Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: 2BS6GjqFog1DoJaKfUO5prKeqfyQEuUZiWP3/urYXPc=
Subject key identifier: C7:9D:D6:40:B0:B3:CE:A9:EA:55:B7:E2:17:8E:96:5A:93:9B:7E:AD
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 0198D65F6E6AF9F120D8B90E96717D3DFE09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 02C0
Signing time: Sat 23 Aug 2025 10:00:34 +0000
Manifest this update: Sat 23 Aug 2025 10:00:34 +0000
Manifest next update: Sun 24 Aug 2025 10:00:34 +0000
Files and hashes: 1: C4fkDspID27_2W7uJ0bDWTiMbsI.roa (hash: IPmvbCiP1dYquC+xxAe/aHEwDNf0L9S57sM644oyMl8=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: 6GV1qw0pzrCbXHfOTaxsIXn+2qsG802gSAZkCKTCiaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:6e:6a:f9:f1:20:d8:b9:0e:96:71:7d:3d:fe:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Aug 23 10:00:34 2025 GMT
Not After : Aug 24 10:00:34 2025 GMT
Subject: CN=c79dd640b0b3cea9ea55b7e2178e965a939b7ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:83:28:f4:02:d5:ec:19:a5:3a:ee:82:c6:d4:
98:e2:9c:04:c0:c2:90:35:f1:61:9d:4c:95:f6:9a:
2c:f8:18:99:e2:18:66:52:69:44:3c:3e:d8:a4:ac:
85:40:ca:85:36:6a:5f:4d:72:e2:d4:e4:41:d9:ec:
76:8d:94:94:78:26:d1:b0:42:5d:e8:8a:91:93:73:
35:dd:c7:45:48:06:d6:25:d4:54:7a:92:ac:7d:2e:
4a:39:65:f1:d9:44:9f:5d:a8:fc:8f:69:b4:ba:f7:
d1:6f:12:c1:c8:76:0e:39:3d:84:da:a9:8e:a2:cb:
8c:8b:6b:34:b6:29:8b:0a:67:50:a5:2a:3e:18:b4:
2b:99:e0:77:b1:0a:7c:4f:11:bd:e2:df:95:98:a1:
d1:76:09:90:bf:5e:61:fa:a3:d5:33:68:fa:42:0d:
8d:3b:89:c4:fb:3f:4b:bf:18:38:4b:95:53:83:ac:
ad:71:c2:e1:27:2d:e8:f7:84:47:87:4e:d3:46:06:
54:a9:c2:dd:bf:31:14:18:72:ee:72:f1:4f:b2:f8:
f9:12:64:c2:b0:8a:5a:1d:ab:a4:fc:36:c6:a4:ba:
9b:dc:aa:5f:9b:ed:15:1b:61:b6:f3:55:df:e6:6e:
3b:a2:75:74:ed:e0:80:fa:c0:24:e8:cb:0c:4b:43:
a4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:9D:D6:40:B0:B3:CE:A9:EA:55:B7:E2:17:8E:96:5A:93:9B:7E:AD
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:c8:3b:09:c5:b3:9e:67:15:c4:ef:0f:4b:a6:e8:f4:89:ed:
a9:6d:b8:8a:df:02:97:40:0c:8c:65:5f:86:ba:a4:87:9f:76:
f6:33:0b:2c:12:25:84:02:f0:e2:13:78:17:1f:5f:3a:f3:3a:
7f:41:31:ff:ef:cb:53:c0:5a:8e:8a:c0:a9:27:3f:71:f6:0d:
33:71:6e:f2:69:23:6d:8b:5b:28:fe:52:2e:a6:c9:82:a8:45:
ab:48:7d:7e:bb:98:7e:ca:ed:89:0a:c7:48:0b:df:31:ca:d3:
3b:8a:da:0d:39:3f:6a:0c:54:98:80:15:09:42:dd:8e:fc:7b:
71:9f:83:27:ce:c8:3d:a0:a7:43:54:e5:79:60:7f:72:fe:93:
f9:de:4b:e8:e8:64:09:b7:39:36:2d:c9:b5:14:2f:fb:ac:c3:
11:9b:80:ec:1d:3a:26:5b:63:de:01:f1:cf:93:f3:e8:aa:40:
fa:e7:b0:56:6b:b0:e5:48:ae:4e:b0:57:f2:fb:9b:88:54:6d:
c7:45:03:45:40:24:a8:9f:7c:6b:90:a8:07:03:63:38:d1:f9:
85:42:8d:be:c6:42:b9:b5:59:9a:93:d6:3e:41:9a:19:b6:a5:
ce:92:8f:bf:1c:b1:6c:54:35:ce:0e:10:05:65:73:92:3c:f3:
78:a4:c8:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX25q+fEg2LkOlnF9Pf4JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjZWJmMzk2YzlhZGY5NGY4NGRjOTAxNjU2ZTI1NWNlNmQ1
MDY2MGMwHhcNMjUwODIzMTAwMDM0WhcNMjUwODI0MTAwMDM0WjAzMTEwLwYDVQQD
EyhjNzlkZDY0MGIwYjNjZWE5ZWE1NWI3ZTIxNzhlOTY1YTkzOWI3ZWFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoMo9ALV7BmlOu6CxtSY4pwEwMKQ
NfFhnUyV9pos+BiZ4hhmUmlEPD7YpKyFQMqFNmpfTXLi1ORB2ex2jZSUeCbRsEJd
6IqRk3M13cdFSAbWJdRUepKsfS5KOWXx2USfXaj8j2m0uvfRbxLByHYOOT2E2qmO
osuMi2s0timLCmdQpSo+GLQrmeB3sQp8TxG94t+VmKHRdgmQv15h+qPVM2j6Qg2N
O4nE+z9Lvxg4S5VTg6ytccLhJy3o94RHh07TRgZUqcLdvzEUGHLucvFPsvj5EmTC
sIpaHauk/DbGpLqb3Kpfm+0VG2G281Xf5m47onV07eCA+sAk6MsMS0Ok3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMed1kCws86p6lW34heOllqTm36tMB8GA1UdIwQY
MBaAFKzr85bJrflPhNyQFlbiVc5tUGYMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS85NzFkYzUtMTRmMy00ZDk1LWIwYmQt
NDg0N2QzOTNhYjU1LzEvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS85NzFkYzUtMTRmMy00ZDk1LWIwYmQtNDg0N2QzOTNhYjU1
LzEvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAMg7CcWz
nmcVxO8PS6bo9IntqW24it8Cl0AMjGVfhrqkh5929jMLLBIlhALw4hN4Fx9fOvM6
f0Ex/+/LU8BajorAqSc/cfYNM3Fu8mkjbYtbKP5SLqbJgqhFq0h9fruYfsrtiQrH
SAvfMcrTO4raDTk/agxUmIAVCULdjvx7cZ+DJ87IPaCnQ1TleWB/cv6T+d5L6Ohk
Cbc5Ni3JtRQv+6zDEZuA7B06Jltj3gHxz5Pz6KpA+uewVmuw5UiuTrBX8vubiFRt
x0UDRUAkqJ98a5CoBwNjONH5hUKNvsZCubVZmpPWPkGaGbalzpKPvxyxbFQ1zg4Q
BWVzkjzzeKTI+w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:34:31 2025 by rpki-client