Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: b/v0N8yj6O07G7hTpe7wYFDrOG0N+aSN2gbr5yNziVE=
Subject key identifier: AA:9D:F4:11:56:A5:29:CA:6C:E9:86:16:B7:C2:5B:9F:89:89:F3:08
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 019896A5B092273061D7FAECBE0E01FD5F82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 029F
Signing time: Mon 11 Aug 2025 01:01:37 +0000
Manifest this update: Mon 11 Aug 2025 01:01:37 +0000
Manifest next update: Tue 12 Aug 2025 01:01:37 +0000
Files and hashes: 1: C4fkDspID27_2W7uJ0bDWTiMbsI.roa (hash: IPmvbCiP1dYquC+xxAe/aHEwDNf0L9S57sM644oyMl8=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: Zs4JbvBDmEq64ETL5xpdA2eavjtbsPaIyb5I31/UGG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:b0:92:27:30:61:d7:fa:ec:be:0e:01:fd:5f:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Aug 11 01:01:37 2025 GMT
Not After : Aug 12 01:01:37 2025 GMT
Subject: CN=aa9df41156a529ca6ce98616b7c25b9f8989f308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:09:2c:de:43:79:7b:41:fc:68:17:95:40:f3:
b4:f9:97:37:f7:17:e8:77:0e:b2:57:85:ea:35:25:
18:3b:e6:d1:1e:2d:19:28:96:7b:fb:78:af:1f:a6:
b8:51:94:9f:73:2c:51:61:7a:26:97:42:7a:94:af:
5a:ca:04:0a:29:19:bc:c1:5a:51:b7:b7:18:03:fc:
75:4a:af:06:c7:d1:1a:ce:6c:c1:54:72:13:13:d8:
c5:34:84:cc:34:38:51:fb:f4:22:ce:17:52:bb:9f:
ed:a8:0c:9c:68:25:56:f6:00:6a:cd:23:21:66:02:
83:bd:8b:d6:ea:17:5c:f2:f7:8a:37:ea:3c:7d:ed:
00:fb:f9:e2:e5:43:aa:8c:5f:12:8c:5d:e7:e8:07:
8d:2c:8c:ac:f9:6c:44:02:b2:e9:17:88:ff:2e:b7:
14:d5:ea:42:05:09:0e:92:f8:a6:9a:1f:87:d3:46:
11:ad:8f:7e:18:09:65:1c:24:b2:db:ca:c3:b8:32:
ee:b2:91:52:f1:21:c8:1f:00:15:61:e3:d7:6a:e3:
07:f1:9f:fe:25:99:b1:ea:a5:92:72:41:4b:9a:fe:
c4:cb:11:d5:80:5e:5d:17:39:17:3e:b6:06:e9:13:
56:41:3c:7a:8a:1e:e3:dd:7d:b9:00:67:77:59:e6:
3b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:9D:F4:11:56:A5:29:CA:6C:E9:86:16:B7:C2:5B:9F:89:89:F3:08
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:19:53:f6:87:d7:2f:6b:b0:37:d6:aa:3f:97:16:65:7d:85:
81:4c:f1:f6:f1:8d:f6:13:2e:75:1f:a4:4b:96:33:22:c3:47:
fb:ef:9e:a4:ab:28:fd:c5:b2:9f:46:d5:79:d8:5b:1e:2e:dd:
9e:21:c4:28:41:06:31:e7:ee:bd:f7:32:e6:b9:d3:81:58:be:
e8:41:ef:4a:9f:1d:ac:01:6f:43:fc:da:5f:41:e4:cf:81:21:
04:6f:e0:73:0e:e0:c2:c9:5d:c2:6a:c9:23:b7:d7:43:5a:e3:
a5:73:b5:92:d7:4a:04:d4:97:98:7c:08:37:b3:95:58:e8:51:
49:06:f2:59:bb:db:9a:a8:d7:f9:05:cb:96:d3:53:8f:47:7c:
d8:34:da:5c:a5:6b:57:11:5d:a8:1f:8f:0b:03:0e:f4:e6:39:
3c:34:45:eb:7a:86:4c:9c:a4:ae:1a:e7:bf:cf:28:e4:4e:ef:
bf:e1:3c:1b:32:04:37:f0:c3:25:1a:0a:55:67:a2:80:51:9f:
fb:3d:a0:2f:fd:43:54:62:d8:ec:47:20:4d:92:8d:f7:10:91:
9e:a3:46:3f:6e:c9:b4:2e:d6:55:ab:08:c6:b2:84:b3:ae:6d:
42:80:c9:2d:0d:f4:23:e3:dd:93:4c:2f:3e:ed:03:aa:4b:1c:
1d:e5:6a:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiWpbCSJzBh1/rsvg4B/V+CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjZWJmMzk2YzlhZGY5NGY4NGRjOTAxNjU2ZTI1NWNlNmQ1
MDY2MGMwHhcNMjUwODExMDEwMTM3WhcNMjUwODEyMDEwMTM3WjAzMTEwLwYDVQQD
EyhhYTlkZjQxMTU2YTUyOWNhNmNlOTg2MTZiN2MyNWI5Zjg5ODlmMzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgks3kN5e0H8aBeVQPO0+Zc39xfo
dw6yV4XqNSUYO+bRHi0ZKJZ7+3ivH6a4UZSfcyxRYXoml0J6lK9aygQKKRm8wVpR
t7cYA/x1Sq8Gx9EazmzBVHITE9jFNITMNDhR+/QizhdSu5/tqAycaCVW9gBqzSMh
ZgKDvYvW6hdc8veKN+o8fe0A+/ni5UOqjF8SjF3n6AeNLIys+WxEArLpF4j/LrcU
1epCBQkOkvimmh+H00YRrY9+GAllHCSy28rDuDLuspFS8SHIHwAVYePXauMH8Z/+
JZmx6qWSckFLmv7EyxHVgF5dFzkXPrYG6RNWQTx6ih7j3X25AGd3WeY7/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKqd9BFWpSnKbOmGFrfCW5+JifMIMB8GA1UdIwQY
MBaAFKzr85bJrflPhNyQFlbiVc5tUGYMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS85NzFkYzUtMTRmMy00ZDk1LWIwYmQt
NDg0N2QzOTNhYjU1LzEvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS85NzFkYzUtMTRmMy00ZDk1LWIwYmQtNDg0N2QzOTNhYjU1
LzEvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmhlT9ofX
L2uwN9aqP5cWZX2FgUzx9vGN9hMudR+kS5YzIsNH+++epKso/cWyn0bVedhbHi7d
niHEKEEGMefuvfcy5rnTgVi+6EHvSp8drAFvQ/zaX0Hkz4EhBG/gcw7gwsldwmrJ
I7fXQ1rjpXO1ktdKBNSXmHwIN7OVWOhRSQbyWbvbmqjX+QXLltNTj0d82DTaXKVr
VxFdqB+PCwMO9OY5PDRF63qGTJykrhrnv88o5E7vv+E8GzIEN/DDJRoKVWeigFGf
+z2gL/1DVGLY7EcgTZKN9xCRnqNGP27JtC7WVasIxrKEs65tQoDJLQ30I+Pdk0wv
Pu0DqkscHeVqCg==
-----END CERTIFICATE-----
Generated at Mon Aug 11 05:06:11 2025 by rpki-client