Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: m2Vfux9QmVuo9Gu2AE7QXBr9kquVP8IF8lN+qeJB9Ek=
Subject key identifier: DB:25:97:97:04:16:EF:0A:8A:02:9C:4C:44:7C:63:C7:D0:5E:E5:CB
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 01988732C2A16499A8DB57DAE0521285D080
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: 018C
Signing time: Fri 08 Aug 2025 01:01:47 +0000
Manifest this update: Fri 08 Aug 2025 01:01:47 +0000
Manifest next update: Sat 09 Aug 2025 01:01:47 +0000
Files and hashes: 1: 2d_NXZtW0ODYRMQ4wdJe7FkxoW0.roa (hash: PhAe9DgdWLVDbJJiZelbxMyByKXlfBNEMtHqWSG1jZ8=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: A8jB2WQJy5cbQ1775Pf3EHMrzyjWAdCCn4px42OPumM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 01:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:32:c2:a1:64:99:a8:db:57:da:e0:52:12:85:d0:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: Aug 8 01:01:47 2025 GMT
Not After : Aug 9 01:01:47 2025 GMT
Subject: CN=db2597970416ef0a8a029c4c447c63c7d05ee5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d3:02:63:b8:d7:6f:f4:6d:01:91:d6:c8:d7:
7a:b3:1b:c8:be:7c:79:31:c4:65:85:53:55:2f:e0:
90:64:2f:eb:c6:81:a9:25:b4:1a:47:54:88:cd:47:
b4:3e:67:df:b7:b0:a0:00:f1:3e:25:a1:e8:c6:73:
ca:08:a8:76:52:9a:86:ae:c4:d3:4a:c7:5c:51:be:
a8:6d:e0:94:69:df:be:56:55:49:43:c9:ec:c8:63:
43:9e:2f:2b:f1:55:37:fb:e9:cd:98:09:c8:1b:f6:
b0:17:31:87:9a:8c:18:de:b2:8a:82:ca:2e:2a:2b:
08:2f:67:17:e3:02:23:91:39:3d:da:d5:24:a1:55:
a7:91:37:54:de:79:12:5d:48:4f:12:1e:47:f3:81:
1f:fd:aa:7b:70:66:e0:dd:6a:64:5e:ef:b8:4f:a0:
80:f2:f7:7f:d8:f7:55:90:48:4f:95:be:23:71:ed:
ab:c8:06:2b:70:11:31:98:30:e1:d9:f9:4d:78:55:
41:96:a2:7d:0a:9a:f9:1e:f4:36:4e:08:bf:b8:d7:
b0:8e:f0:f9:fb:cb:ed:e4:16:e0:77:6e:7e:8a:15:
2c:a2:1c:5f:57:f8:d9:6d:af:e0:b0:9b:49:3a:90:
f2:95:0d:4c:cb:c2:97:64:e8:51:92:a8:a8:9f:1f:
90:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:25:97:97:04:16:EF:0A:8A:02:9C:4C:44:7C:63:C7:D0:5E:E5:CB
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:d6:9d:ae:95:e8:07:87:e1:23:c7:73:64:94:bc:98:47:ac:
a3:ff:eb:30:c7:13:dc:98:18:82:f9:51:76:7f:d7:c6:c0:52:
6b:a7:26:0e:a6:63:77:88:20:bd:05:99:9b:7e:66:1e:7e:77:
9f:c6:e2:33:85:ec:f1:73:48:9e:3f:f0:58:c9:4f:60:23:93:
32:2c:a0:8a:44:d4:90:96:53:83:50:c2:d6:fe:d0:ce:8a:a3:
ed:18:d1:a0:c9:d6:9a:c4:64:76:8f:7f:86:c3:7f:84:27:36:
fb:72:10:be:54:74:b9:2c:69:2d:fb:86:00:7e:2a:8e:63:9e:
f0:ea:61:b6:40:1b:80:a0:4a:0d:78:58:4a:a7:24:c1:22:1f:
13:33:47:ec:a8:82:c1:89:e8:b1:f3:b8:06:82:c2:2f:c3:9a:
b7:7a:26:5e:7c:b0:59:f5:f6:fd:dd:df:ba:35:e9:2b:94:72:
df:b9:07:bc:e2:fd:e3:7f:28:06:b3:73:ff:b0:12:14:a8:b7:
a2:91:97:64:aa:41:89:2c:88:41:b0:79:35:9f:2c:3e:16:a5:
d6:51:d2:93:ba:d6:6b:1b:87:bd:03:49:75:11:12:98:78:d4:
1d:3f:8b:ae:01:ee:fe:e6:e1:fd:85:b6:42:06:73:62:32:5b:
13:06:91:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiHMsKhZJmo21fa4FIShdCAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OGI0ZTJlYWVmZGNiZWMxNWJhOTllOGE3YTIxYzg5ZTRi
MmNjYmQwHhcNMjUwODA4MDEwMTQ3WhcNMjUwODA5MDEwMTQ3WjAzMTEwLwYDVQQD
EyhkYjI1OTc5NzA0MTZlZjBhOGEwMjljNGM0NDdjNjNjN2QwNWVlNWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntMCY7jXb/RtAZHWyNd6sxvIvnx5
McRlhVNVL+CQZC/rxoGpJbQaR1SIzUe0Pmfft7CgAPE+JaHoxnPKCKh2UpqGrsTT
SsdcUb6obeCUad++VlVJQ8nsyGNDni8r8VU3++nNmAnIG/awFzGHmowY3rKKgsou
KisIL2cX4wIjkTk92tUkoVWnkTdU3nkSXUhPEh5H84Ef/ap7cGbg3WpkXu+4T6CA
8vd/2PdVkEhPlb4jce2ryAYrcBExmDDh2flNeFVBlqJ9Cpr5HvQ2Tgi/uNewjvD5
+8vt5Bbgd25+ihUsohxfV/jZba/gsJtJOpDylQ1My8KXZOhRkqionx+QuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNsll5cEFu8KigKcTER8Y8fQXuXLMB8GA1UdIwQY
MBaAFHaLTi6u/cvsFbqZ6KeiHInkssy9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG90T0xxNzl5LXdWdXBub3A2SWNpZVN5ekwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9iNTc4OTItY2QzZC00ZjA2LTkxZjct
NTUzODdiZmI1ZTY2LzEvZG90T0xxNzl5LXdWdXBub3A2SWNpZVN5ekwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9iNTc4OTItY2QzZC00ZjA2LTkxZjctNTUzODdiZmI1ZTY2
LzEvZG90T0xxNzl5LXdWdXBub3A2SWNpZVN5ekwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGNadrpXo
B4fhI8dzZJS8mEeso//rMMcT3JgYgvlRdn/XxsBSa6cmDqZjd4ggvQWZm35mHn53
n8biM4Xs8XNInj/wWMlPYCOTMiygikTUkJZTg1DC1v7Qzoqj7RjRoMnWmsRkdo9/
hsN/hCc2+3IQvlR0uSxpLfuGAH4qjmOe8OphtkAbgKBKDXhYSqckwSIfEzNH7KiC
wYnosfO4BoLCL8Oat3omXnywWfX2/d3fujXpK5Ry37kHvOL9438oBrNz/7ASFKi3
opGXZKpBiSyIQbB5NZ8sPhal1lHSk7rWaxuHvQNJdRESmHjUHT+LrgHu/ubh/YW2
QgZzYjJbEwaR7A==
-----END CERTIFICATE-----
Generated at Fri Aug 8 10:10:55 2025 by rpki-client