Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
File: o8-bZGUWkotdBsKoGestvA_pkgo.mft (raw, json)
Hash identifier: o2y/BVZIJRUa/0giiZ9iw5KA9H0+7pkl8lvWYbimn+Q=
Subject key identifier: 81:B0:7A:33:9C:35:28:E3:A6:CE:2A:15:CD:A4:4E:67:D5:F1:CF:3B
Authority key identifier: A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A
Certificate issuer: /CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a
Certificate serial: 0199FCC6A405CFC9BB66239EC6BCF086D9E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
Manifest number: 0135
Signing time: Sun 19 Oct 2025 14:01:40 +0000
Manifest this update: Sun 19 Oct 2025 14:01:40 +0000
Manifest next update: Mon 20 Oct 2025 14:01:40 +0000
Files and hashes: 1: X-QlQ7J2mkMQ7aCqISeZm-0GPp8.roa (hash: tcckn5v078MeQtwYD02YyKajWXUMPOWsBI1IguOQcTI=)
2: o8-bZGUWkotdBsKoGestvA_pkgo.crl (hash: b9tM799ts7ZUEWYRq9u3ScMW29ei7DQ4squwcATMzd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:a4:05:cf:c9:bb:66:23:9e:c6:bc:f0:86:d9:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a
Validity
Not Before: Oct 19 14:01:40 2025 GMT
Not After : Oct 20 14:01:40 2025 GMT
Subject: CN=81b07a339c3528e3a6ce2a15cda44e67d5f1cf3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f0:34:9f:d0:45:dc:b2:5b:2c:05:b1:9c:fb:
6a:2c:d1:73:59:a3:f4:c6:9d:08:a9:1f:2e:48:80:
5b:a0:0e:c8:a7:39:e4:ef:79:38:45:b1:4e:bf:bb:
09:eb:48:41:61:d6:07:77:29:66:e1:2b:98:86:f5:
d7:4c:fa:ed:e7:e7:5f:a9:be:6a:24:82:f0:44:0b:
f6:a3:9e:59:3f:30:78:27:4a:48:9d:e9:c3:70:f2:
2d:51:b6:cc:89:dd:4b:27:aa:c2:7b:8d:35:61:04:
3e:93:2a:eb:96:63:5d:f9:11:6d:ea:61:ad:25:44:
e9:3e:50:6c:75:92:a0:0b:6d:e4:97:8d:2d:b9:56:
f4:ad:c3:48:b3:d7:9d:ea:d8:e9:63:44:22:f9:87:
5b:85:9b:6c:12:b9:42:37:dc:e3:7c:54:3f:32:2f:
c4:8e:52:14:73:84:b9:d8:b1:47:ac:33:17:2a:4e:
a8:8a:1f:2d:5d:ae:da:87:6f:17:36:22:5c:e8:c5:
42:6d:e0:68:c2:ed:4c:b2:2f:ac:3a:8b:96:fc:7b:
dd:8c:87:b5:50:b0:6a:4b:92:24:af:1e:08:2a:fa:
7b:af:0e:43:0f:d5:f2:8a:6a:14:14:7b:a3:79:d4:
ca:21:0d:4e:79:fd:ba:ca:76:5d:ee:e1:89:37:5a:
8f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B0:7A:33:9C:35:28:E3:A6:CE:2A:15:CD:A4:4E:67:D5:F1:CF:3B
X509v3 Authority Key Identifier:
keyid:A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:d9:09:0e:69:ad:50:54:92:27:2e:17:45:f0:a4:96:60:19:
b2:c3:96:28:74:bc:77:73:b1:ea:21:89:f7:c6:0c:1f:90:d7:
36:d0:57:e1:c7:21:f5:21:95:3f:a2:f9:ec:a3:91:56:27:4c:
30:94:38:99:c1:e8:3f:de:bf:ad:83:8c:45:a7:5b:ac:6d:f1:
ec:62:48:5f:7c:1c:89:0a:9f:b0:0b:e9:d7:86:cf:79:c0:8e:
92:f9:87:5e:87:1f:d7:a7:31:e3:c8:7c:e3:ce:c3:f3:2b:0d:
4d:69:0c:a3:d2:bb:3f:7a:cb:4d:1a:63:95:9b:e4:a0:b6:40:
f1:e1:90:08:66:7f:3d:d3:17:43:1e:86:ce:8d:4b:04:ed:82:
49:38:a0:c0:7b:f9:a4:8a:2f:15:9d:6c:3a:28:6a:4a:fc:93:
d9:04:c6:63:85:a0:c5:b8:03:b9:0f:0f:20:c9:f4:43:92:fb:
60:bf:61:0a:26:f3:82:80:58:49:f0:84:1f:cd:58:e3:a2:0c:
c9:04:4d:6a:38:8a:2a:f1:1f:43:20:08:9e:cb:eb:6a:59:8d:
6a:3f:ef:da:43:80:9a:cf:13:cc:39:e9:43:4b:1e:73:8c:f6:
66:99:86:74:7c:f1:eb:83:30:1a:45:68:3d:d5:ba:b7:63:b8:
01:ae:0e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:12 2025 by rpki-client