Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
File: oQIHcvYouPtR80dRNrd_60smmL4.mft (raw, json)
Hash identifier: ZoYpr/0Vi24WxzbwqkqSZQaoONFj8pXbEG/s4nrMqYw=
Subject key identifier: 54:C2:30:6D:D3:E2:DE:88:F8:C7:8B:32:84:55:DC:72:22:4B:3A:1A
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 0198D5F130DDAA6E48D1598EA29AEE04292A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
Manifest number: 1292
Signing time: Sat 23 Aug 2025 08:00:10 +0000
Manifest this update: Sat 23 Aug 2025 08:00:10 +0000
Manifest next update: Sun 24 Aug 2025 08:00:10 +0000
Files and hashes: 1: Xn7HlAmazqZObEY4Svfv4ZbMChM.roa (hash: 900LVbegyuqsxm1Su/VFGub5Wi1DlW68cWbr8g1USwo=)
2: oQIHcvYouPtR80dRNrd_60smmL4.crl (hash: 7UIyGL8v/Uxyxx4bZH1ibDGHgpg3X68+USPURyxnD0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:30:dd:aa:6e:48:d1:59:8e:a2:9a:ee:04:29:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Aug 23 08:00:10 2025 GMT
Not After : Aug 24 08:00:10 2025 GMT
Subject: CN=54c2306dd3e2de88f8c78b328455dc72224b3a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ea:79:21:e0:c8:88:60:f6:ca:dd:c2:5f:d8:
bf:8e:1e:fe:70:2c:e1:42:81:f4:68:87:b9:4d:86:
ca:a3:e0:56:38:23:d0:c1:50:6c:7c:df:e8:6e:5a:
34:5d:fa:d7:77:61:00:17:15:92:da:4a:62:46:f4:
5d:d0:73:72:d9:84:1e:7d:7f:7e:f3:fa:f4:ab:a3:
ef:65:a8:67:07:20:c4:e6:e8:bf:63:28:bb:e0:97:
27:47:9c:17:b2:fa:a5:86:dc:0f:37:6c:2e:fb:ad:
7e:09:c5:88:33:ff:75:65:92:c2:0f:f7:f8:62:34:
26:0b:dc:41:af:12:ea:22:db:e7:8b:ff:ac:7e:fd:
1b:36:8f:19:6b:26:6f:ff:b7:83:26:ac:cf:dc:18:
16:af:77:8c:a1:d3:01:92:e7:86:db:19:90:ac:10:
d9:52:a5:99:67:80:88:1c:1d:01:8f:53:a1:34:6f:
09:91:62:17:8d:5e:6e:d3:4e:de:da:ce:07:ad:0e:
9e:82:29:77:05:93:e0:ce:fc:f7:dc:3d:ff:52:d3:
fa:94:c4:10:f9:46:dc:cd:7b:50:58:58:3d:37:bc:
8f:ee:35:c8:73:9a:45:84:5e:36:1d:30:4c:00:b4:
dd:bc:ef:46:ea:cc:3b:33:40:d7:9c:50:79:5c:97:
b7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C2:30:6D:D3:E2:DE:88:F8:C7:8B:32:84:55:DC:72:22:4B:3A:1A
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:80:91:5b:d1:b3:a2:db:0c:1e:6b:37:bd:55:f7:e0:0b:8b:
b1:87:93:0c:cc:cd:0b:05:5a:6c:e5:6a:f0:e7:b9:ee:c0:16:
92:15:d8:d8:02:78:19:68:4b:ad:98:91:82:97:3a:8b:c0:ce:
ec:7a:dc:00:37:aa:d3:35:cc:a9:81:df:b1:4a:bf:7c:6e:98:
77:1d:8c:ae:81:3f:1b:26:7b:5c:82:87:d8:a3:f4:d7:1b:75:
30:08:17:da:cb:4a:73:73:ef:c0:7c:1f:45:55:bf:98:23:83:
7f:f9:16:34:9a:56:12:62:5c:c7:9c:03:aa:cc:26:bb:85:bb:
69:97:a3:88:08:6a:cf:21:71:2b:58:ad:6b:ac:15:72:90:63:
9e:a0:71:06:d8:90:50:9a:3d:29:8c:fa:a6:54:84:48:7c:99:
33:d0:1f:78:97:52:eb:c1:d0:40:05:b4:6e:96:fb:1d:e5:d7:
47:44:5a:13:0c:dc:13:e5:e9:71:9a:f6:37:52:5f:df:f9:21:
fc:94:5c:6b:90:81:12:d5:30:bd:7b:52:36:a5:23:92:17:cf:
bb:88:1d:6d:2d:f4:76:80:82:0c:cd:3a:eb:5a:ac:36:48:0c:
b3:63:db:f3:16:1e:67:c9:af:f3:cb:cd:85:62:94:c6:34:10:
ea:03:bc:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8TDdqm5I0VmOopruBCkqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExMDIwNzcyZjYyOGI4ZmI1MWYzNDc1MTM2Yjc3ZmViNGIy
Njk4YmUwHhcNMjUwODIzMDgwMDEwWhcNMjUwODI0MDgwMDEwWjAzMTEwLwYDVQQD
Eyg1NGMyMzA2ZGQzZTJkZTg4ZjhjNzhiMzI4NDU1ZGM3MjIyNGIzYTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+p5IeDIiGD2yt3CX9i/jh7+cCzh
QoH0aIe5TYbKo+BWOCPQwVBsfN/oblo0XfrXd2EAFxWS2kpiRvRd0HNy2YQefX9+
8/r0q6PvZahnByDE5ui/Yyi74JcnR5wXsvqlhtwPN2wu+61+CcWIM/91ZZLCD/f4
YjQmC9xBrxLqItvni/+sfv0bNo8ZayZv/7eDJqzP3BgWr3eModMBkueG2xmQrBDZ
UqWZZ4CIHB0Bj1OhNG8JkWIXjV5u007e2s4HrQ6egil3BZPgzvz33D3/UtP6lMQQ
+UbczXtQWFg9N7yP7jXIc5pFhF42HTBMALTdvO9G6sw7M0DXnFB5XJe3WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFTCMG3T4t6I+MeLMoRV3HIiSzoaMB8GA1UdIwQY
MBaAFKECB3L2KLj7UfNHUTa3f+tLJpi+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1FJSGN2WW91UHRSODBkUk5yZF82MHNtbUw0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS81NTA0MzEtNjE3NC00N2QyLThiYWIt
NTFhZjgyOTY1ZTMzLzEvb1FJSGN2WW91UHRSODBkUk5yZF82MHNtbUw0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS81NTA0MzEtNjE3NC00N2QyLThiYWItNTFhZjgyOTY1ZTMz
LzEvb1FJSGN2WW91UHRSODBkUk5yZF82MHNtbUw0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1ICRW9Gz
otsMHms3vVX34AuLsYeTDMzNCwVabOVq8Oe57sAWkhXY2AJ4GWhLrZiRgpc6i8DO
7HrcADeq0zXMqYHfsUq/fG6Ydx2MroE/GyZ7XIKH2KP01xt1MAgX2stKc3PvwHwf
RVW/mCODf/kWNJpWEmJcx5wDqswmu4W7aZejiAhqzyFxK1ita6wVcpBjnqBxBtiQ
UJo9KYz6plSESHyZM9AfeJdS68HQQAW0bpb7HeXXR0RaEwzcE+XpcZr2N1Jf3/kh
/JRca5CBEtUwvXtSNqUjkhfPu4gdbS30doCCDM0661qsNkgMs2Pb8xYeZ8mv88vN
hWKUxjQQ6gO8eg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:20 2025 by rpki-client