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D9:3E:13:87:03:A4:08:92:15:1F:3D:88:EB:4F:C4:B9:54:4E:09
X509v3 Authority Key Identifier:
keyid:3B:AD:EB:1F:38:E2:51:A9:D8:D6:14:F3:2D:36:F2:6A:DF:4F:D5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O63rHzjiUanY1hTzLTbyat9P1YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bba0f-d56d-4d7f-a8b5-4c87fe5fdadc/1/O63rHzjiUanY1hTzLTbyat9P1YA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bba0f-d56d-4d7f-a8b5-4c87fe5fdadc/1/O63rHzjiUanY1hTzLTbyat9P1YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:68:bc:0b:6d:7d:ac:b5:43:26:1d:52:71:db:39:8c:9e:28:
1d:81:f0:bd:00:9e:29:08:7e:ea:54:20:a1:7c:dd:95:bf:16:
1d:8a:bd:b4:05:d5:54:71:b2:d9:99:9c:8e:88:dd:f1:d0:16:
47:fa:bc:6b:e9:7c:5d:49:c1:4e:86:4d:cd:0e:b4:90:a0:45:
39:93:69:6b:8a:c8:a2:6f:1a:37:27:be:7a:15:0f:e9:5c:06:
0c:2b:68:23:18:98:f6:0c:d0:a6:9e:9f:99:72:80:eb:9e:ad:
27:2e:f4:72:dc:e9:d0:f5:7f:b3:a3:2a:01:8a:4a:eb:16:07:
57:33:3f:b0:50:9c:a5:b5:4e:d7:8a:cd:74:8c:0e:33:eb:67:
a3:bc:dd:0f:8f:19:ae:19:12:f2:12:5d:a6:62:6d:49:70:32:
36:67:89:b5:90:e7:41:dc:aa:61:92:d0:63:d3:28:f0:4b:b9:
d0:f5:86:7c:7c:b7:0b:82:98:f3:c4:80:b4:e4:00:5c:1f:8c:
e8:22:19:a5:2f:71:80:00:39:85:b7:33:c4:fc:ca:c1:1d:39:
87:1e:24:2d:d0:3b:50:7f:a3:96:5a:4a:66:2f:f9:d0:6f:71:
9e:74:b1:a7:b8:8f:fa:c1:0e:16:51:3c:1e:a7:cb:96:4e:52:
65:75:f4:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4KV5RS7V/6ay1Mg+uBBzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiYWRlYjFmMzhlMjUxYTlkOGQ2MTRmMzJkMzZmMjZhZGY0
ZmQ1ODAwHhcNMjUwODIzMDMwMjI4WhcNMjUwODI0MDMwMjI4WjAzMTEwLwYDVQQD
EygyYmQ5M2UxMzg3MDNhNDA4OTIxNTFmM2Q4OGViNGZjNGI5NTQ0ZTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2YWm3uoLIpe5bJTEMjszS9AB+NW
7XNcqLZ+HQEiktas4Wtp/IqWpLJWFB25VvFFOqm8m3Qv2tDPaKlaeH0QOt12mvN8
C7otkjInu3fGVkFWy3m70pQLHtGrAmU2JLTOcUK4KHGgioQymn+fKA5OQYTajEA5
UYKucX8lfMl9AO38EHZHIlhPn4V3vg8MEeXBaLVyNCWhfAoeAL5j69a9X2dPLo/B
mt5sqglAgNNZo6l7tvlieQX2vIVomEpQisEs67qUTwHYaLfKbJIUgYFsKRdGDSKw
gjmDTlKMzmk66vYFlHT77HMIBYuXNuhIrUhOIafq7m4Swprf5fuv1WxD+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCvZPhOHA6QIkhUfPYjrT8S5VE4JMB8GA1UdIwQY
MBaAFDut6x844lGp2NYU8y028mrfT9WAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzYzckh6amlVYW5ZMWhUekxUYnlhdDlQMVlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8xYmJhMGYtZDU2ZC00ZDdmLWE4YjUt
NGM4N2ZlNWZkYWRjLzEvTzYzckh6amlVYW5ZMWhUekxUYnlhdDlQMVlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8xYmJhMGYtZDU2ZC00ZDdmLWE4YjUtNGM4N2ZlNWZkYWRj
LzEvTzYzckh6amlVYW5ZMWhUekxUYnlhdDlQMVlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHWi8C219
rLVDJh1Scds5jJ4oHYHwvQCeKQh+6lQgoXzdlb8WHYq9tAXVVHGy2Zmcjojd8dAW
R/q8a+l8XUnBToZNzQ60kKBFOZNpa4rIom8aNye+ehUP6VwGDCtoIxiY9gzQpp6f
mXKA656tJy70ctzp0PV/s6MqAYpK6xYHVzM/sFCcpbVO14rNdIwOM+tno7zdD48Z
rhkS8hJdpmJtSXAyNmeJtZDnQdyqYZLQY9Mo8Eu50PWGfHy3C4KY88SAtOQAXB+M
6CIZpS9xgAA5hbczxPzKwR05hx4kLdA7UH+jllpKZi/50G9xnnSxp7iP+sEOFlE8
HqfLlk5SZXX0gA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:14:45 2025 by rpki-client