Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
File: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft (raw, json)
Hash identifier: NoDWiLUeE2juCatSJ1R7eVXTM+FFkootwwjW1IMkTbc=
Subject key identifier: A8:59:9A:CF:60:B4:D9:4D:3D:3B:AF:9D:E7:79:50:8E:5A:B2:3C:BC
Authority key identifier: D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
Certificate issuer: /CN=d291741252bb9c4cda80047dfb01ce98c219d180
Certificate serial: 01988F59BE5447BC89EC782715386B7CF740
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
Manifest number: 14D9
Signing time: Sat 09 Aug 2025 15:01:19 +0000
Manifest this update: Sat 09 Aug 2025 15:01:19 +0000
Manifest next update: Sun 10 Aug 2025 15:01:19 +0000
Files and hashes: 1: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl (hash: g1HUTIoQmJeFhQwWBSRA3PZEjPqaCbO4qDn5KOFc+l8=)
2: 24F3NWEaUDo-ywzWotAmlAOE0aY.roa (hash: ERf1+Eo8kcPOcjF9iXtlxaEqblrqJRaC4jpu9Wj4DSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:59:be:54:47:bc:89:ec:78:27:15:38:6b:7c:f7:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d291741252bb9c4cda80047dfb01ce98c219d180
Validity
Not Before: Aug 9 15:01:19 2025 GMT
Not After : Aug 10 15:01:19 2025 GMT
Subject: CN=a8599acf60b4d94d3d3baf9de779508e5ab23cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bf:65:aa:e3:9f:0b:87:b5:c4:8e:7b:ad:1c:
e1:00:38:d4:dd:de:aa:b9:fc:b4:54:79:0f:ed:6f:
ef:90:f7:76:36:17:2b:01:c8:e5:14:84:b9:26:ab:
9c:13:da:fd:5c:02:b5:16:da:2e:c9:03:4e:63:e3:
cb:54:ea:e3:b9:f1:0f:8c:4a:16:41:1b:04:dc:4a:
cd:e9:8e:7d:3a:ea:b7:e8:05:8c:26:75:bf:64:54:
5a:58:e6:2e:5d:44:9a:f4:66:c5:f5:76:61:98:02:
ee:c1:18:c3:36:f4:c6:15:cc:c1:7b:74:06:0c:1e:
ff:fd:9f:93:b3:0c:f7:3a:e5:e9:5b:60:30:03:82:
c8:de:13:a0:38:3d:60:3f:a4:4c:4b:f5:08:0f:3b:
5c:96:13:12:61:ea:d7:53:4e:23:41:b7:d1:88:3d:
fc:b1:60:03:1f:ca:e9:34:6a:6d:a0:89:50:44:5d:
54:82:f1:47:61:a8:71:89:47:f6:92:4e:3d:15:e7:
a7:1a:7b:05:89:1d:f3:73:72:39:4f:42:a2:de:cd:
61:5d:aa:44:a1:a3:3f:80:9b:e6:5d:f1:f8:b8:8c:
3a:c0:11:0b:38:3c:73:9c:6b:5b:e3:ff:71:4a:05:
51:39:a2:e2:8a:19:1c:68:3d:78:97:8e:8b:d3:b1:
cb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:59:9A:CF:60:B4:D9:4D:3D:3B:AF:9D:E7:79:50:8E:5A:B2:3C:BC
X509v3 Authority Key Identifier:
keyid:D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:5d:0e:8c:d1:b7:14:fc:d7:a0:51:22:50:4b:eb:7e:0c:e3:
1f:0b:12:09:75:45:4e:32:ba:d1:39:ad:df:9d:8a:42:42:36:
61:9a:24:40:0b:ad:d0:00:91:4b:65:44:23:13:7f:43:13:03:
bd:2d:2d:45:7c:94:a8:ca:f2:26:d2:6e:84:cb:32:f6:ad:1d:
91:f1:05:a5:3b:5f:ff:ae:e1:86:5f:37:df:42:ce:0c:b0:c3:
01:9d:d6:c0:83:1f:78:31:6e:28:f4:69:a5:25:7f:4b:3e:9a:
49:3d:20:fe:71:49:65:d5:0a:ef:81:ea:f7:37:20:db:05:fc:
75:40:42:41:cd:fd:ed:27:51:19:c2:12:fb:83:99:80:6f:54:
98:40:35:2a:f6:54:0d:7c:63:43:4a:37:a5:99:54:b2:be:60:
38:db:42:87:f9:0e:95:61:50:4f:85:77:f5:09:1a:d5:ed:00:
37:0a:73:89:c8:71:08:98:ab:2a:00:58:b2:85:15:86:dc:71:
e2:c1:92:0b:93:08:d2:18:81:c9:72:40:6c:de:7d:72:9d:eb:
da:54:ca:43:38:44:24:73:3e:7a:27:47:ec:19:28:19:30:74:
63:1c:90:cd:03:fd:12:7f:8a:67:09:c8:4a:27:d3:15:e3:0b:
d9:f0:5a:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiPWb5UR7yJ7HgnFThrfPdAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyOTE3NDEyNTJiYjljNGNkYTgwMDQ3ZGZiMDFjZTk4YzIx
OWQxODAwHhcNMjUwODA5MTUwMTE5WhcNMjUwODEwMTUwMTE5WjAzMTEwLwYDVQQD
EyhhODU5OWFjZjYwYjRkOTRkM2QzYmFmOWRlNzc5NTA4ZTVhYjIzY2JjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt79lquOfC4e1xI57rRzhADjU3d6q
ufy0VHkP7W/vkPd2NhcrAcjlFIS5JqucE9r9XAK1FtouyQNOY+PLVOrjufEPjEoW
QRsE3ErN6Y59Ouq36AWMJnW/ZFRaWOYuXUSa9GbF9XZhmALuwRjDNvTGFczBe3QG
DB7//Z+Tswz3OuXpW2AwA4LI3hOgOD1gP6RMS/UIDztclhMSYerXU04jQbfRiD38
sWADH8rpNGptoIlQRF1UgvFHYahxiUf2kk49FeenGnsFiR3zc3I5T0Ki3s1hXapE
oaM/gJvmXfH4uIw6wBELODxznGtb4/9xSgVROaLiihkcaD14l46L07HLNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKhZms9gtNlNPTuvned5UI5asjy8MB8GA1UdIwQY
MBaAFNKRdBJSu5xM2oAEffsBzpjCGdGAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHBGMEVsSzduRXphZ0FSOS13SE9tTUlaMFlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8zYmE2ZmMtMmQ0OS00YWZmLTkyMjkt
NDhiOTU3MjY0YzI2LzEvMHBGMEVsSzduRXphZ0FSOS13SE9tTUlaMFlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC8zYmE2ZmMtMmQ0OS00YWZmLTkyMjktNDhiOTU3MjY0YzI2
LzEvMHBGMEVsSzduRXphZ0FSOS13SE9tTUlaMFlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIV0OjNG3
FPzXoFEiUEvrfgzjHwsSCXVFTjK60Tmt352KQkI2YZokQAut0ACRS2VEIxN/QxMD
vS0tRXyUqMryJtJuhMsy9q0dkfEFpTtf/67hhl8330LODLDDAZ3WwIMfeDFuKPRp
pSV/Sz6aST0g/nFJZdUK74Hq9zcg2wX8dUBCQc397SdRGcIS+4OZgG9UmEA1KvZU
DXxjQ0o3pZlUsr5gONtCh/kOlWFQT4V39Qka1e0ANwpzichxCJirKgBYsoUVhtxx
4sGSC5MI0hiByXJAbN59cp3r2lTKQzhEJHM+eidH7BkoGTB0YxyQzQP9En+KZwnI
SifTFeML2fBatg==
-----END CERTIFICATE-----
Generated at Sat Aug 9 20:36:22 2025 by rpki-client