Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft
File: roOCT9wp6-SsKGygGETfhtTXXsA.mft (raw, json)
Hash identifier: JYgzUh4XggTUGHfGuWX5oSuh9CaV1A7DQF7Rxf+abWs=
Subject key identifier: DB:8C:2C:66:48:49:23:BA:90:8B:04:1F:C2:2F:1F:77:EC:ED:28:16
Authority key identifier: AE:83:82:4F:DC:29:EB:E4:AC:28:6C:A0:18:44:DF:86:D4:D7:5E:C0
Certificate issuer: /CN=ae83824fdc29ebe4ac286ca01844df86d4d75ec0
Certificate serial: 0199221E58E4D26BD17B9761371559A5A640
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/roOCT9wp6-SsKGygGETfhtTXXsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft
Manifest number: 0296
Signing time: Sun 07 Sep 2025 03:00:38 +0000
Manifest this update: Sun 07 Sep 2025 03:00:38 +0000
Manifest next update: Mon 08 Sep 2025 03:00:38 +0000
Files and hashes: 1: jHCjx-TBB5oXKBhOsM_EWQyL88A.roa (hash: rucNPqCxXwLKo5x3absYJUk2L/e2sCkpCPYtoCEmNPo=)
2: roOCT9wp6-SsKGygGETfhtTXXsA.crl (hash: 3ECs+g2z9slVRdBh/LBjSSEzjljCBgC5DhnY3J5Ac0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft
rsync://rpki.ripe.net/repository/DEFAULT/roOCT9wp6-SsKGygGETfhtTXXsA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:58:e4:d2:6b:d1:7b:97:61:37:15:59:a5:a6:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae83824fdc29ebe4ac286ca01844df86d4d75ec0
Validity
Not Before: Sep 7 03:00:38 2025 GMT
Not After : Sep 8 03:00:38 2025 GMT
Subject: CN=db8c2c66484923ba908b041fc22f1f77eced2816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7d:02:cb:d5:7e:23:23:3b:28:70:88:3b:70:
51:73:67:65:91:c3:8e:51:0c:f0:75:bb:e4:f7:d6:
6e:93:5c:86:dd:f5:55:68:33:fb:a8:dd:21:0e:cc:
c8:1f:46:0f:8f:14:fb:35:f4:40:96:97:d1:25:66:
ee:44:f1:ee:85:71:44:b6:67:1a:d1:d2:3a:18:ea:
4a:c3:86:4b:f0:7c:50:c4:0f:15:0c:b1:22:66:0e:
3e:b8:10:8b:01:53:70:68:f4:f0:0c:59:56:9f:29:
68:c8:7e:6c:a1:9a:af:6d:5d:1c:b1:2c:42:72:06:
c1:b6:f4:54:89:1a:ff:63:b8:6a:3f:f6:f6:4a:8e:
fd:26:02:2d:c5:36:d8:26:d4:5e:72:c0:64:6d:68:
89:b3:54:dd:5a:6c:8e:46:c3:65:04:56:7f:8d:f5:
96:79:f4:11:cc:00:2e:10:94:16:89:cd:ef:82:ff:
23:b5:39:f6:26:ef:9b:21:60:60:f1:5e:3a:f4:09:
4d:1f:ef:f6:a0:f3:ac:83:cc:92:f8:30:72:32:8d:
b5:cf:b8:c7:e5:88:af:49:33:11:9c:30:34:45:37:
83:aa:b4:a1:f8:26:15:fc:61:ab:06:c1:a7:f6:88:
1b:23:b7:f2:c8:dd:c2:ed:03:9b:bc:59:bf:3d:1c:
27:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8C:2C:66:48:49:23:BA:90:8B:04:1F:C2:2F:1F:77:EC:ED:28:16
X509v3 Authority Key Identifier:
keyid:AE:83:82:4F:DC:29:EB:E4:AC:28:6C:A0:18:44:DF:86:D4:D7:5E:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/roOCT9wp6-SsKGygGETfhtTXXsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:52:e9:e4:a0:22:60:e3:37:2a:c5:4e:75:3c:3a:a4:c1:01:
2a:21:b9:57:65:9c:b1:af:5d:ec:08:33:4e:c8:a6:4b:92:76:
3e:d6:74:f4:6a:f4:95:c1:6a:b8:ce:e0:58:f4:1f:05:cd:df:
88:47:b5:d6:44:74:e6:ae:95:7d:65:f0:b5:a4:26:cf:89:20:
fc:dd:5a:c8:0f:56:93:42:d4:9e:14:e7:9a:3b:62:61:42:92:
26:77:58:80:46:52:bc:88:a1:cf:70:3a:83:94:49:b4:74:ac:
c3:56:29:37:f9:04:f8:d9:9c:2e:4e:dd:62:b1:2a:da:c8:ec:
d5:16:bb:ea:a4:b2:c0:6a:1b:40:35:28:d3:22:cf:95:3c:bc:
33:79:f3:78:ff:e7:7f:4e:ec:40:44:33:c0:9a:59:a7:2a:5a:
36:76:b5:e5:56:fe:63:49:3d:73:c1:b6:a0:b5:3b:7c:0c:5b:
35:fe:11:93:a4:48:43:f0:41:fb:62:d4:f9:3e:32:62:f3:09:
c4:ae:2c:aa:d5:98:e0:56:ce:35:c4:87:98:e7:26:65:03:b7:
c2:60:21:d7:9e:bd:da:fd:67:2c:50:2a:1f:30:2d:24:74:4c:
dd:5d:49:b9:89:fc:8f:d1:54:75:95:41:29:33:21:dc:1e:66:
09:74:61:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHljk0mvRe5dhNxVZpaZAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlODM4MjRmZGMyOWViZTRhYzI4NmNhMDE4NDRkZjg2ZDRk
NzVlYzAwHhcNMjUwOTA3MDMwMDM4WhcNMjUwOTA4MDMwMDM4WjAzMTEwLwYDVQQD
EyhkYjhjMmM2NjQ4NDkyM2JhOTA4YjA0MWZjMjJmMWY3N2VjZWQyODE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyn0Cy9V+IyM7KHCIO3BRc2dlkcOO
UQzwdbvk99Zuk1yG3fVVaDP7qN0hDszIH0YPjxT7NfRAlpfRJWbuRPHuhXFEtmca
0dI6GOpKw4ZL8HxQxA8VDLEiZg4+uBCLAVNwaPTwDFlWnyloyH5soZqvbV0csSxC
cgbBtvRUiRr/Y7hqP/b2So79JgItxTbYJtRecsBkbWiJs1TdWmyORsNlBFZ/jfWW
efQRzAAuEJQWic3vgv8jtTn2Ju+bIWBg8V469AlNH+/2oPOsg8yS+DByMo21z7jH
5YivSTMRnDA0RTeDqrSh+CYV/GGrBsGn9ogbI7fyyN3C7QObvFm/PRwnaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNuMLGZISSO6kIsEH8IvH3fs7SgWMB8GA1UdIwQY
MBaAFK6Dgk/cKevkrChsoBhE34bU117AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm9PQ1Q5d3A2LVNzS0d5Z0dFVGZodFRYWHNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC83MTc0ZWUtMzA3Ni00OTZjLWIyNTkt
OTcwMDU0NmI1NzExLzEvcm9PQ1Q5d3A2LVNzS0d5Z0dFVGZodFRYWHNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC83MTc0ZWUtMzA3Ni00OTZjLWIyNTktOTcwMDU0NmI1NzEx
LzEvcm9PQ1Q5d3A2LVNzS0d5Z0dFVGZodFRYWHNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM1Lp5KAi
YOM3KsVOdTw6pMEBKiG5V2Wcsa9d7AgzTsimS5J2PtZ09Gr0lcFquM7gWPQfBc3f
iEe11kR05q6VfWXwtaQmz4kg/N1ayA9Wk0LUnhTnmjtiYUKSJndYgEZSvIihz3A6
g5RJtHSsw1YpN/kE+NmcLk7dYrEq2sjs1Ra76qSywGobQDUo0yLPlTy8M3nzeP/n
f07sQEQzwJpZpypaNna15Vb+Y0k9c8G2oLU7fAxbNf4Rk6RIQ/BB+2LU+T4yYvMJ
xK4sqtWY4FbONcSHmOcmZQO3wmAh15692v1nLFAqHzAtJHRM3V1JuYn8j9FUdZVB
KTMh3B5mCXRhgA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:25:22 2025 by rpki-client