Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
File: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft (raw, json)
Hash identifier: muu5h7Jzy17X3EmLb1Gr33tTznPqUsGtDhrDPsoHp8k=
Subject key identifier: 83:87:3B:C3:05:B7:22:2D:83:D6:93:C9:58:B8:F9:02:88:B7:7A:E7
Authority key identifier: E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99
Certificate issuer: /CN=e0e3976d9ecb8309a8181fbd025ca52fef161999
Certificate serial: 0198D5BC5B8CACB79F82DEA938510D5FD8F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
Manifest number: 0A65
Signing time: Sat 23 Aug 2025 07:02:27 +0000
Manifest this update: Sat 23 Aug 2025 07:02:27 +0000
Manifest next update: Sun 24 Aug 2025 07:02:27 +0000
Files and hashes: 1: 2sQZrECcWQMz0yagYBj0rHZBNaA.roa (hash: ifVTyTkvryP5hww8yzaeOkfdrWnESnsheNSv99i7IM8=)
2: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl (hash: D6zHCtqqRTKox22G7kIyD9/SQzjNg7/UlT/9zSHMRI8=)
3: cK4llrkBdLlV4HeILjRyQ98esEM.roa (hash: MuU2BWlfRFj75k9zGngWfQu7w/ZtaYOQ1aHN3Tj8NDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:5b:8c:ac:b7:9f:82:de:a9:38:51:0d:5f:d8:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0e3976d9ecb8309a8181fbd025ca52fef161999
Validity
Not Before: Aug 23 07:02:27 2025 GMT
Not After : Aug 24 07:02:27 2025 GMT
Subject: CN=83873bc305b7222d83d693c958b8f90288b77ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8b:e7:91:37:64:26:63:67:be:09:06:bc:4e:
ed:6e:6b:92:5d:0c:ec:f4:74:66:0c:87:65:2d:71:
bc:f5:21:77:c1:09:6f:25:04:2a:66:7c:ef:5a:7a:
e3:f2:fe:98:25:7f:9d:b3:21:70:43:69:3e:9d:23:
48:aa:44:8f:18:fd:d3:57:74:e4:c6:03:27:49:ec:
3c:42:65:c7:4b:88:fb:cf:52:52:d5:72:d5:7c:03:
00:7f:b6:1f:2c:61:20:c8:16:57:01:d7:05:b0:1f:
41:29:3f:fa:b8:28:2c:4e:63:e0:01:a5:bf:be:32:
b6:53:70:40:fd:f8:c2:4b:05:7e:c8:09:7d:bb:7c:
19:12:4f:55:a5:42:3f:d1:33:30:58:73:1b:2d:e2:
37:d8:6a:94:d4:94:73:a9:9d:53:ae:5f:68:45:93:
8f:2d:9d:a1:5c:bf:a7:7a:7a:d2:48:94:e0:c7:dd:
4e:a0:ab:cf:80:13:74:db:32:7a:38:8c:fa:be:da:
8b:e2:f2:93:20:20:b2:7d:80:30:78:9a:9a:0c:7a:
b2:fc:91:ae:ca:90:39:4e:f8:3f:f0:f2:cc:01:3b:
e3:0c:79:c9:0b:f2:3b:6e:d3:94:21:b2:33:0c:ac:
2a:3c:32:5b:75:76:81:74:89:e0:71:e3:ec:ba:0f:
0a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:87:3B:C3:05:B7:22:2D:83:D6:93:C9:58:B8:F9:02:88:B7:7A:E7
X509v3 Authority Key Identifier:
keyid:E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:65:a7:88:8f:28:8d:9f:b6:61:df:ce:5b:81:8b:68:b6:80:
73:db:b4:84:3e:ad:9e:ff:b6:78:e3:a0:af:ff:b9:92:af:f0:
84:cb:3a:b1:ce:d9:c6:a7:63:d2:bb:11:04:15:9d:10:21:a2:
be:de:d8:8b:90:f0:67:ee:47:8f:c6:b1:0f:55:64:08:77:d3:
d8:26:d8:07:75:61:9e:30:7b:27:98:54:01:c7:3d:da:56:8a:
26:d4:03:a4:d0:cf:f3:94:11:ef:ff:b0:b1:b3:97:d6:3a:98:
97:e0:e9:7f:8f:60:aa:c9:d8:de:b4:45:c0:b1:72:40:43:78:
13:ea:39:99:4d:36:00:56:51:81:8f:60:46:0c:db:42:e7:4f:
29:48:7c:60:3c:4a:92:df:0b:f3:51:57:d5:7c:04:50:83:1d:
78:6c:fd:a7:ef:56:ce:d6:0d:80:8b:32:fa:39:bd:2c:21:9e:
d7:df:37:c4:f1:0c:3a:c4:5c:81:b1:c9:2a:0b:b1:ca:d3:8d:
66:fd:89:08:4c:d7:22:39:fd:91:8c:15:2c:b5:63:da:fa:46:
49:b1:39:27:e1:1d:4d:08:ca:6d:69:d2:c5:66:18:64:35:dd:
3d:97:7e:55:7c:99:f8:1a:00:45:5e:15:02:f5:94:c7:45:a0:
44:c3:6a:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVvFuMrLefgt6pOFENX9jzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwZTM5NzZkOWVjYjgzMDlhODE4MWZiZDAyNWNhNTJmZWYx
NjE5OTkwHhcNMjUwODIzMDcwMjI3WhcNMjUwODI0MDcwMjI3WjAzMTEwLwYDVQQD
Eyg4Mzg3M2JjMzA1YjcyMjJkODNkNjkzYzk1OGI4ZjkwMjg4Yjc3YWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyIvnkTdkJmNnvgkGvE7tbmuSXQzs
9HRmDIdlLXG89SF3wQlvJQQqZnzvWnrj8v6YJX+dsyFwQ2k+nSNIqkSPGP3TV3Tk
xgMnSew8QmXHS4j7z1JS1XLVfAMAf7YfLGEgyBZXAdcFsB9BKT/6uCgsTmPgAaW/
vjK2U3BA/fjCSwV+yAl9u3wZEk9VpUI/0TMwWHMbLeI32GqU1JRzqZ1Trl9oRZOP
LZ2hXL+nenrSSJTgx91OoKvPgBN02zJ6OIz6vtqL4vKTICCyfYAweJqaDHqy/JGu
ypA5Tvg/8PLMATvjDHnJC/I7btOUIbIzDKwqPDJbdXaBdIngcePsug8K0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIOHO8MFtyItg9aTyVi4+QKIt3rnMB8GA1UdIwQY
MBaAFODjl22ey4MJqBgfvQJcpS/vFhmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQt
OGJlMGQ5NzY4MmFiLzEvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQtOGJlMGQ5NzY4MmFi
LzEvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjWWniI8o
jZ+2Yd/OW4GLaLaAc9u0hD6tnv+2eOOgr/+5kq/whMs6sc7Zxqdj0rsRBBWdECGi
vt7Yi5DwZ+5Hj8axD1VkCHfT2CbYB3VhnjB7J5hUAcc92laKJtQDpNDP85QR7/+w
sbOX1jqYl+Dpf49gqsnY3rRFwLFyQEN4E+o5mU02AFZRgY9gRgzbQudPKUh8YDxK
kt8L81FX1XwEUIMdeGz9p+9WztYNgIsy+jm9LCGe1983xPEMOsRcgbHJKguxytON
Zv2JCEzXIjn9kYwVLLVj2vpGSbE5J+EdTQjKbWnSxWYYZDXdPZd+VXyZ+BoARV4V
AvWUx0WgRMNqYA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:02 2025 by rpki-client