Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
File: OX2fPb_DZTMuKCvRdqaAdURtHRs.mft (raw, json)
Hash identifier: fmpTE40JuLdB7VpupvV+2ALLi7qRoeE4BRBhwYAQVrQ=
Subject key identifier: CD:E0:E9:71:E3:E9:7A:DB:3E:96:E0:7B:4C:2D:FC:09:34:70:9A:BB
Authority key identifier: 39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
Certificate issuer: /CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Certificate serial: 0198D4044A1FB6481BB15D294369B8EC19E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
Manifest number: 106D
Signing time: Fri 22 Aug 2025 23:01:47 +0000
Manifest this update: Fri 22 Aug 2025 23:01:47 +0000
Manifest next update: Sat 23 Aug 2025 23:01:47 +0000
Files and hashes: 1: OX2fPb_DZTMuKCvRdqaAdURtHRs.crl (hash: 6KyycvdUhQxEua/9ziO6MQjPjakt0uciMJO0TsdrrAQ=)
2: PKmiIVXi-5ieWf281G2v09ZDGMA.roa (hash: 6UbdjRvfhwNfGfOQcI0HpEZ2pxwE+yP96jeW3uJG9VU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:4a:1f:b6:48:1b:b1:5d:29:43:69:b8:ec:19:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Validity
Not Before: Aug 22 23:01:47 2025 GMT
Not After : Aug 23 23:01:47 2025 GMT
Subject: CN=cde0e971e3e97adb3e96e07b4c2dfc0934709abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:15:03:dd:8f:ff:15:ad:69:16:62:2f:45:18:
b2:70:37:2c:01:7e:88:d9:c8:ab:22:87:46:ec:21:
7b:29:00:a9:05:4d:61:f3:4e:ac:f5:37:8c:54:14:
63:71:88:f8:c5:bb:64:d2:a9:a0:34:05:ec:9f:72:
64:27:7d:23:5c:da:d2:04:58:03:b4:fc:a1:9e:57:
2d:57:7c:3e:5c:50:6c:c5:cc:b3:45:19:22:61:48:
8f:2e:62:69:4b:2f:e5:fc:40:51:c7:6c:ca:16:8f:
61:30:b2:f7:ce:87:64:13:09:d8:38:87:68:20:e9:
cc:fd:ca:6a:65:d5:8f:89:92:b3:35:62:eb:7b:ad:
17:dc:c3:1d:b0:fc:9a:5c:ee:ed:45:1f:04:2e:86:
e9:f9:88:64:f4:91:f6:d3:5c:af:0a:fe:9f:ef:cd:
bd:bb:b5:8d:af:9c:58:dd:54:35:63:00:0c:74:f8:
ee:e6:44:86:9c:b3:54:04:0e:44:db:b0:01:df:65:
9f:10:76:a0:fa:dd:f7:f0:14:d0:6e:83:30:e8:c1:
33:ed:14:bf:96:7b:9d:11:8e:b6:ce:bd:8c:43:c8:
8b:81:89:29:aa:5b:9e:43:c4:ef:7b:31:70:06:78:
40:bd:94:5d:a6:49:d4:30:49:b4:8d:00:1a:d6:c1:
ea:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E0:E9:71:E3:E9:7A:DB:3E:96:E0:7B:4C:2D:FC:09:34:70:9A:BB
X509v3 Authority Key Identifier:
keyid:39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:00:6c:f9:ce:ce:ff:f5:1c:a7:14:1a:c1:c2:be:02:81:b4:
c0:00:48:c1:46:ee:cf:29:24:94:cc:60:a8:25:7f:c9:13:ae:
20:eb:25:a1:fb:95:ba:0a:a6:14:51:39:46:bd:71:30:49:71:
4e:f4:1f:cc:19:fd:a6:a1:9d:75:d8:50:34:dd:0c:d8:a1:3e:
3f:00:18:e7:a9:bd:02:13:dd:18:b4:e7:dc:c4:18:cb:21:91:
a5:f8:ae:81:dc:16:86:ff:7d:84:84:6b:88:b0:f0:1d:ff:9c:
dc:e1:59:68:f3:c2:36:b7:89:b9:51:9f:c4:6d:39:05:71:87:
53:ba:e0:85:97:cb:ea:1b:75:ba:f3:19:ba:69:f9:9c:15:59:
c7:c8:2d:2c:c6:ee:5a:8e:e2:60:91:af:15:a2:f9:20:40:88:
11:5f:e7:46:1e:10:24:cd:c6:93:ed:50:25:12:0e:53:fd:f1:
50:71:3b:10:b5:9b:57:56:69:0c:83:45:16:ac:eb:7c:84:47:
b3:f6:9d:b4:da:c7:f3:a9:59:ff:09:54:a1:94:d1:a7:be:6e:
a3:d9:60:ab:cb:10:93:35:43:af:a2:a0:76:1a:cb:0d:62:d2:
63:3c:5c:9f:3e:70:7f:d7:6e:6b:12:fa:87:dc:c6:5a:f4:c7:
9c:f4:f9:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUBEoftkgbsV0pQ2m47BnlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5N2Q5ZjNkYmZjMzY1MzMyZTI4MmJkMTc2YTY4MDc1NDQ2
ZDFkMWIwHhcNMjUwODIyMjMwMTQ3WhcNMjUwODIzMjMwMTQ3WjAzMTEwLwYDVQQD
EyhjZGUwZTk3MWUzZTk3YWRiM2U5NmUwN2I0YzJkZmMwOTM0NzA5YWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhUD3Y//Fa1pFmIvRRiycDcsAX6I
2cirIodG7CF7KQCpBU1h806s9TeMVBRjcYj4xbtk0qmgNAXsn3JkJ30jXNrSBFgD
tPyhnlctV3w+XFBsxcyzRRkiYUiPLmJpSy/l/EBRx2zKFo9hMLL3zodkEwnYOIdo
IOnM/cpqZdWPiZKzNWLre60X3MMdsPyaXO7tRR8ELobp+Yhk9JH201yvCv6f7829
u7WNr5xY3VQ1YwAMdPju5kSGnLNUBA5E27AB32WfEHag+t338BTQboMw6MEz7RS/
lnudEY62zr2MQ8iLgYkpqlueQ8TvezFwBnhAvZRdpknUMEm0jQAa1sHqyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM3g6XHj6XrbPpbge0wt/Ak0cJq7MB8GA1UdIwQY
MBaAFDl9nz2/w2UzLigr0XamgHVEbR0bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1gyZlBiX0RaVE11S0N2UmRxYUFkVVJ0SFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9hZjJmOGYtMTIxMi00OTQzLWJkMGMt
ZDg2YWIyZmU3NjQ4LzEvT1gyZlBiX0RaVE11S0N2UmRxYUFkVVJ0SFJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9hZjJmOGYtMTIxMi00OTQzLWJkMGMtZDg2YWIyZmU3NjQ4
LzEvT1gyZlBiX0RaVE11S0N2UmRxYUFkVVJ0SFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaQBs+c7O
//UcpxQawcK+AoG0wABIwUbuzykklMxgqCV/yROuIOslofuVugqmFFE5Rr1xMElx
TvQfzBn9pqGdddhQNN0M2KE+PwAY56m9AhPdGLTn3MQYyyGRpfiugdwWhv99hIRr
iLDwHf+c3OFZaPPCNreJuVGfxG05BXGHU7rghZfL6ht1uvMZumn5nBVZx8gtLMbu
Wo7iYJGvFaL5IECIEV/nRh4QJM3Gk+1QJRIOU/3xUHE7ELWbV1ZpDINFFqzrfIRH
s/adtNrH86lZ/wlUoZTRp75uo9lgq8sQkzVDr6KgdhrLDWLSYzxcnz5wf9duaxL6
h9zGWvTHnPT53w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:24:10 2025 by rpki-client