Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json)
Hash identifier: 2OVRfUw3D2DgHFdl+9iDmgaG5uFciQgoipQt/eq8fAg=
Subject key identifier: 9A:54:BF:35:9A:12:CE:E4:59:13:7F:B9:BA:96:0B:6B:8D:31:5A:D5
Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Certificate serial: 019923A0CBACE039590CE1498F0534A7E934
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
Manifest number: 0A5C
Signing time: Sun 07 Sep 2025 10:02:44 +0000
Manifest this update: Sun 07 Sep 2025 10:02:44 +0000
Manifest next update: Mon 08 Sep 2025 10:02:44 +0000
Files and hashes: 1: 6t5f4Ujb0FAO84dMqgRAqgV1jVs.roa (hash: u7nakvY2IzZI/nPIoCHOpaknwKeAH1RDuYLRGXqd0p4=)
2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: Jjo2Eb1PFTNXMlT6wy6zeSHgyNfwb/fYDXPRMjrAKJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:cb:ac:e0:39:59:0c:e1:49:8f:05:34:a7:e9:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Validity
Not Before: Sep 7 10:02:44 2025 GMT
Not After : Sep 8 10:02:44 2025 GMT
Subject: CN=9a54bf359a12cee459137fb9ba960b6b8d315ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ac:40:d3:69:4a:11:d6:27:79:55:21:b0:4c:
8d:ba:4e:66:68:b0:93:68:70:f4:9f:ec:80:62:68:
f5:20:e5:af:1f:60:7f:7a:77:81:2e:f4:12:ef:45:
88:db:ad:cb:5e:4d:8e:33:56:36:e0:e9:78:66:59:
c3:0d:4a:e1:0f:f8:d3:63:06:c6:31:ea:99:3d:d1:
65:b0:3e:86:6d:61:df:42:ae:b8:12:de:40:8e:f6:
95:03:aa:e4:ec:9c:0d:ed:cf:f8:a4:4d:98:5f:77:
a0:78:90:bf:0a:08:53:ad:22:88:ac:02:54:7e:14:
7a:74:b2:e3:3a:59:e6:74:18:1b:88:04:27:b4:1a:
e2:94:a0:e1:c6:8a:64:d6:19:c0:4f:6c:fe:07:fb:
73:eb:fd:59:8a:80:4f:35:8b:4e:b9:2f:34:36:79:
1f:45:1c:be:34:ce:ec:15:b7:38:4e:fc:0e:ec:6a:
7d:05:8c:bf:73:8d:4f:43:99:b9:7f:13:cd:07:53:
02:ec:05:2c:7b:70:40:e2:6e:91:04:a8:39:fa:f4:
bc:89:21:41:0e:24:77:2f:a5:4c:f7:4d:86:94:9b:
af:70:df:60:ae:a1:16:e0:45:b2:86:65:b3:f1:9e:
70:b7:73:68:6f:c7:c2:96:98:2d:90:a6:c3:18:08:
50:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:54:BF:35:9A:12:CE:E4:59:13:7F:B9:BA:96:0B:6B:8D:31:5A:D5
X509v3 Authority Key Identifier:
keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:c1:48:e0:87:20:54:0f:4b:57:2e:70:9c:7e:f0:70:db:9b:
7a:15:3b:25:ab:f6:4f:e9:a9:f8:24:04:f2:36:b6:a5:4b:4b:
33:ca:29:3f:f2:2a:d5:94:0d:82:25:f6:3c:3d:94:2c:d5:e9:
a3:90:5e:2d:f6:05:29:c7:98:18:97:9c:0f:2f:71:4b:bf:bd:
6d:60:9a:b7:d1:4d:86:7b:85:b8:70:e6:28:0a:3b:bd:9b:ea:
01:24:4a:b9:6c:31:c1:67:56:44:70:68:85:22:89:44:a7:33:
00:66:29:e1:e8:da:bf:4f:e0:5b:36:81:bd:1c:d8:69:eb:a5:
42:46:21:d1:18:a4:82:71:91:a1:e2:cc:2d:91:64:a7:df:5b:
6c:61:c9:78:46:6d:18:de:20:a6:e4:a5:9e:a1:f0:f0:2a:73:
5d:2d:b5:82:93:0f:47:53:34:ff:0d:9b:a9:60:ab:13:cf:75:
27:3a:43:64:e1:6b:32:ba:16:b2:23:34:31:4c:e2:13:cf:0f:
4a:f3:7a:fc:59:9b:da:96:9c:81:d8:f6:7e:93:80:c2:3d:ec:
ca:a8:78:a0:73:ed:7a:3c:30:24:00:c1:a8:7b:da:2d:b0:0d:
18:f8:7f:3f:a3:37:01:98:83:fe:15:5d:43:e5:e0:c3:21:c1:
d9:80:29:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjoMus4DlZDOFJjwU0p+k0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMzA1Zjk3YTI2ZjMxZDgwMDYwNTlmYjNhYjE5ZWFjZmI3
ODM0NTUwHhcNMjUwOTA3MTAwMjQ0WhcNMjUwOTA4MTAwMjQ0WjAzMTEwLwYDVQQD
Eyg5YTU0YmYzNTlhMTJjZWU0NTkxMzdmYjliYTk2MGI2YjhkMzE1YWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6xA02lKEdYneVUhsEyNuk5maLCT
aHD0n+yAYmj1IOWvH2B/eneBLvQS70WI263LXk2OM1Y24Ol4ZlnDDUrhD/jTYwbG
MeqZPdFlsD6GbWHfQq64Et5AjvaVA6rk7JwN7c/4pE2YX3egeJC/CghTrSKIrAJU
fhR6dLLjOlnmdBgbiAQntBrilKDhxopk1hnAT2z+B/tz6/1ZioBPNYtOuS80Nnkf
RRy+NM7sFbc4TvwO7Gp9BYy/c41PQ5m5fxPNB1MC7AUse3BA4m6RBKg5+vS8iSFB
DiR3L6VM902GlJuvcN9grqEW4EWyhmWz8Z5wt3Nob8fClpgtkKbDGAhQswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJpUvzWaEs7kWRN/ubqWC2uNMVrVMB8GA1UdIwQY
MBaAFDswX5eibzHYAGBZ+zqxnqz7eDRVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny8xYWE5NTEtNmM0OC00OTNkLWFkODkt
NThiOWIwYzI0NDBiLzEvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny8xYWE5NTEtNmM0OC00OTNkLWFkODktNThiOWIwYzI0NDBi
LzEvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtcFI4Icg
VA9LVy5wnH7wcNubehU7Jav2T+mp+CQE8ja2pUtLM8opP/Iq1ZQNgiX2PD2ULNXp
o5BeLfYFKceYGJecDy9xS7+9bWCat9FNhnuFuHDmKAo7vZvqASRKuWwxwWdWRHBo
hSKJRKczAGYp4ejav0/gWzaBvRzYaeulQkYh0RikgnGRoeLMLZFkp99bbGHJeEZt
GN4gpuSlnqHw8CpzXS21gpMPR1M0/w2bqWCrE891JzpDZOFrMroWsiM0MUziE88P
SvN6/Fmb2pacgdj2fpOAwj3syqh4oHPtejwwJADBqHvaLbANGPh/P6M3AZiD/hVd
Q+XgwyHB2YApCw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:31:24 2025 by rpki-client