Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: bsUsOpZwO7WMYbKlR8Rkj7wWuX9djEBEVOtzVA6F92g=
Subject key identifier: 4A:02:3E:47:86:2A:AB:97:47:F0:A5:16:A5:8B:1F:A4:22:B8:9F:58
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 0198879FC63F6E0B53A2A8C259BE07D75987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 1088
Signing time: Fri 08 Aug 2025 03:00:51 +0000
Manifest this update: Fri 08 Aug 2025 03:00:51 +0000
Manifest next update: Sat 09 Aug 2025 03:00:51 +0000
Files and hashes: 1: 1-Ls4q-ChZ0ZaOTjP1nQ6tqwVR7w.roa (hash: YXXZf8p+XXstJczN+ymTH8ANFDcZF/VCsvvC/wyu2tg=)
2: 3K66fkLdFIhZuPgVnT8dBkSPcIY.roa (hash: jrto9CYh3lf5yVyFB1TxobdXxUZh+GOGoL+a0rSxI8I=)
3: AF6uSBXXjV8m6D8T1L1tDnPI1pQ.roa (hash: 5ngifaMxS9mhHVtoSr7d4Aq0k4gtgdDqeUt6H7Q6K9U=)
4: GJq6jlu04Rm9wa7Cgp8cTcM0nxA.roa (hash: AENchPK3bfQJEdljclR0ie9L+vwumxV2eeigY07rGKw=)
5: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: zQN2C5ZjtQ5+coa9XP/YtU+ZShIUF/HcCRkUmwCrteo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:9f:c6:3f:6e:0b:53:a2:a8:c2:59:be:07:d7:59:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Aug 8 03:00:51 2025 GMT
Not After : Aug 9 03:00:51 2025 GMT
Subject: CN=4a023e47862aab9747f0a516a58b1fa422b89f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:76:60:58:64:6b:12:04:f9:7d:78:df:ae:bc:
d2:f8:25:13:82:d2:63:79:8d:82:df:b9:6e:33:03:
9d:9e:6e:61:d6:1e:65:19:f6:7c:7c:ea:09:5a:5f:
63:a1:7e:6b:f8:14:52:b0:59:cc:8c:8e:81:96:28:
22:4a:da:af:4d:a0:48:c0:eb:d3:75:31:82:1b:36:
8e:f8:62:c0:fa:5d:76:4d:07:21:96:b3:c6:ad:1a:
9f:02:21:93:01:18:ae:f8:69:d3:3b:57:bb:8b:35:
ef:30:d9:00:b2:ee:61:43:7e:c5:91:a9:dc:e0:09:
f9:1f:b5:0a:ad:34:45:74:b4:51:fd:ca:87:4f:bf:
a5:12:a4:b2:86:ed:13:ad:4c:57:d1:e9:91:2e:1c:
a3:97:99:2c:f6:32:a7:3a:e0:8f:6b:37:53:7b:56:
2f:32:90:3e:eb:58:bf:cc:96:60:2d:52:e3:82:00:
0d:d7:84:94:84:62:bc:68:db:32:99:98:6a:f8:1c:
25:75:b1:ec:4c:ad:d7:00:30:b7:bc:30:c1:1d:00:
94:ef:68:47:9f:b8:52:47:e2:0c:74:ad:6c:b5:22:
52:04:6e:0b:64:1e:66:d8:c8:3e:c2:00:c9:77:82:
ab:d6:9d:13:9f:5f:8b:c0:3a:38:c8:7d:67:a2:07:
03:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:02:3E:47:86:2A:AB:97:47:F0:A5:16:A5:8B:1F:A4:22:B8:9F:58
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:06:1d:11:a1:b5:fe:62:db:9e:cb:20:e4:5c:41:2a:9b:5b:
8d:6f:08:7e:01:9f:99:28:08:6e:12:74:a0:03:b6:54:85:44:
d5:a7:99:80:71:5f:2e:67:3c:3b:e5:73:e6:71:0a:55:e1:ba:
f2:8b:71:a3:71:88:c0:70:e9:fd:62:07:61:36:35:20:6a:1d:
ad:27:93:fb:a8:41:4f:7a:05:0d:fc:96:8c:5a:64:1c:ad:99:
43:f2:83:e0:5e:0b:3e:cc:78:29:f6:d8:8d:32:45:b0:f0:81:
f2:c8:51:5d:de:a8:a2:ed:07:54:64:35:17:58:70:73:90:53:
4c:13:25:77:b3:bb:74:75:f2:e1:58:37:84:40:1d:86:86:b4:
36:ec:78:0b:80:10:b2:47:72:35:4a:c6:9c:81:5e:3c:1a:f0:
b8:f8:c5:f2:8b:ec:b4:48:1a:5e:1a:4a:01:9c:21:bc:7e:44:
c4:ea:b0:14:02:5e:d6:1b:7f:1b:77:3c:f3:1a:51:6b:8b:b9:
ef:d2:0c:84:88:64:4b:04:34:78:37:6b:e4:d3:95:45:d4:4b:
bb:de:b1:dc:f6:64:8a:2a:72:9e:8f:9c:cf:0f:ad:f9:a1:33:
85:04:67:f1:a8:a4:03:b9:2d:a8:ca:67:63:6f:8c:97:b6:96:
5b:2d:08:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiHn8Y/bgtToqjCWb4H11mHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiOGZlMjQ2NTg0MzAzMWI3NzhiYjhkOGI3YmQzNWEwOTRm
Y2NmNDgwHhcNMjUwODA4MDMwMDUxWhcNMjUwODA5MDMwMDUxWjAzMTEwLwYDVQQD
Eyg0YTAyM2U0Nzg2MmFhYjk3NDdmMGE1MTZhNThiMWZhNDIyYjg5ZjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzXZgWGRrEgT5fXjfrrzS+CUTgtJj
eY2C37luMwOdnm5h1h5lGfZ8fOoJWl9joX5r+BRSsFnMjI6BligiStqvTaBIwOvT
dTGCGzaO+GLA+l12TQchlrPGrRqfAiGTARiu+GnTO1e7izXvMNkAsu5hQ37Fkanc
4An5H7UKrTRFdLRR/cqHT7+lEqSyhu0TrUxX0emRLhyjl5ks9jKnOuCPazdTe1Yv
MpA+61i/zJZgLVLjggAN14SUhGK8aNsymZhq+BwldbHsTK3XADC3vDDBHQCU72hH
n7hSR+IMdK1stSJSBG4LZB5m2Mg+wgDJd4Kr1p0Tn1+LwDo4yH1nogcDEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEoCPkeGKquXR/ClFqWLH6QiuJ9YMB8GA1UdIwQY
MBaAFDuP4kZYQwMbd4u42Le9NaCU/M9IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9lZjIwY2YtNGMzOS00NzA3LTg1N2Mt
N2MzNTAwNmUwN2ExLzEvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9lZjIwY2YtNGMzOS00NzA3LTg1N2MtN2MzNTAwNmUwN2Ex
LzEvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADQYdEaG1
/mLbnssg5FxBKptbjW8IfgGfmSgIbhJ0oAO2VIVE1aeZgHFfLmc8O+Vz5nEKVeG6
8otxo3GIwHDp/WIHYTY1IGodrSeT+6hBT3oFDfyWjFpkHK2ZQ/KD4F4LPsx4KfbY
jTJFsPCB8shRXd6oou0HVGQ1F1hwc5BTTBMld7O7dHXy4Vg3hEAdhoa0Nux4C4AQ
skdyNUrGnIFePBrwuPjF8ovstEgaXhpKAZwhvH5ExOqwFAJe1ht/G3c88xpRa4u5
79IMhIhkSwQ0eDdr5NOVRdRLu96x3PZkiipyno+czw+t+aEzhQRn8aikA7ktqMpn
Y2+Ml7aWWy0IUA==
-----END CERTIFICATE-----
Generated at Fri Aug 8 10:15:00 2025 by rpki-client