Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
File: sO8ZvLI6LwTFhqwTEakbx8oql2U.mft (raw, json)
Hash identifier: fTkVLIqELjZXKrkoN+TqS2t5BhBGKHTWhUPph88UGjc=
Subject key identifier: FF:4C:77:C7:36:51:8D:26:08:5C:8B:98:72:A5:FE:F4:6D:83:3C:76
Authority key identifier: B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
Certificate issuer: /CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Certificate serial: 019877BF58AD40CDB4CE62BC68E4833512E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
Manifest number: 0A08
Signing time: Tue 05 Aug 2025 01:01:25 +0000
Manifest this update: Tue 05 Aug 2025 01:01:25 +0000
Manifest next update: Wed 06 Aug 2025 01:01:25 +0000
Files and hashes: 1: E6bot_tKJqCzADpBxFeKtsutgCs.roa (hash: IzVVajCV/IB0bxI8d5Bqo7CZjFjDagAuPrwaJPvu9o8=)
2: sO8ZvLI6LwTFhqwTEakbx8oql2U.crl (hash: XdxJfwzB12qADmPYqljysIDDBRWV93V1YGRGwZfB6Cc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 00:46:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:77:bf:58:ad:40:cd:b4:ce:62:bc:68:e4:83:35:12:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Validity
Not Before: Aug 5 01:01:25 2025 GMT
Not After : Aug 6 01:01:25 2025 GMT
Subject: CN=ff4c77c736518d26085c8b9872a5fef46d833c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:87:7a:57:8b:55:d4:a6:2e:ae:02:48:da:75:
15:24:1d:06:4e:7d:a8:07:a1:22:07:f5:c3:78:24:
ac:2d:59:89:77:af:00:79:52:4d:81:29:db:4a:52:
95:7b:c6:e9:26:7f:81:fd:ee:d5:d7:d7:0b:9d:44:
ce:31:f4:be:6a:6a:85:ed:b8:d0:15:1a:c3:e5:66:
14:a5:b8:09:20:89:a4:01:8f:f2:b7:f9:18:c7:dd:
c6:cd:3f:05:90:e7:27:25:58:51:e3:67:8c:16:0b:
c8:c9:ff:57:88:88:f7:e7:25:08:d5:05:76:01:f8:
ed:ee:5b:6a:f7:fe:88:13:93:72:cb:27:77:a8:91:
25:cb:d4:83:7c:1e:92:cb:23:ef:56:0d:c6:b9:4f:
a4:f3:43:3e:2a:f4:85:08:45:09:4a:e7:43:15:41:
0e:6c:d5:3b:d0:c9:3a:c0:6c:ac:f4:a0:b1:4c:ff:
de:dd:fe:67:1f:46:63:82:dd:19:43:bc:a4:99:b6:
bc:03:34:6b:39:eb:93:cf:70:6d:ab:9c:cd:07:5d:
e7:54:c5:9f:5c:a0:ea:00:ae:89:5a:0d:52:c5:97:
8b:1f:8b:75:97:cf:11:3c:95:f2:01:f6:4d:c4:eb:
45:50:60:1f:69:f2:29:d5:c3:33:11:e9:2c:3b:96:
b7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:4C:77:C7:36:51:8D:26:08:5C:8B:98:72:A5:FE:F4:6D:83:3C:76
X509v3 Authority Key Identifier:
keyid:B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:ac:26:8c:22:9a:cc:d3:06:4b:b8:bb:2f:7e:ee:44:33:61:
cb:d4:f5:75:53:f0:19:0d:02:95:a8:3b:d1:73:57:5a:c6:64:
1e:cf:69:2d:8c:4b:04:fe:9e:a4:db:01:13:03:d7:c5:c6:1c:
b7:f3:3e:29:00:ef:d0:e4:6d:9d:76:09:65:68:42:e3:0d:13:
b4:c9:fa:3f:ac:97:1c:c7:9b:b4:c3:eb:9a:d4:b2:f9:fa:a6:
fe:39:d6:62:e4:bc:42:e8:f2:33:21:fc:5d:f5:60:08:cc:a1:
af:59:c8:7a:0d:36:54:d8:ab:b7:31:47:a3:c1:10:17:97:d6:
39:71:7d:a9:cd:68:38:e0:7a:c8:0e:90:64:1e:a3:ef:6d:d8:
d2:84:b2:f7:c2:a8:82:40:da:2a:ed:58:40:e4:ed:1c:49:b1:
45:7c:b9:0b:01:e5:96:f6:d7:9f:32:cc:ce:44:7f:12:87:2a:
1f:cd:fa:0a:da:70:28:13:31:74:6e:c3:dc:69:2f:b1:cd:4b:
c5:59:eb:c7:29:1b:49:d5:bc:a5:02:bc:30:7e:89:fb:e4:10:
76:71:7f:85:d8:e6:d6:81:ba:52:53:29:5b:d1:2b:0a:23:0f:
fc:54:4c:91:dc:21:8d:58:9d:4a:48:5e:d3:da:a0:ba:e0:3d:
b6:11:ab:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh3v1itQM20zmK8aOSDNRLpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwZWYxOWJjYjIzYTJmMDRjNTg2YWMxMzExYTkxYmM3Y2Ey
YTk3NjUwHhcNMjUwODA1MDEwMTI1WhcNMjUwODA2MDEwMTI1WjAzMTEwLwYDVQQD
EyhmZjRjNzdjNzM2NTE4ZDI2MDg1YzhiOTg3MmE1ZmVmNDZkODMzYzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Yd6V4tV1KYurgJI2nUVJB0GTn2o
B6EiB/XDeCSsLVmJd68AeVJNgSnbSlKVe8bpJn+B/e7V19cLnUTOMfS+amqF7bjQ
FRrD5WYUpbgJIImkAY/yt/kYx93GzT8FkOcnJVhR42eMFgvIyf9XiIj35yUI1QV2
Afjt7ltq9/6IE5Nyyyd3qJEly9SDfB6SyyPvVg3GuU+k80M+KvSFCEUJSudDFUEO
bNU70Mk6wGys9KCxTP/e3f5nH0Zjgt0ZQ7ykmba8AzRrOeuTz3Btq5zNB13nVMWf
XKDqAK6JWg1SxZeLH4t1l88RPJXyAfZNxOtFUGAfafIp1cMzEeksO5a3xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP9Md8c2UY0mCFyLmHKl/vRtgzx2MB8GA1UdIwQY
MBaAFLDvGbyyOi8ExYasExGpG8fKKpdlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc084WnZMSTZMd1RGaHF3VEVha2J4OG9xbDJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9hZjNlNTEtNzlkNi00MDc4LWE1Njkt
ZDAwMDNhNmI1MjI0LzEvc084WnZMSTZMd1RGaHF3VEVha2J4OG9xbDJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9hZjNlNTEtNzlkNi00MDc4LWE1NjktZDAwMDNhNmI1MjI0
LzEvc084WnZMSTZMd1RGaHF3VEVha2J4OG9xbDJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP6wmjCKa
zNMGS7i7L37uRDNhy9T1dVPwGQ0Clag70XNXWsZkHs9pLYxLBP6epNsBEwPXxcYc
t/M+KQDv0ORtnXYJZWhC4w0TtMn6P6yXHMebtMPrmtSy+fqm/jnWYuS8QujyMyH8
XfVgCMyhr1nIeg02VNirtzFHo8EQF5fWOXF9qc1oOOB6yA6QZB6j723Y0oSy98Ko
gkDaKu1YQOTtHEmxRXy5CwHllvbXnzLMzkR/EocqH836CtpwKBMxdG7D3Gkvsc1L
xVnrxykbSdW8pQK8MH6J++QQdnF/hdjm1oG6UlMpW9ErCiMP/FRMkdwhjVidSkhe
09qguuA9thGrdw==
-----END CERTIFICATE-----
Generated at Tue Aug 5 08:22:43 2025 by rpki-client