Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
File: o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft (raw, json)
Hash identifier: 8hvFpexc/zNvilIZqwmKWUU5o+zt3Y+8O3hfWVwDx7Q=
Subject key identifier: 2E:C8:03:F9:F5:CC:54:60:CE:FD:D4:F1:DD:FE:EB:FB:BB:C9:D3:F4
Authority key identifier: A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75
Certificate issuer: /CN=a3688305fed5c99760aec7c894c6ba21e4ead675
Certificate serial: 01987DF80DBD2B5493B6FCBDCBEF375929C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
Manifest number: 111C
Signing time: Wed 06 Aug 2025 06:01:05 +0000
Manifest this update: Wed 06 Aug 2025 06:01:05 +0000
Manifest next update: Thu 07 Aug 2025 06:01:05 +0000
Files and hashes: 1: 29zZRujAn8DGdUDp5utUkmVO-uo.roa (hash: pdGXIGI1eFN6x7W6e3AuHm1Q9j3iH8yigptYTm3P3QA=)
2: o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl (hash: rGxAnHbLpZf6W/x7ZLQu497YCWDdTKz/zmGy9CGejas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f8:0d:bd:2b:54:93:b6:fc:bd:cb:ef:37:59:29:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3688305fed5c99760aec7c894c6ba21e4ead675
Validity
Not Before: Aug 6 06:01:05 2025 GMT
Not After : Aug 7 06:01:05 2025 GMT
Subject: CN=2ec803f9f5cc5460cefdd4f1ddfeebfbbbc9d3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:49:0a:5a:24:f2:19:f2:e0:7b:49:8b:eb:78:
b8:cf:64:70:1a:80:61:cf:13:d5:d7:4f:a6:e6:15:
b3:77:87:5d:f8:2f:65:7d:bf:5b:a6:e4:eb:bd:c9:
ea:6e:04:ef:44:7c:aa:2f:69:51:5e:58:40:06:c4:
0b:32:4c:49:60:66:9c:2d:1d:e6:87:21:5a:1d:f6:
be:77:c3:99:2b:f8:f0:c0:f4:96:9c:c3:a5:c4:20:
2e:56:ae:71:a1:4a:ae:11:f6:74:ac:34:1c:bd:b9:
63:65:ac:7e:9e:79:67:b1:98:4b:84:48:af:e9:86:
be:02:d3:c3:a2:1f:33:09:d3:2a:e8:40:fc:65:6a:
db:ea:56:a4:b3:a6:51:51:6e:97:6b:74:71:4a:78:
9b:5b:0c:db:83:5a:63:59:1a:d7:63:e0:b2:56:dd:
2d:e9:ce:eb:c7:fa:b5:8f:dc:13:3f:c1:a7:d7:21:
fc:f1:4d:7f:d0:fc:8d:e6:51:b4:cf:ee:ef:a6:3a:
09:a3:c7:54:3f:56:84:8c:f7:ca:b8:8b:60:fa:39:
68:c8:37:ea:e6:f4:3f:a8:6d:0e:ac:f8:e1:66:d4:
93:89:9d:ff:ea:96:9f:57:89:31:14:82:48:65:8f:
a1:15:e4:80:b7:a1:da:97:ea:6e:8a:6a:0d:55:be:
1b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C8:03:F9:F5:CC:54:60:CE:FD:D4:F1:DD:FE:EB:FB:BB:C9:D3:F4
X509v3 Authority Key Identifier:
keyid:A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:84:aa:af:39:86:08:cf:76:be:26:20:34:9e:33:ab:5a:f8:
95:90:46:fa:16:a0:42:be:99:b8:9a:d5:93:c4:d3:7f:e3:f9:
33:53:69:c7:1f:cb:9d:b0:cf:37:c1:4e:be:d8:4a:2c:c9:a7:
9c:37:54:70:c8:f1:39:b7:96:a2:e2:79:e9:ca:46:ec:a8:a5:
4c:0d:3f:f8:38:83:4f:9a:4b:fe:0b:bd:ca:2a:9a:cf:21:78:
9e:65:ba:85:aa:a6:5f:2d:3f:9a:93:7d:6f:93:29:46:05:e4:
d2:45:85:49:d9:5a:c5:cb:72:e9:7e:54:25:8d:c0:03:23:47:
7a:61:3a:f7:17:32:24:b1:8e:05:24:fd:14:36:e7:8d:b7:dd:
fe:66:14:f1:a9:3c:56:13:30:67:65:03:f2:31:f1:da:69:07:
f3:38:76:7c:a2:ef:61:54:a7:30:1d:26:0e:1d:4b:fb:6c:26:
a3:5d:08:3c:51:fb:5d:a9:fc:41:8d:91:60:96:05:09:f1:2b:
8f:4d:2c:20:bc:89:0a:8d:d7:f5:7f:85:c2:18:1d:7b:96:10:
31:2d:6f:af:bf:de:b8:9a:10:e3:3b:9b:40:66:38:6c:4c:db:
01:5c:71:cf:44:fd:08:66:8b:0e:73:06:9f:4d:bc:d3:70:fc:
2d:f6:f6:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9+A29K1STtvy9y+83WSnCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNjg4MzA1ZmVkNWM5OTc2MGFlYzdjODk0YzZiYTIxZTRl
YWQ2NzUwHhcNMjUwODA2MDYwMTA1WhcNMjUwODA3MDYwMTA1WjAzMTEwLwYDVQQD
EygyZWM4MDNmOWY1Y2M1NDYwY2VmZGQ0ZjFkZGZlZWJmYmJiYzlkM2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UkKWiTyGfLge0mL63i4z2RwGoBh
zxPV10+m5hWzd4dd+C9lfb9bpuTrvcnqbgTvRHyqL2lRXlhABsQLMkxJYGacLR3m
hyFaHfa+d8OZK/jwwPSWnMOlxCAuVq5xoUquEfZ0rDQcvbljZax+nnlnsZhLhEiv
6Ya+AtPDoh8zCdMq6ED8ZWrb6laks6ZRUW6Xa3RxSnibWwzbg1pjWRrXY+CyVt0t
6c7rx/q1j9wTP8Gn1yH88U1/0PyN5lG0z+7vpjoJo8dUP1aEjPfKuItg+jloyDfq
5vQ/qG0OrPjhZtSTiZ3/6pafV4kxFIJIZY+hFeSAt6Hal+puimoNVb4bPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC7IA/n1zFRgzv3U8d3+6/u7ydP0MB8GA1UdIwQY
MBaAFKNogwX+1cmXYK7HyJTGuiHk6tZ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzJpREJmN1Z5WmRncnNmSWxNYTZJZVRxMW5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9mOWUyNTctMDE2Mi00ZGVmLTk2YWQt
ZGVjOTc5NmY2MjIzLzEvbzJpREJmN1Z5WmRncnNmSWxNYTZJZVRxMW5VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9mOWUyNTctMDE2Mi00ZGVmLTk2YWQtZGVjOTc5NmY2MjIz
LzEvbzJpREJmN1Z5WmRncnNmSWxNYTZJZVRxMW5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdISqrzmG
CM92viYgNJ4zq1r4lZBG+hagQr6ZuJrVk8TTf+P5M1Npxx/LnbDPN8FOvthKLMmn
nDdUcMjxObeWouJ56cpG7KilTA0/+DiDT5pL/gu9yiqazyF4nmW6haqmXy0/mpN9
b5MpRgXk0kWFSdlaxcty6X5UJY3AAyNHemE69xcyJLGOBST9FDbnjbfd/mYU8ak8
VhMwZ2UD8jHx2mkH8zh2fKLvYVSnMB0mDh1L+2wmo10IPFH7Xan8QY2RYJYFCfEr
j00sILyJCo3X9X+Fwhgde5YQMS1vr7/euJoQ4zubQGY4bEzbAVxxz0T9CGaLDnMG
n02803D8Lfb2xg==
-----END CERTIFICATE-----
Generated at Wed Aug 6 14:18:53 2025 by rpki-client