Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
File: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft (raw, json)
Hash identifier: jBSnOYlpKHqv+CJ7JRedILqtGMYlw62vTRqFJrMan4c=
Subject key identifier: 33:61:33:12:00:06:D9:5F:42:E5:CC:42:DF:65:8D:05:53:11:3C:4A
Authority key identifier: A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
Certificate issuer: /CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Certificate serial: 019922C3A1B56F1A5098D6653C4297E4552E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
Manifest number: 137F
Signing time: Sun 07 Sep 2025 06:01:10 +0000
Manifest this update: Sun 07 Sep 2025 06:01:10 +0000
Manifest next update: Mon 08 Sep 2025 06:01:10 +0000
Files and hashes: 1: KHmBEFAHu1D8g7BNr6DM90HcrdE.roa (hash: cHCWZbVIixRYPkJFTsJoo7AK/4mwhNH2E0rmOh1q4HI=)
2: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl (hash: Q8MskwAF/SIT6gg7QSEYarMJP7gtBmFCYZP8svJvn90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:a1:b5:6f:1a:50:98:d6:65:3c:42:97:e4:55:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Validity
Not Before: Sep 7 06:01:10 2025 GMT
Not After : Sep 8 06:01:10 2025 GMT
Subject: CN=336133120006d95f42e5cc42df658d0553113c4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:75:ea:01:b0:81:e9:dc:42:d3:ad:1c:18:01:
f3:c6:f9:ad:b9:43:7c:ff:15:78:fb:2a:64:a2:5c:
09:bf:68:84:7d:50:f3:c9:62:5c:5e:c6:34:61:f1:
ff:ca:7c:c0:36:1c:04:3e:bf:e8:8a:7f:19:24:80:
f6:f4:e5:a8:8f:d7:8c:b7:4e:87:83:b4:56:a5:fb:
88:10:20:85:47:24:04:55:46:b4:11:8a:13:5a:e9:
e6:31:f1:0e:c3:2d:5d:26:0a:08:8e:94:94:7e:56:
d7:7e:a1:33:aa:b0:f3:be:fb:7a:a5:79:d7:5a:d4:
2c:ed:2a:55:32:b7:19:35:92:7c:e1:48:18:4f:02:
ad:47:4a:63:7f:63:95:a5:93:47:bf:22:b5:73:80:
54:34:aa:c4:08:a6:28:01:fd:d1:66:f4:77:44:97:
de:24:ce:a2:f5:ca:7f:e5:4b:68:b9:08:6a:e8:2d:
cc:ea:cf:ac:c8:a0:87:e8:10:49:23:ea:c8:4c:17:
df:14:a3:89:c4:5d:ca:48:9b:c0:a7:84:b3:da:36:
53:bd:23:94:4f:1c:88:06:ff:4a:df:9c:ff:ff:34:
e0:8a:dc:5c:42:d4:e6:99:92:62:f4:7e:db:8f:3f:
d2:57:a1:2f:ef:fa:06:14:25:a0:bb:9b:b5:98:9e:
10:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:61:33:12:00:06:D9:5F:42:E5:CC:42:DF:65:8D:05:53:11:3C:4A
X509v3 Authority Key Identifier:
keyid:A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:3c:71:1d:d7:ea:67:c0:7b:2f:ae:31:42:a2:72:00:9f:8c:
62:b6:fb:0e:19:52:bd:ba:3e:dc:e1:3a:69:4d:18:05:a3:0b:
ae:b3:24:67:0b:68:9e:a7:06:2b:80:ed:1f:ea:af:59:ab:76:
8e:75:42:9d:1e:57:4a:de:78:d2:8e:f5:0c:be:dd:5e:4e:15:
57:b0:bb:2c:1b:f1:ff:a4:52:33:64:57:9f:07:38:d8:b8:01:
bc:a0:82:c6:ed:6b:31:1e:1d:1b:8f:86:ba:c0:e8:5a:8f:5b:
3e:94:43:d8:ca:0a:3f:b3:eb:00:ba:f2:e3:15:12:64:a4:15:
0f:6e:02:bf:76:b2:d2:2d:30:e5:e6:3c:28:45:c0:b6:3e:70:
c3:bd:64:80:0a:bc:71:32:ae:e0:fe:0c:25:22:4c:99:50:5b:
41:b4:d6:9f:3a:d4:5f:62:9a:06:d6:dd:6d:ff:f3:11:89:2e:
8e:e5:ed:df:a4:f0:e0:3f:d7:1a:8d:f3:7e:38:f8:93:29:a4:
29:ec:e4:4a:2f:63:72:fd:cb:d5:80:cc:e9:b4:63:62:ed:86:
be:bd:59:09:97:88:5a:8a:66:72:94:68:5f:de:17:de:48:02:
19:a1:b2:8e:70:72:03:2d:ea:36:ae:98:9c:ed:c6:91:41:91:
aa:08:b9:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiw6G1bxpQmNZlPEKX5FUuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzZDM5MDdmODExY2I4M2YxNmI4MTY3ODVlMzgwYmMyNGM4
YWMxOTMwHhcNMjUwOTA3MDYwMTEwWhcNMjUwOTA4MDYwMTEwWjAzMTEwLwYDVQQD
EygzMzYxMzMxMjAwMDZkOTVmNDJlNWNjNDJkZjY1OGQwNTUzMTEzYzRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynXqAbCB6dxC060cGAHzxvmtuUN8
/xV4+ypkolwJv2iEfVDzyWJcXsY0YfH/ynzANhwEPr/oin8ZJID29OWoj9eMt06H
g7RWpfuIECCFRyQEVUa0EYoTWunmMfEOwy1dJgoIjpSUflbXfqEzqrDzvvt6pXnX
WtQs7SpVMrcZNZJ84UgYTwKtR0pjf2OVpZNHvyK1c4BUNKrECKYoAf3RZvR3RJfe
JM6i9cp/5UtouQhq6C3M6s+syKCH6BBJI+rITBffFKOJxF3KSJvAp4Sz2jZTvSOU
TxyIBv9K35z//zTgitxcQtTmmZJi9H7bjz/SV6Ev7/oGFCWgu5u1mJ4QWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDNhMxIABtlfQuXMQt9ljQVTETxKMB8GA1UdIwQY
MBaAFKPTkH+BHLg/FrgWeF44C8JMisGTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzlPUWY0RWN1RDhXdUJaNFhqZ0x3a3lLd1pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS80M2ViMDUtYWZmZS00Mjc0LTkxM2It
MzMyMDI3MWZiM2FjLzEvbzlPUWY0RWN1RDhXdUJaNFhqZ0x3a3lLd1pNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS80M2ViMDUtYWZmZS00Mjc0LTkxM2ItMzMyMDI3MWZiM2Fj
LzEvbzlPUWY0RWN1RDhXdUJaNFhqZ0x3a3lLd1pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUzxxHdfq
Z8B7L64xQqJyAJ+MYrb7DhlSvbo+3OE6aU0YBaMLrrMkZwtonqcGK4DtH+qvWat2
jnVCnR5XSt540o71DL7dXk4VV7C7LBvx/6RSM2RXnwc42LgBvKCCxu1rMR4dG4+G
usDoWo9bPpRD2MoKP7PrALry4xUSZKQVD24Cv3ay0i0w5eY8KEXAtj5ww71kgAq8
cTKu4P4MJSJMmVBbQbTWnzrUX2KaBtbdbf/zEYkujuXt36Tw4D/XGo3zfjj4kymk
KezkSi9jcv3L1YDM6bRjYu2Gvr1ZCZeIWopmcpRoX94X3kgCGaGyjnByAy3qNq6Y
nO3GkUGRqgi5lQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:23:14 2025 by rpki-client