Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: OVlytNFRWR8fO2xUEzA9IV4tFQnTFdq7b/Epp1z2Siw=
Subject key identifier: 14:2E:83:3A:0C:50:92:7A:F4:24:28:7E:E5:8F:76:EC:68:A5:CA:31
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 01987CAE0E2596728C832998F89F533E5ABA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0D9E
Signing time: Wed 06 Aug 2025 00:00:38 +0000
Manifest this update: Wed 06 Aug 2025 00:00:38 +0000
Manifest next update: Thu 07 Aug 2025 00:00:38 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: nCZBYLJTEK8ApfNLK13mCTD6VLs88joraanuIom3bfQ=)
2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:ae:0e:25:96:72:8c:83:29:98:f8:9f:53:3e:5a:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Aug 6 00:00:38 2025 GMT
Not After : Aug 7 00:00:38 2025 GMT
Subject: CN=142e833a0c50927af424287ee58f76ec68a5ca31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fa:6f:cb:63:d8:e1:94:96:30:52:07:06:40:
73:37:f7:3b:ba:dc:51:cb:7f:35:43:17:f8:bf:f2:
2d:68:9f:20:b2:33:ad:23:d4:63:49:11:6b:42:e3:
c2:f0:8f:32:d5:35:84:0f:2e:26:ad:71:a9:c9:e3:
d8:5b:a0:85:85:84:a8:ae:ab:27:2e:45:17:cf:7f:
4c:5d:8b:4d:45:5f:e6:5a:16:02:89:67:4e:0f:d7:
8b:50:f3:48:7c:d6:c9:46:97:b2:e6:d8:14:45:cd:
da:23:06:f4:51:eb:3c:d6:5d:1b:50:e4:af:fb:a8:
d4:4a:72:c7:3e:ad:b4:c5:a6:cd:21:8d:4a:b1:eb:
65:ec:d7:5e:b1:43:b8:ef:16:90:34:95:ef:a8:84:
2d:bd:59:9c:0e:9d:b4:ac:ae:9a:30:65:da:0e:8a:
83:e8:13:81:ce:d4:e5:c3:a1:1f:35:79:eb:27:f5:
27:30:fd:db:79:49:91:39:f0:25:ae:17:e2:2f:c8:
d6:a6:7c:a9:90:4d:6e:cc:78:9e:b6:2b:96:e0:9e:
5f:ec:d6:33:3f:32:d6:65:aa:33:9f:ff:0b:14:bb:
a6:e4:35:ed:f9:e3:2c:2d:c1:6f:7e:b8:1a:03:bc:
d0:1f:2e:8d:97:52:c1:6c:92:a3:c9:f4:6c:d9:bd:
1d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:2E:83:3A:0C:50:92:7A:F4:24:28:7E:E5:8F:76:EC:68:A5:CA:31
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:18:a0:1c:1f:df:91:d3:b0:bd:8b:b1:a3:80:c8:45:92:d4:
7a:ff:3a:aa:c3:2a:a2:77:6a:b4:03:26:0c:c7:63:3a:05:80:
75:cf:fd:18:1a:9a:af:d7:dc:9d:1b:73:70:08:79:c2:54:d5:
0e:82:d6:56:a0:78:81:26:9d:82:7e:46:e3:bc:e5:4d:33:69:
90:79:7e:26:eb:4b:70:53:85:d9:61:13:44:21:49:0f:7a:4c:
73:9c:47:fc:eb:d9:b7:7d:64:e6:50:db:7f:ca:09:4f:39:f1:
be:7d:d0:c6:4b:0c:54:93:b2:a8:a4:f6:98:27:f8:b6:55:8e:
22:9f:88:bb:87:94:07:e4:96:14:95:f6:39:ae:4c:c2:0f:b8:
a8:f2:95:80:46:35:bf:7c:fe:71:86:77:45:b5:4e:05:4b:f7:
60:fb:05:58:d9:1e:fd:4f:8d:f6:d1:1d:a7:54:c3:6c:91:6f:
5e:3e:c1:0b:44:7b:dc:fe:4c:46:26:34:93:a9:97:0b:aa:19:
ab:04:24:ed:a7:23:6d:76:f1:5c:7c:79:bc:cc:34:1e:6b:7e:
43:9b:e8:00:be:3c:f8:d2:f6:e4:09:4c:0c:b8:57:1e:00:b3:
61:a0:85:26:94:fe:da:38:df:f4:73:57:4c:1a:82:83:61:3b:
ff:d0:f0:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh8rg4llnKMgymY+J9TPlq6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5OWRjMTM2MTlhYWJhN2YyMjJjZWFjYjA1ZjFiYmFjNTli
ZDNhOWEwHhcNMjUwODA2MDAwMDM4WhcNMjUwODA3MDAwMDM4WjAzMTEwLwYDVQQD
EygxNDJlODMzYTBjNTA5MjdhZjQyNDI4N2VlNThmNzZlYzY4YTVjYTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/pvy2PY4ZSWMFIHBkBzN/c7utxR
y381Qxf4v/ItaJ8gsjOtI9RjSRFrQuPC8I8y1TWEDy4mrXGpyePYW6CFhYSorqsn
LkUXz39MXYtNRV/mWhYCiWdOD9eLUPNIfNbJRpey5tgURc3aIwb0Ues81l0bUOSv
+6jUSnLHPq20xabNIY1Ksetl7NdesUO47xaQNJXvqIQtvVmcDp20rK6aMGXaDoqD
6BOBztTlw6EfNXnrJ/UnMP3beUmROfAlrhfiL8jWpnypkE1uzHietiuW4J5f7NYz
PzLWZaozn/8LFLum5DXt+eMsLcFvfrgaA7zQHy6Nl1LBbJKjyfRs2b0dEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBQugzoMUJJ69CQofuWPduxopcoxMB8GA1UdIwQY
MBaAFDmdwTYZqrp/IizqywXxu6xZvTqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTkt
MDAzMmZkYzU0NTBiLzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTktMDAzMmZkYzU0NTBi
LzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoRigHB/f
kdOwvYuxo4DIRZLUev86qsMqondqtAMmDMdjOgWAdc/9GBqar9fcnRtzcAh5wlTV
DoLWVqB4gSadgn5G47zlTTNpkHl+JutLcFOF2WETRCFJD3pMc5xH/OvZt31k5lDb
f8oJTznxvn3QxksMVJOyqKT2mCf4tlWOIp+Iu4eUB+SWFJX2Oa5Mwg+4qPKVgEY1
v3z+cYZ3RbVOBUv3YPsFWNke/U+N9tEdp1TDbJFvXj7BC0R73P5MRiY0k6mXC6oZ
qwQk7acjbXbxXHx5vMw0Hmt+Q5voAL48+NL25AlMDLhXHgCzYaCFJpT+2jjf9HNX
TBqCg2E7/9Dw/g==
-----END CERTIFICATE-----
Generated at Wed Aug 6 11:06:38 2025 by rpki-client