Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft
File: O5pBDtUm-GwybZG2KApEGhbAxnY.mft (raw, json)
Hash identifier: IUmoIudLUKq+/ZtkwLhF0fXvHP+1DEcKYf3cFkEkuLw=
Subject key identifier: C7:5F:33:98:FB:A2:12:61:4C:9F:70:69:F9:50:E0:DE:CD:08:D7:3A
Authority key identifier: 3B:9A:41:0E:D5:26:F8:6C:32:6D:91:B6:28:0A:44:1A:16:C0:C6:76
Certificate issuer: /CN=3b9a410ed526f86c326d91b6280a441a16c0c676
Certificate serial: 0198D8BD7976CBB9BE6E32388204A8F8ACDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5pBDtUm-GwybZG2KApEGhbAxnY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft
Manifest number: 07B5
Signing time: Sat 23 Aug 2025 21:02:32 +0000
Manifest this update: Sat 23 Aug 2025 21:02:32 +0000
Manifest next update: Sun 24 Aug 2025 21:02:32 +0000
Files and hashes: 1: O5pBDtUm-GwybZG2KApEGhbAxnY.crl (hash: AnSTksc7Mrk8mMt8pTqPHc9nyUj5d6r/MAD9vAu1KjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft
rsync://rpki.ripe.net/repository/DEFAULT/O5pBDtUm-GwybZG2KApEGhbAxnY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:bd:79:76:cb:b9:be:6e:32:38:82:04:a8:f8:ac:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b9a410ed526f86c326d91b6280a441a16c0c676
Validity
Not Before: Aug 23 21:02:32 2025 GMT
Not After : Aug 24 21:02:32 2025 GMT
Subject: CN=c75f3398fba212614c9f7069f950e0decd08d73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:10:0e:d5:97:f0:b0:e0:86:6b:dd:ee:8c:6b:
52:3c:ae:f3:76:1e:cd:df:ed:cd:84:d3:8f:97:f2:
ca:73:16:74:7a:c8:84:d0:de:0c:3a:2c:f8:e7:b2:
1e:b1:45:73:93:ed:6f:03:7f:58:2c:d0:95:d9:67:
c7:a1:61:75:5e:b0:ca:aa:dd:2f:d9:d2:9b:2c:3c:
a1:9f:ca:2d:89:1e:4c:4d:33:ce:96:7f:42:a7:f4:
78:3d:20:b2:a9:0a:4b:db:09:bb:5d:3c:71:a8:2b:
8c:a2:11:24:88:de:88:e0:fe:5a:f2:d3:8f:ca:97:
8c:c4:64:d1:3e:ef:bf:5f:a2:d6:00:3d:9b:91:45:
ad:01:04:c7:30:56:11:11:a5:9b:a8:82:c1:ba:92:
a0:5d:31:e1:34:01:d4:1f:f9:9d:66:86:f5:9c:7d:
68:5b:dd:cd:1e:80:8d:2f:e1:94:42:6e:99:f8:2c:
65:d0:82:17:21:c7:55:de:3c:31:5a:c2:46:35:7d:
ec:cf:61:65:a7:32:83:85:36:3e:c2:b9:7c:ea:49:
40:fc:26:db:21:c9:8c:05:04:fe:03:ee:d4:c9:e5:
01:0a:4f:94:96:1c:06:f9:a0:28:97:b9:f9:36:6d:
1d:1c:bd:21:c0:28:77:aa:6f:a6:f5:2f:c6:6e:3f:
37:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5F:33:98:FB:A2:12:61:4C:9F:70:69:F9:50:E0:DE:CD:08:D7:3A
X509v3 Authority Key Identifier:
keyid:3B:9A:41:0E:D5:26:F8:6C:32:6D:91:B6:28:0A:44:1A:16:C0:C6:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5pBDtUm-GwybZG2KApEGhbAxnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:e5:42:1b:63:40:c5:7f:a6:14:92:0f:7e:83:ba:dd:d2:9a:
8d:9d:c8:49:7a:4b:60:d5:54:bc:3e:49:82:c0:4d:f5:a0:dc:
ff:24:d3:2f:e8:e9:e0:7c:a7:77:0a:fa:57:bb:7a:31:e1:ab:
78:18:09:61:4a:9e:d9:1c:dd:a7:6e:3e:91:82:5d:e1:4a:1a:
da:34:6e:23:ce:69:ef:e9:20:a1:43:6f:25:ea:a9:05:f4:5d:
c3:e5:b6:8b:78:20:43:6b:66:01:c6:0a:7e:ce:77:be:aa:54:
ff:46:ff:37:9e:89:f2:b6:00:9a:8d:0b:9b:35:70:f5:e3:75:
1f:41:88:9d:11:46:35:3c:6d:bb:49:59:3c:cb:6c:5a:0e:14:
d8:c6:cd:d1:e9:c3:f1:93:4a:fb:0d:fd:b5:62:1e:93:ab:2a:
38:23:79:63:f8:0c:13:63:15:95:10:33:05:04:91:a2:78:cd:
03:55:b7:50:d9:c3:e4:aa:7e:72:69:67:73:46:4a:f2:1b:db:
9b:47:2a:9d:e0:8c:1c:e7:4a:77:04:1b:6a:bb:80:12:90:a4:
c6:41:8b:0b:6a:0f:d2:6e:75:37:49:e7:6d:77:91:2e:c1:a6:
31:f8:68:4d:af:49:17:09:35:19:65:78:f2:d2:bf:a6:00:fe:
ff:c1:5e:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYvXl2y7m+bjI4ggSo+KzcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiOWE0MTBlZDUyNmY4NmMzMjZkOTFiNjI4MGE0NDFhMTZj
MGM2NzYwHhcNMjUwODIzMjEwMjMyWhcNMjUwODI0MjEwMjMyWjAzMTEwLwYDVQQD
EyhjNzVmMzM5OGZiYTIxMjYxNGM5ZjcwNjlmOTUwZTBkZWNkMDhkNzNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxAO1ZfwsOCGa93ujGtSPK7zdh7N
3+3NhNOPl/LKcxZ0esiE0N4MOiz457IesUVzk+1vA39YLNCV2WfHoWF1XrDKqt0v
2dKbLDyhn8otiR5MTTPOln9Cp/R4PSCyqQpL2wm7XTxxqCuMohEkiN6I4P5a8tOP
ypeMxGTRPu+/X6LWAD2bkUWtAQTHMFYREaWbqILBupKgXTHhNAHUH/mdZob1nH1o
W93NHoCNL+GUQm6Z+Cxl0IIXIcdV3jwxWsJGNX3sz2FlpzKDhTY+wrl86klA/Cbb
IcmMBQT+A+7UyeUBCk+UlhwG+aAol7n5Nm0dHL0hwCh3qm+m9S/Gbj83OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMdfM5j7ohJhTJ9waflQ4N7NCNc6MB8GA1UdIwQY
MBaAFDuaQQ7VJvhsMm2RtigKRBoWwMZ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzVwQkR0VW0tR3d5YlpHMktBcEVHaGJBeG5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC81ZThlMDQtZTZlYS00ZDU5LWIyZjct
ZGYwYTZkYzI4MmEwLzEvTzVwQkR0VW0tR3d5YlpHMktBcEVHaGJBeG5ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC81ZThlMDQtZTZlYS00ZDU5LWIyZjctZGYwYTZkYzI4MmEw
LzEvTzVwQkR0VW0tR3d5YlpHMktBcEVHaGJBeG5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXeVCG2NA
xX+mFJIPfoO63dKajZ3ISXpLYNVUvD5JgsBN9aDc/yTTL+jp4Hyndwr6V7t6MeGr
eBgJYUqe2Rzdp24+kYJd4Uoa2jRuI85p7+kgoUNvJeqpBfRdw+W2i3ggQ2tmAcYK
fs53vqpU/0b/N56J8rYAmo0LmzVw9eN1H0GInRFGNTxtu0lZPMtsWg4U2MbN0enD
8ZNK+w39tWIek6sqOCN5Y/gME2MVlRAzBQSRonjNA1W3UNnD5Kp+cmlnc0ZK8hvb
m0cqneCMHOdKdwQbaruAEpCkxkGLC2oP0m51N0nnbXeRLsGmMfhoTa9JFwk1GWV4
8tK/pgD+/8Fe+A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 23:58:07 2025 by rpki-client