Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json)
Hash identifier: +Gplr03ZVZNvqaA60bK4bWtSTdlYgChL7p2hJWfW1cY=
Subject key identifier: A0:11:7B:8D:A0:76:AB:DE:3F:97:96:63:88:21:3F:F6:26:ED:B3:2B
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 01987D8B06275E2B7B74B3E715CD98A0C476
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
Manifest number: 160E
Signing time: Wed 06 Aug 2025 04:01:59 +0000
Manifest this update: Wed 06 Aug 2025 04:01:59 +0000
Manifest next update: Thu 07 Aug 2025 04:01:59 +0000
Files and hashes: 1: JQFRevUesYnGzWy86if_lRLWdpc.roa (hash: t3BYwJZyAAH5HRBi+AIKc99FxTLmFzwx0nZw4AplB88=)
2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: m/+HO8ERIIlMT84C2eRrTla9BlQ1hM7AjBQm+T6Fndg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:06:27:5e:2b:7b:74:b3:e7:15:cd:98:a0:c4:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Aug 6 04:01:59 2025 GMT
Not After : Aug 7 04:01:59 2025 GMT
Subject: CN=a0117b8da076abde3f97966388213ff626edb32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:16:e5:a2:4b:59:e1:13:0a:f8:c3:12:38:3c:
1f:71:43:90:81:e7:10:b8:ca:15:55:39:8c:3e:f4:
48:8c:52:58:72:0d:93:89:98:68:63:bf:46:d1:e2:
5f:4f:60:47:6a:79:d2:77:d8:10:ec:1e:32:28:ed:
e1:f0:af:a7:d6:c8:17:25:f2:0f:0b:a4:63:2f:e0:
15:ec:c9:51:81:c1:32:8d:76:fc:05:54:a0:62:92:
f0:84:0c:56:71:34:57:04:6f:66:fa:b9:d8:28:6d:
44:88:ce:ce:04:ba:a0:b1:dd:f0:0b:26:16:e3:05:
8d:fa:be:dc:b4:56:c0:0c:50:67:c9:1b:0c:48:9c:
02:cb:ba:17:a4:db:94:cf:4a:49:67:c7:a6:0d:d2:
7f:ae:75:e1:3d:55:53:59:f4:8d:b1:8f:94:ac:bc:
57:d9:69:e4:25:0c:c1:cc:60:d9:a3:28:49:6f:df:
12:08:59:7a:b1:9a:34:dd:1f:d2:d1:38:ad:a1:06:
c0:07:1f:aa:92:14:b1:cc:31:aa:81:91:cd:f4:a2:
85:26:8b:13:90:70:d8:e4:e5:0d:a3:d5:c9:2a:36:
90:ad:2d:ef:44:f4:14:71:78:c8:0e:d5:e9:46:88:
cf:18:5f:2d:c4:b7:aa:be:bb:00:af:38:32:77:1d:
df:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:11:7B:8D:A0:76:AB:DE:3F:97:96:63:88:21:3F:F6:26:ED:B3:2B
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:c1:4a:d5:2f:19:0f:af:af:9d:bd:18:d5:f0:93:d5:0e:5e:
45:85:c8:41:ec:2b:74:b8:69:d8:92:ac:39:ec:6a:34:ee:f3:
21:d6:1b:d7:7e:95:6b:18:26:e9:74:35:e0:05:95:6c:db:eb:
7e:38:6b:4a:18:c4:75:10:4c:0a:fa:52:f2:36:d7:a1:de:32:
38:de:e6:fd:78:30:50:3b:ea:11:e3:e8:ca:85:42:33:7c:0b:
69:67:84:44:15:68:f7:dc:93:39:3b:df:98:a8:44:d6:ed:50:
59:d1:d9:b3:1b:33:3a:5a:96:97:bb:f1:2f:8e:f7:a7:c4:5a:
3a:1d:3e:58:de:7b:50:a2:79:73:a1:5f:3d:c9:05:2a:ce:13:
7e:31:57:fb:9e:16:c2:20:56:17:92:78:26:b0:8a:98:ab:e5:
f0:b5:2f:69:c9:f8:5c:76:2b:e8:ca:f6:3d:95:7e:ac:b0:2f:
40:4c:35:8f:9e:8a:5e:b5:80:0d:74:75:33:a2:d1:9a:a9:6b:
dd:fc:b9:b5:d3:6f:40:39:b0:64:4c:44:c1:34:03:a6:37:b4:
25:40:99:f6:93:71:6d:07:ef:c2:c9:03:cf:ad:3c:1a:6a:35:
85:d3:da:46:b4:56:b8:2e:88:e0:0e:3e:25:fa:72:c4:53:85:
7b:95:af:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9iwYnXit7dLPnFc2YoMR2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNjZmMzViYWM2MWEwYWJmNzFkMThkNmIxMDYzZDVjOTMz
YTI0YWIwHhcNMjUwODA2MDQwMTU5WhcNMjUwODA3MDQwMTU5WjAzMTEwLwYDVQQD
EyhhMDExN2I4ZGEwNzZhYmRlM2Y5Nzk2NjM4ODIxM2ZmNjI2ZWRiMzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhbloktZ4RMK+MMSODwfcUOQgecQ
uMoVVTmMPvRIjFJYcg2TiZhoY79G0eJfT2BHannSd9gQ7B4yKO3h8K+n1sgXJfIP
C6RjL+AV7MlRgcEyjXb8BVSgYpLwhAxWcTRXBG9m+rnYKG1EiM7OBLqgsd3wCyYW
4wWN+r7ctFbADFBnyRsMSJwCy7oXpNuUz0pJZ8emDdJ/rnXhPVVTWfSNsY+UrLxX
2WnkJQzBzGDZoyhJb98SCFl6sZo03R/S0TitoQbABx+qkhSxzDGqgZHN9KKFJosT
kHDY5OUNo9XJKjaQrS3vRPQUcXjIDtXpRojPGF8txLeqvrsArzgydx3fCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKARe42gdqveP5eWY4ghP/Ym7bMrMB8GA1UdIwQY
MBaAFKNm81usYaCr9x0Y1rEGPVyTOiSrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzJielc2eGhvS3YzSFJqV3NRWTlYSk02SktzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC80Y2Y4MTQtNzliNS00Nzg2LWFjNTEt
MzE5MDc5NWU4NjNiLzEvbzJielc2eGhvS3YzSFJqV3NRWTlYSk02SktzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC80Y2Y4MTQtNzliNS00Nzg2LWFjNTEtMzE5MDc5NWU4NjNi
LzEvbzJielc2eGhvS3YzSFJqV3NRWTlYSk02SktzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATsFK1S8Z
D6+vnb0Y1fCT1Q5eRYXIQewrdLhp2JKsOexqNO7zIdYb136Vaxgm6XQ14AWVbNvr
fjhrShjEdRBMCvpS8jbXod4yON7m/XgwUDvqEePoyoVCM3wLaWeERBVo99yTOTvf
mKhE1u1QWdHZsxszOlqWl7vxL473p8RaOh0+WN57UKJ5c6FfPckFKs4TfjFX+54W
wiBWF5J4JrCKmKvl8LUvacn4XHYr6Mr2PZV+rLAvQEw1j56KXrWADXR1M6LRmqlr
3fy5tdNvQDmwZExEwTQDpje0JUCZ9pNxbQfvwskDz608Gmo1hdPaRrRWuC6I4A4+
JfpyxFOFe5Wvag==
-----END CERTIFICATE-----
Generated at Wed Aug 6 09:40:02 2025 by rpki-client