Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
File: o8-bZGUWkotdBsKoGestvA_pkgo.mft (raw, json)
Hash identifier: ijgaijn4dE0ttibxPrPMfhonR4EzbILWrqFvBaxzjQc=
Subject key identifier: 04:17:49:97:21:1D:68:0B:B0:BA:49:52:62:53:9A:DD:6A:27:29:D6
Authority key identifier: A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A
Certificate issuer: /CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a
Certificate serial: 0197B77C692839A957D57AF297F3F0810DED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
Manifest number: 08
Signing time: Sat 28 Jun 2025 17:01:13 +0000
Manifest this update: Sat 28 Jun 2025 17:01:13 +0000
Manifest next update: Sun 29 Jun 2025 17:01:13 +0000
Files and hashes: 1: X-QlQ7J2mkMQ7aCqISeZm-0GPp8.roa (hash: tcckn5v078MeQtwYD02YyKajWXUMPOWsBI1IguOQcTI=)
2: o8-bZGUWkotdBsKoGestvA_pkgo.crl (hash: 09ntt9fumlfV+JhuTqYn+enPxmjr/sOiUEs0hGA8f0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:69:28:39:a9:57:d5:7a:f2:97:f3:f0:81:0d:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a
Validity
Not Before: Jun 28 17:01:13 2025 GMT
Not After : Jun 29 17:01:13 2025 GMT
Subject: CN=04174997211d680bb0ba495262539add6a2729d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:22:90:85:ac:0b:72:97:ed:c3:ce:04:77:6f:
64:bb:30:d3:dc:de:d1:29:3d:f1:9d:e4:a4:5e:0d:
02:ad:3f:54:7c:ec:e7:7b:1a:c2:b3:5d:db:98:12:
45:16:7b:cb:00:43:fe:af:e3:f0:93:8d:3f:1e:cf:
69:b4:7b:ec:53:3c:07:b9:5a:46:dd:51:53:80:07:
20:57:6d:d3:07:86:9e:7e:72:4f:8b:70:3e:fe:ce:
df:88:de:01:f3:2f:6f:70:9e:a4:ba:5f:88:4c:cd:
01:11:36:37:20:c3:92:3d:af:91:33:b9:42:74:45:
80:82:5b:47:ec:a5:96:cd:1b:9f:6a:02:26:0d:53:
e2:36:e7:d6:97:fe:55:f7:da:dd:c7:c8:f0:9e:44:
67:56:44:0b:90:18:05:01:5b:0a:9c:65:3b:f5:55:
02:8a:88:f9:4a:a7:16:44:59:3c:e3:25:36:5c:e1:
a4:60:5d:07:fd:85:a3:4b:21:d7:7c:f8:41:8b:ba:
3e:21:58:61:cb:6c:33:ba:8a:88:90:1d:52:d8:60:
f8:a0:99:bf:fc:e2:67:12:03:9b:48:1b:28:57:da:
ac:2b:d6:60:fa:de:9d:63:57:b4:91:cb:00:db:5a:
4c:77:95:be:2f:4c:73:56:5a:b9:91:cb:83:e4:20:
6e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:17:49:97:21:1D:68:0B:B0:BA:49:52:62:53:9A:DD:6A:27:29:D6
X509v3 Authority Key Identifier:
keyid:A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:7e:c7:ce:46:cd:4b:7d:63:f0:39:14:e4:95:3c:89:d3:5c:
47:6f:13:b6:fb:2c:64:4e:14:07:b8:d8:26:2d:c7:89:94:5f:
27:35:81:34:2c:44:4a:02:2a:cf:63:88:23:57:24:b1:7c:50:
5b:fc:47:d9:10:76:8c:d8:1d:f9:1e:c2:f2:f7:3d:65:47:7a:
f0:e7:35:38:e9:18:c9:cf:73:75:e4:51:c2:a8:7a:40:63:24:
8d:10:7c:6e:14:42:9e:1e:9a:eb:2d:f9:4f:d8:e5:0f:84:24:
d3:e2:09:1a:85:85:a8:ca:ef:7d:cd:71:ea:ad:1d:76:ec:47:
9e:b1:78:72:6b:29:20:bd:09:d2:e2:99:c1:dd:03:15:00:7f:
12:71:81:c6:97:75:15:1c:d4:dc:26:3c:19:10:a8:fb:65:d2:
6f:82:b7:a7:85:ac:11:08:95:6f:29:38:07:cc:ae:e7:12:3e:
43:2a:77:a5:0d:07:0b:71:f4:47:8a:22:ba:7f:38:71:d2:05:
38:f9:d3:02:1d:71:27:d2:fa:af:02:37:8d:ab:5b:76:a0:27:
ac:93:f1:fb:bf:04:ee:d7:0f:8f:b0:a7:08:a3:31:fa:3d:ed:
85:d2:12:a2:29:3f:b1:fb:05:57:e3:c5:31:a9:60:78:ad:15:
1e:0e:fb:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fGkoOalX1Xryl/PwgQ3tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzY2Y5YjY0NjUxNjkyOGI1ZDA2YzJhODE5ZWIyZGJjMGZl
OTkyMGEwHhcNMjUwNjI4MTcwMTEzWhcNMjUwNjI5MTcwMTEzWjAzMTEwLwYDVQQD
EygwNDE3NDk5NzIxMWQ2ODBiYjBiYTQ5NTI2MjUzOWFkZDZhMjcyOWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiKQhawLcpftw84Ed29kuzDT3N7R
KT3xneSkXg0CrT9UfOznexrCs13bmBJFFnvLAEP+r+Pwk40/Hs9ptHvsUzwHuVpG
3VFTgAcgV23TB4aefnJPi3A+/s7fiN4B8y9vcJ6kul+ITM0BETY3IMOSPa+RM7lC
dEWAgltH7KWWzRufagImDVPiNufWl/5V99rdx8jwnkRnVkQLkBgFAVsKnGU79VUC
ioj5SqcWRFk84yU2XOGkYF0H/YWjSyHXfPhBi7o+IVhhy2wzuoqIkB1S2GD4oJm/
/OJnEgObSBsoV9qsK9Zg+t6dY1e0kcsA21pMd5W+L0xzVlq5kcuD5CBuiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAQXSZchHWgLsLpJUmJTmt1qJynWMB8GA1UdIwQY
MBaAFKPPm2RlFpKLXQbCqBnrLbwP6ZIKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzgtYlpHVVdrb3RkQnNLb0dlc3R2QV9wa2dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8zOTRkMDctMDVjYy00ZjcyLWJkNDYt
Mjg5Njk2Y2M5OWI5LzEvbzgtYlpHVVdrb3RkQnNLb0dlc3R2QV9wa2dvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC8zOTRkMDctMDVjYy00ZjcyLWJkNDYtMjg5Njk2Y2M5OWI5
LzEvbzgtYlpHVVdrb3RkQnNLb0dlc3R2QV9wa2dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANX7HzkbN
S31j8DkU5JU8idNcR28TtvssZE4UB7jYJi3HiZRfJzWBNCxESgIqz2OII1cksXxQ
W/xH2RB2jNgd+R7C8vc9ZUd68Oc1OOkYyc9zdeRRwqh6QGMkjRB8bhRCnh6a6y35
T9jlD4Qk0+IJGoWFqMrvfc1x6q0dduxHnrF4cmspIL0J0uKZwd0DFQB/EnGBxpd1
FRzU3CY8GRCo+2XSb4K3p4WsEQiVbyk4B8yu5xI+Qyp3pQ0HC3H0R4oiun84cdIF
OPnTAh1xJ9L6rwI3jatbdqAnrJPx+78E7tcPj7CnCKMx+j3thdISoik/sfsFV+PF
MalgeK0VHg77dQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:36 2025 by rpki-client