Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
File: o_60EOB9CI-2UbkTdJuBJX47mVI.mft (raw, json)
Hash identifier: qOv6HCmat+GUOYhcB1FUEAQmLZa+ZSOA5PupWsfnFtA=
Subject key identifier: 89:D9:24:77:A0:FE:25:EA:C6:66:A3:AC:24:B9:9F:7B:F8:EA:0D:ED
Authority key identifier: A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52
Certificate issuer: /CN=a3feb410e07d088fb651b913749b81257e3b9952
Certificate serial: 0198D473DA5F0199F2D8B59257EFBF71BFAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
Manifest number: 1093
Signing time: Sat 23 Aug 2025 01:03:38 +0000
Manifest this update: Sat 23 Aug 2025 01:03:38 +0000
Manifest next update: Sun 24 Aug 2025 01:03:38 +0000
Files and hashes: 1: o_60EOB9CI-2UbkTdJuBJX47mVI.crl (hash: OZGdv6a3Ly1mOnDq2TYp/vHUzX0YOYu4gvqCkWEkMCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:da:5f:01:99:f2:d8:b5:92:57:ef:bf:71:bf:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3feb410e07d088fb651b913749b81257e3b9952
Validity
Not Before: Aug 23 01:03:38 2025 GMT
Not After : Aug 24 01:03:38 2025 GMT
Subject: CN=89d92477a0fe25eac666a3ac24b99f7bf8ea0ded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1e:4a:94:06:b1:5b:96:a5:93:12:0b:d1:18:
73:a4:86:e7:0d:ff:0f:53:d1:00:8d:11:cc:41:40:
87:3d:d1:ba:38:59:16:2f:e1:74:ce:82:2f:35:31:
95:f0:db:df:80:8b:5f:24:e1:6a:68:d6:d5:ef:cf:
6c:13:a6:e0:3f:a4:ff:f9:5e:27:90:57:41:af:44:
f1:21:a9:4f:42:0d:15:a2:33:70:e2:c8:2c:e3:f4:
6c:4c:5f:22:8c:de:a8:be:62:ac:fd:56:cc:fd:a0:
97:62:88:29:da:f5:a2:b3:51:4d:d0:d9:49:bb:ab:
23:8c:c8:49:2b:79:dc:42:0d:18:d1:70:14:1a:87:
29:32:b7:45:51:c2:dc:93:63:6c:39:7a:5a:ec:79:
ae:b3:8a:9a:b2:4d:e6:02:2e:cf:23:6f:78:a7:46:
3b:33:4d:62:67:b7:de:0f:79:de:c6:1a:01:43:f8:
fe:92:8d:c5:b1:31:e0:e0:fa:e4:5a:13:01:f8:2c:
db:fa:d7:0e:70:80:97:39:ed:23:d9:79:b0:50:37:
3f:1d:95:78:a1:37:e1:f8:ce:91:85:60:da:29:05:
10:c3:58:0e:4b:0f:9e:3d:5a:36:11:d5:74:ca:85:
18:9a:ec:a5:03:70:da:a8:41:f3:ec:77:38:93:6c:
f2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D9:24:77:A0:FE:25:EA:C6:66:A3:AC:24:B9:9F:7B:F8:EA:0D:ED
X509v3 Authority Key Identifier:
keyid:A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:3b:db:dc:bb:34:ed:8d:ba:b5:aa:cc:5c:a8:24:fc:b6:ce:
b8:a5:04:ed:e1:9a:55:35:2b:5f:b7:6b:83:7d:c6:24:c9:7e:
33:97:9c:f3:e4:30:ff:43:90:85:a4:74:d0:58:ae:e2:9a:ca:
a1:41:d3:b1:68:5e:30:c9:08:b4:56:ad:67:e8:15:ba:23:c5:
c1:ae:7c:5e:0d:1c:67:83:3b:29:68:d4:bf:e6:26:86:2b:e6:
ca:5f:85:f1:c4:03:60:4e:7d:b7:0e:29:e1:c5:63:08:bf:ce:
c2:9e:54:8e:70:ae:a5:b4:32:ad:ec:b8:3c:d8:3d:87:2a:a1:
da:72:3d:cb:c6:18:78:d9:30:d2:f7:5f:cd:58:c8:8b:5d:30:
6b:b7:cd:9c:25:06:07:8b:4e:2b:0c:73:a7:74:15:53:68:0f:
14:5a:fa:2b:bd:59:1a:af:28:f9:58:a9:57:77:f4:29:4a:75:
24:c1:c0:cb:77:4a:71:c9:9f:98:43:19:13:af:9a:1a:ef:33:
69:b6:4b:17:56:90:65:18:93:75:f4:f5:6a:16:37:b8:7f:b3:
29:4b:9a:d9:7e:ef:6e:9c:98:07:35:ca:8e:3c:6b:69:2f:1a:
38:7f:9c:e7:6e:91:01:9d:0a:fe:f2:56:55:de:3c:bd:57:79:
e2:f9:e1:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc9pfAZny2LWSV++/cb+rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzZmViNDEwZTA3ZDA4OGZiNjUxYjkxMzc0OWI4MTI1N2Uz
Yjk5NTIwHhcNMjUwODIzMDEwMzM4WhcNMjUwODI0MDEwMzM4WjAzMTEwLwYDVQQD
Eyg4OWQ5MjQ3N2EwZmUyNWVhYzY2NmEzYWMyNGI5OWY3YmY4ZWEwZGVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4h5KlAaxW5alkxIL0RhzpIbnDf8P
U9EAjRHMQUCHPdG6OFkWL+F0zoIvNTGV8NvfgItfJOFqaNbV789sE6bgP6T/+V4n
kFdBr0TxIalPQg0VojNw4sgs4/RsTF8ijN6ovmKs/VbM/aCXYogp2vWis1FN0NlJ
u6sjjMhJK3ncQg0Y0XAUGocpMrdFUcLck2NsOXpa7Hmus4qask3mAi7PI294p0Y7
M01iZ7feD3nexhoBQ/j+ko3FsTHg4PrkWhMB+Czb+tcOcICXOe0j2XmwUDc/HZV4
oTfh+M6RhWDaKQUQw1gOSw+ePVo2EdV0yoUYmuylA3DaqEHz7Hc4k2zygQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFInZJHeg/iXqxmajrCS5n3v46g3tMB8GA1UdIwQY
MBaAFKP+tBDgfQiPtlG5E3SbgSV+O5lSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb182MEVPQjlDSS0yVWJrVGRKdUJKWDQ3bVZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZjA2OGEtMTdmNC00MzExLThiYmMt
MjM0YjMyMmEwY2ZlLzEvb182MEVPQjlDSS0yVWJrVGRKdUJKWDQ3bVZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85ZjA2OGEtMTdmNC00MzExLThiYmMtMjM0YjMyMmEwY2Zl
LzEvb182MEVPQjlDSS0yVWJrVGRKdUJKWDQ3bVZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQDvb3Ls0
7Y26tarMXKgk/LbOuKUE7eGaVTUrX7drg33GJMl+M5ec8+Qw/0OQhaR00Fiu4prK
oUHTsWheMMkItFatZ+gVuiPFwa58Xg0cZ4M7KWjUv+Ymhivmyl+F8cQDYE59tw4p
4cVjCL/Owp5UjnCupbQyrey4PNg9hyqh2nI9y8YYeNkw0vdfzVjIi10wa7fNnCUG
B4tOKwxzp3QVU2gPFFr6K71ZGq8o+VipV3f0KUp1JMHAy3dKccmfmEMZE6+aGu8z
abZLF1aQZRiTdfT1ahY3uH+zKUua2X7vbpyYBzXKjjxraS8aOH+c526RAZ0K/vJW
Vd48vVd54vnhug==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:14:12 2025 by rpki-client