Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
File: o_60EOB9CI-2UbkTdJuBJX47mVI.mft (raw, json)
Hash identifier: O7GmmFIp59yIrSonHtQHaWedOb25MgVvLDfRygxmao8=
Subject key identifier: 41:B7:A2:2D:F4:24:B7:4D:57:82:C0:4B:0F:E8:ED:F4:3A:E2:CD:52
Authority key identifier: A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52
Certificate issuer: /CN=a3feb410e07d088fb651b913749b81257e3b9952
Certificate serial: 019873E3CD6AB2D0ACC60022B1A5838A180C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
Manifest number: 1061
Signing time: Mon 04 Aug 2025 07:02:45 +0000
Manifest this update: Mon 04 Aug 2025 07:02:45 +0000
Manifest next update: Tue 05 Aug 2025 07:02:45 +0000
Files and hashes: 1: o_60EOB9CI-2UbkTdJuBJX47mVI.crl (hash: QDBmPpMa+Ss1n/w/64K30V/7vJGkzhH0PUG9idpjRc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:cd:6a:b2:d0:ac:c6:00:22:b1:a5:83:8a:18:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3feb410e07d088fb651b913749b81257e3b9952
Validity
Not Before: Aug 4 07:02:45 2025 GMT
Not After : Aug 5 07:02:45 2025 GMT
Subject: CN=41b7a22df424b74d5782c04b0fe8edf43ae2cd52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:de:0c:7a:19:e4:40:ef:31:47:f2:32:af:
7e:bd:10:4e:38:6f:03:10:3f:27:c4:8c:83:d1:42:
a1:34:b8:83:2c:49:69:98:f9:17:0a:b8:1e:b6:96:
04:0a:db:10:65:9e:9a:73:c7:11:60:f7:8c:74:0a:
0a:e3:e1:8f:46:51:ba:3f:91:34:fa:01:13:cd:92:
7a:2f:a0:8c:73:2c:27:84:a0:70:80:09:bf:08:06:
b9:28:53:62:50:f6:b6:10:2d:7b:11:b1:d8:b5:ec:
d1:9e:b5:44:02:f6:b0:2f:20:23:54:1a:cb:a8:0e:
87:dc:0c:01:f0:5b:ef:5b:91:71:5b:3e:ca:3e:6d:
d7:72:48:9b:79:75:33:19:d9:45:ae:3b:b2:31:2b:
3d:52:62:f9:71:72:f6:9b:7e:3a:4e:91:04:d6:f9:
69:5f:66:f3:33:07:de:d7:54:fb:9c:b2:1a:c0:80:
90:59:71:80:4d:a4:18:98:d0:88:48:b8:f2:b9:0e:
2f:6f:79:fe:cb:e7:19:af:8d:4e:68:04:52:7a:71:
01:48:61:20:25:83:60:df:59:62:ef:21:8e:a7:4b:
8e:6f:97:3b:f7:56:67:09:5b:cc:06:7a:0b:54:b8:
b5:ef:8d:f0:cd:2e:9a:9d:d7:70:35:22:12:42:86:
8b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B7:A2:2D:F4:24:B7:4D:57:82:C0:4B:0F:E8:ED:F4:3A:E2:CD:52
X509v3 Authority Key Identifier:
keyid:A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:1d:d9:04:e1:5f:17:b6:e8:d9:ef:e7:a6:d4:19:8f:5b:67:
40:dc:7b:a2:4f:1f:29:83:5f:c5:92:38:bb:1f:1d:90:d7:cd:
38:2d:9d:23:7c:be:10:47:4a:78:78:90:46:f3:fc:8c:fc:94:
4f:fc:47:32:84:63:f9:e5:de:a4:d8:93:16:f6:b6:4e:4b:8e:
33:3e:8e:69:d7:9a:92:ac:a9:7d:dc:0a:08:2c:46:9c:0e:cd:
74:82:84:6c:dc:c6:42:4e:c3:63:6d:3e:a0:67:e9:98:a6:5b:
f4:48:fc:fe:fc:92:ee:8b:0f:cf:ce:fa:be:49:49:ee:2d:88:
0e:c8:3a:f4:35:f9:e7:56:a8:53:09:2a:3c:dd:24:bf:7d:cd:
2a:f5:42:94:ba:76:7a:fb:7f:46:ec:b5:23:31:25:91:42:ce:
36:35:fc:c5:6e:59:17:cc:db:20:c9:84:6a:d7:21:dc:f9:e8:
dc:a1:4b:a3:5e:a0:5c:c1:6e:d5:15:cd:92:b3:69:ef:c7:07:
87:69:85:e8:07:71:3e:8b:11:47:53:f1:4d:49:6f:ec:38:16:
8d:2a:f5:1d:7e:5c:50:4a:83:74:2f:9a:0e:a0:8c:3c:d6:93:
c2:97:a2:87:aa:22:64:ed:88:7e:1a:9c:a9:9c:ca:a9:a7:d6:
ab:b2:92:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz481qstCsxgAisaWDihgMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzZmViNDEwZTA3ZDA4OGZiNjUxYjkxMzc0OWI4MTI1N2Uz
Yjk5NTIwHhcNMjUwODA0MDcwMjQ1WhcNMjUwODA1MDcwMjQ1WjAzMTEwLwYDVQQD
Eyg0MWI3YTIyZGY0MjRiNzRkNTc4MmMwNGIwZmU4ZWRmNDNhZTJjZDUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNLeDHoZ5EDvMUfyMq9+vRBOOG8D
ED8nxIyD0UKhNLiDLElpmPkXCrgetpYECtsQZZ6ac8cRYPeMdAoK4+GPRlG6P5E0
+gETzZJ6L6CMcywnhKBwgAm/CAa5KFNiUPa2EC17EbHYtezRnrVEAvawLyAjVBrL
qA6H3AwB8FvvW5FxWz7KPm3XckibeXUzGdlFrjuyMSs9UmL5cXL2m346TpEE1vlp
X2bzMwfe11T7nLIawICQWXGATaQYmNCISLjyuQ4vb3n+y+cZr41OaARSenEBSGEg
JYNg31li7yGOp0uOb5c791ZnCVvMBnoLVLi1743wzS6anddwNSISQoaLKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEG3oi30JLdNV4LASw/o7fQ64s1SMB8GA1UdIwQY
MBaAFKP+tBDgfQiPtlG5E3SbgSV+O5lSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb182MEVPQjlDSS0yVWJrVGRKdUJKWDQ3bVZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZjA2OGEtMTdmNC00MzExLThiYmMt
MjM0YjMyMmEwY2ZlLzEvb182MEVPQjlDSS0yVWJrVGRKdUJKWDQ3bVZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85ZjA2OGEtMTdmNC00MzExLThiYmMtMjM0YjMyMmEwY2Zl
LzEvb182MEVPQjlDSS0yVWJrVGRKdUJKWDQ3bVZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbB3ZBOFf
F7bo2e/nptQZj1tnQNx7ok8fKYNfxZI4ux8dkNfNOC2dI3y+EEdKeHiQRvP8jPyU
T/xHMoRj+eXepNiTFva2TkuOMz6OadeakqypfdwKCCxGnA7NdIKEbNzGQk7DY20+
oGfpmKZb9Ej8/vyS7osPz876vklJ7i2IDsg69DX551aoUwkqPN0kv33NKvVClLp2
evt/Ruy1IzElkULONjX8xW5ZF8zbIMmEatch3Pno3KFLo16gXMFu1RXNkrNp78cH
h2mF6AdxPosRR1PxTUlv7DgWjSr1HX5cUEqDdC+aDqCMPNaTwpeih6oiZO2Ifhqc
qZzKqafWq7KS+A==
-----END CERTIFICATE-----
Generated at Mon Aug 4 14:56:56 2025 by rpki-client