Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier: cQX9MLM7av096TimTtyqqbaYIulRUN2J33AgBo+F4bA=
Subject key identifier: B3:7A:31:90:72:9D:CE:D1:6D:36:8A:60:77:DD:A6:19:8F:AA:4B:51
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial: 01988A32FD2B609A031C16C5D22EAC0D9380
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number: 1083
Signing time: Fri 08 Aug 2025 15:00:53 +0000
Manifest this update: Fri 08 Aug 2025 15:00:53 +0000
Manifest next update: Sat 09 Aug 2025 15:00:53 +0000
Files and hashes: 1: DfIfeCsjxuTLGxOswS1IRTtCtFo.roa (hash: BfLaITLvBopGuXyhXf+VexAjyd8LBGCkT8+9wJK+KLI=)
2: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: MEIwJmyQ+Camxhwn4F7pomFOo2pT8vCaw/PdacF1PzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:32:fd:2b:60:9a:03:1c:16:c5:d2:2e:ac:0d:93:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Validity
Not Before: Aug 8 15:00:53 2025 GMT
Not After : Aug 9 15:00:53 2025 GMT
Subject: CN=b37a3190729dced16d368a6077dda6198faa4b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4b:2a:1f:c6:c7:f9:19:06:64:f8:33:32:3b:
c2:c3:41:4d:8b:a9:35:1f:7e:b5:98:ef:68:b0:e6:
07:0c:c0:3a:99:8a:34:2d:4b:bd:7d:d3:ac:8c:fe:
da:e8:c4:40:62:d1:c4:84:d3:94:ae:16:ef:ed:a2:
59:74:60:bd:91:26:68:c8:6a:3e:46:3b:2c:a6:d3:
40:ce:8d:f5:b7:0d:3c:f1:9d:dd:08:3f:ea:24:28:
56:2a:2a:a4:e7:68:1a:d1:72:c6:96:ea:a4:c2:4e:
54:2b:54:89:a5:4e:a6:a2:b3:cd:6b:5c:46:b3:92:
20:4e:0f:35:55:81:2a:10:93:ee:c0:d7:a3:fd:d0:
ff:96:ba:10:d6:cc:55:09:3f:3b:7a:17:b8:6d:2a:
25:db:e6:3d:28:2f:e5:2e:03:e8:a8:76:5e:e4:0e:
62:03:fc:2f:95:92:2f:02:bb:16:b2:66:db:b9:41:
ab:6e:ce:b0:77:21:67:eb:cf:80:15:65:e3:ae:ac:
59:5f:32:bd:2d:b9:ac:17:b3:64:cd:3c:48:b1:8b:
e3:29:c3:6a:35:52:a4:47:d9:6c:90:cf:7e:e8:4a:
f1:dc:63:86:ea:13:6e:a1:6e:d0:82:30:33:e0:8d:
a3:2f:da:88:c7:67:98:2b:c0:45:24:40:e6:05:3c:
63:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:7A:31:90:72:9D:CE:D1:6D:36:8A:60:77:DD:A6:19:8F:AA:4B:51
X509v3 Authority Key Identifier:
keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:c9:6d:5f:0d:5f:bb:2c:1a:09:a3:ed:16:c7:c9:44:3b:20:
d5:47:a0:50:bf:a0:23:48:d3:dd:01:a5:91:ad:34:a6:b9:85:
7f:93:76:36:5a:12:0b:de:cd:03:68:9a:ae:8f:3f:ad:b0:8d:
c0:81:00:67:53:e6:fd:63:8e:7c:0d:bd:71:b8:7c:4a:b9:48:
54:d6:8b:2c:8b:2a:68:e3:04:d1:38:12:f9:ec:2d:f6:30:b8:
82:59:8b:5b:fa:40:96:94:24:d9:31:56:56:46:43:e9:5f:42:
08:e8:95:d9:60:57:a1:20:52:a7:46:6f:5b:56:b9:5f:61:b1:
7e:28:f5:a6:4b:8f:e4:1e:aa:ff:06:15:a5:20:a8:2f:cd:d1:
97:85:f6:3e:9f:88:3b:20:31:cf:d7:0d:2f:a2:57:e8:94:78:
ff:95:b8:c3:e5:5c:f5:ca:46:71:6e:4b:9e:ad:f8:65:dc:5e:
b8:70:1a:05:90:ac:dd:eb:54:6e:71:0d:dc:60:37:da:e9:b5:
0f:ac:61:d8:8f:7c:c1:78:c5:5e:99:b9:c6:6e:78:c0:12:35:
5c:ab:b1:93:73:ad:08:8c:e1:5d:b4:b3:ee:86:8f:81:60:d5:
95:8b:8a:af:d3:ba:45:f4:61:8d:b5:9c:36:63:c2:11:dd:d2:
46:6d:b0:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiKMv0rYJoDHBbF0i6sDZOAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNjlmYjE5MWJlZTUxY2RjNzQxNGE2OTYzMTk3Zjg2YmJm
MzEzYWIwHhcNMjUwODA4MTUwMDUzWhcNMjUwODA5MTUwMDUzWjAzMTEwLwYDVQQD
EyhiMzdhMzE5MDcyOWRjZWQxNmQzNjhhNjA3N2RkYTYxOThmYWE0YjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0sqH8bH+RkGZPgzMjvCw0FNi6k1
H361mO9osOYHDMA6mYo0LUu9fdOsjP7a6MRAYtHEhNOUrhbv7aJZdGC9kSZoyGo+
RjssptNAzo31tw088Z3dCD/qJChWKiqk52ga0XLGluqkwk5UK1SJpU6morPNa1xG
s5IgTg81VYEqEJPuwNej/dD/lroQ1sxVCT87ehe4bSol2+Y9KC/lLgPoqHZe5A5i
A/wvlZIvArsWsmbbuUGrbs6wdyFn68+AFWXjrqxZXzK9LbmsF7NkzTxIsYvjKcNq
NVKkR9lskM9+6Erx3GOG6hNuoW7QgjAz4I2jL9qIx2eYK8BFJEDmBTxjsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLN6MZBync7RbTaKYHfdphmPqktRMB8GA1UdIwQY
MBaAFKNp+xkb7lHNx0FKaWMZf4a78xOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYt
ZTE4MDUyZjM4MWJiLzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYtZTE4MDUyZjM4MWJi
LzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApcltXw1f
uywaCaPtFsfJRDsg1UegUL+gI0jT3QGlka00prmFf5N2NloSC97NA2iaro8/rbCN
wIEAZ1Pm/WOOfA29cbh8SrlIVNaLLIsqaOME0TgS+ewt9jC4glmLW/pAlpQk2TFW
VkZD6V9CCOiV2WBXoSBSp0ZvW1a5X2Gxfij1pkuP5B6q/wYVpSCoL83Rl4X2Pp+I
OyAxz9cNL6JX6JR4/5W4w+Vc9cpGcW5Lnq34ZdxeuHAaBZCs3etUbnEN3GA32um1
D6xh2I98wXjFXpm5xm54wBI1XKuxk3OtCIzhXbSz7oaPgWDVlYuKr9O6RfRhjbWc
NmPCEd3SRm2w5Q==
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:03:21 2025 by rpki-client