Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json)
Hash identifier: o1nXTP3bd9fZBk11ePys6sw62SvXyscJT4OLJxzqyP8=
Subject key identifier: FE:19:0E:CD:6A:20:FC:14:4C:EA:DA:8B:BF:06:8F:E2:6C:33:FE:F8
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 019894ED84060AA6AB52F2CFC11944674C10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
Manifest number: 0E3C
Signing time: Sun 10 Aug 2025 17:00:50 +0000
Manifest this update: Sun 10 Aug 2025 17:00:50 +0000
Manifest next update: Mon 11 Aug 2025 17:00:50 +0000
Files and hashes: 1: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: epjprxAcC7CGP2lkC3jN2gTPE1V7TrLdx72fXn8MhjU=)
2: qE1MDKZGRZtaXQk1vt-cL_6WtUI.roa (hash: 3oUc3w7eQj0W70nllC5MQS//X4mPSXNpxrBOqqqOaLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:ed:84:06:0a:a6:ab:52:f2:cf:c1:19:44:67:4c:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Aug 10 17:00:50 2025 GMT
Not After : Aug 11 17:00:50 2025 GMT
Subject: CN=fe190ecd6a20fc144ceada8bbf068fe26c33fef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e4:9a:13:0c:bd:48:47:f2:46:00:0f:92:8a:
36:ce:6f:c2:e9:f0:8b:1d:c0:2d:b3:6d:75:5b:45:
ba:8f:d4:80:54:c7:d2:3f:e5:39:d1:8d:c0:5b:fc:
07:f2:31:a8:c5:d9:d2:de:4d:40:97:71:e5:56:49:
fe:de:be:b8:73:a3:a4:ca:9e:af:78:d0:5e:66:d7:
ac:6c:86:19:24:e1:d0:c2:a9:61:be:d0:a8:10:c7:
b5:57:7e:ff:a4:e0:aa:2f:f6:2a:9f:cd:3d:93:10:
6f:bb:1b:3a:ae:e6:26:29:5e:d0:5e:07:e6:a4:75:
d8:4c:85:c4:23:a4:5e:c0:e2:7e:44:32:63:ba:01:
10:f6:74:e2:e7:88:7c:df:06:28:14:a5:48:42:7e:
43:32:91:20:f1:14:cc:4d:02:cd:a7:a9:8f:61:cc:
c3:17:00:91:bd:b8:0a:31:a9:1a:c6:0b:23:e8:41:
e2:ba:92:ca:6e:55:fb:02:8a:9c:20:eb:1f:8e:2b:
99:4a:45:e5:4a:d2:5b:f7:18:a0:7b:2a:6d:57:7d:
0e:86:02:73:e5:be:a2:a4:41:c3:1d:dd:0a:d8:b3:
0b:f5:90:d5:c6:6b:23:cc:6c:1d:4f:99:09:22:43:
b4:d8:de:de:a6:69:7b:3c:04:e3:56:25:26:b6:63:
2c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:19:0E:CD:6A:20:FC:14:4C:EA:DA:8B:BF:06:8F:E2:6C:33:FE:F8
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:db:d9:7f:c4:e7:95:46:20:4b:57:d8:9c:d8:cc:ee:1c:96:
99:20:fb:b3:a5:97:b1:9e:8e:b2:33:22:b9:95:f1:21:c8:54:
6a:60:ea:e5:05:a1:e8:0f:13:a6:91:b1:b8:32:ba:96:94:32:
a3:ca:87:d1:e4:6b:85:a4:77:a2:4c:00:8a:88:70:c2:f6:14:
24:e1:a3:41:22:dd:d8:6e:b9:4b:a8:94:f0:da:94:1b:e4:94:
b0:97:16:40:ec:92:e0:62:d9:78:98:9f:ad:1a:4e:9c:96:f7:
c5:3d:4d:00:a4:4a:2c:99:5a:2e:4f:eb:25:f7:4d:b9:f6:72:
af:25:d3:62:b7:4d:fb:a1:05:1b:1d:af:6c:89:9c:f3:06:18:
81:81:77:26:2d:d5:9b:7b:af:01:38:c4:47:97:6a:a2:d2:ba:
1c:54:46:4c:da:33:c5:0a:2c:e1:2e:fc:b4:27:c0:3e:1e:ef:
48:5b:bd:bf:82:4a:fd:93:a0:f9:2a:b8:16:58:9a:02:9b:c0:
d7:57:cd:08:2f:79:22:b6:d0:78:5e:dc:73:e1:d1:d7:40:48:
f6:ff:af:6b:70:89:91:78:13:9a:94:c9:83:42:6e:bd:7e:71:
33:0a:2f:3f:fd:41:ef:7d:7b:11:0a:4a:31:47:cd:db:c1:86:
2e:e4:1b:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiU7YQGCqarUvLPwRlEZ0wQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiN2RjM2QwMjI4MjhlNGY1YjM2YmRlZjdhMThiMGJiMGNm
YmFlMDkwHhcNMjUwODEwMTcwMDUwWhcNMjUwODExMTcwMDUwWjAzMTEwLwYDVQQD
EyhmZTE5MGVjZDZhMjBmYzE0NGNlYWRhOGJiZjA2OGZlMjZjMzNmZWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveSaEwy9SEfyRgAPkoo2zm/C6fCL
HcAts211W0W6j9SAVMfSP+U50Y3AW/wH8jGoxdnS3k1Al3HlVkn+3r64c6Okyp6v
eNBeZtesbIYZJOHQwqlhvtCoEMe1V37/pOCqL/Yqn809kxBvuxs6ruYmKV7QXgfm
pHXYTIXEI6RewOJ+RDJjugEQ9nTi54h83wYoFKVIQn5DMpEg8RTMTQLNp6mPYczD
FwCRvbgKMakaxgsj6EHiupLKblX7AoqcIOsfjiuZSkXlStJb9xigeyptV30OhgJz
5b6ipEHDHd0K2LML9ZDVxmsjzGwdT5kJIkO02N7epml7PATjViUmtmMsbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP4ZDs1qIPwUTOrai78Gj+JsM/74MB8GA1UdIwQY
MBaAFDt9w9Aigo5PWza973oYsLsM+64JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzMzRDBDS0NqazliTnIzdmVoaXd1d3o3cmdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80ZWYwMmMtOGY4ZC00NmUzLThkMGIt
NzE5NDhlM2M5YWQ0LzEvTzMzRDBDS0NqazliTnIzdmVoaXd1d3o3cmdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC80ZWYwMmMtOGY4ZC00NmUzLThkMGItNzE5NDhlM2M5YWQ0
LzEvTzMzRDBDS0NqazliTnIzdmVoaXd1d3o3cmdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABNvZf8Tn
lUYgS1fYnNjM7hyWmSD7s6WXsZ6OsjMiuZXxIchUamDq5QWh6A8TppGxuDK6lpQy
o8qH0eRrhaR3okwAiohwwvYUJOGjQSLd2G65S6iU8NqUG+SUsJcWQOyS4GLZeJif
rRpOnJb3xT1NAKRKLJlaLk/rJfdNufZyryXTYrdN+6EFGx2vbImc8wYYgYF3Ji3V
m3uvATjER5dqotK6HFRGTNozxQos4S78tCfAPh7vSFu9v4JK/ZOg+Sq4FliaApvA
11fNCC95IrbQeF7cc+HR10BI9v+va3CJkXgTmpTJg0JuvX5xMwovP/1B7317EQpK
MUfN28GGLuQbxA==
-----END CERTIFICATE-----
Generated at Mon Aug 11 01:45:45 2025 by rpki-client