Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: I/ysyT+GVOqyzFdTG5es8Uq0hl0/n2xVrTCncU3ttWY=
Subject key identifier: 7E:17:06:73:34:F7:EE:43:F0:A7:F5:3E:08:10:B5:51:49:85:05:EA
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 01993124862EFEE4CD6082B465A7E08B270E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 15D1
Signing time: Wed 10 Sep 2025 01:01:41 +0000
Manifest this update: Wed 10 Sep 2025 01:01:41 +0000
Manifest next update: Thu 11 Sep 2025 01:01:41 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: eLdI6q+tfXiHyagzRBtOHYcUtWoMi2JBtKd/M+LUloQ=)
2: I8hH4YeV3HM0yWrc52lfIOhYTt8.roa (hash: colmP8j9TQydvYGFc1+glmJgVJjDM5AxsV+6TerMW6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:24:86:2e:fe:e4:cd:60:82:b4:65:a7:e0:8b:27:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Sep 10 01:01:41 2025 GMT
Not After : Sep 11 01:01:41 2025 GMT
Subject: CN=7e17067334f7ee43f0a7f53e0810b551498505ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c5:f7:e0:a6:8c:d1:e9:af:e8:9d:7e:c4:4a:
65:7f:f1:d9:81:f1:33:82:11:a0:09:69:0b:f9:78:
fd:52:e5:be:77:c4:2c:f3:97:a0:19:6a:37:28:21:
40:6d:39:87:a8:31:d2:6a:22:6f:c5:97:64:75:22:
1a:c6:ba:e8:7c:a1:76:68:11:4f:21:f5:ca:39:0b:
ca:da:aa:2a:99:cd:98:c1:77:ed:7e:b5:e7:d9:f4:
5a:bb:a5:c8:b3:49:4e:2f:d4:49:61:f2:1b:46:69:
f0:26:62:78:69:91:95:22:57:ca:59:55:00:fc:0d:
57:22:b9:3e:93:f0:5c:51:d4:a9:c4:2c:49:c7:37:
f3:71:af:1c:22:82:6e:96:7a:7c:31:07:9e:68:60:
36:2f:d4:f8:17:a9:a9:f2:e6:3a:fb:23:4b:d5:39:
ab:72:71:49:e8:54:03:40:d8:af:87:15:a0:1c:69:
c8:c6:c9:05:94:6a:ef:9b:5c:a6:fa:d5:fa:68:1f:
f0:e8:d2:17:9b:90:7a:fa:ef:04:41:bf:90:59:9a:
2f:c1:ef:1e:5d:47:e4:9b:e9:f5:e6:ec:9a:32:55:
87:76:6d:21:32:51:2a:97:a7:fa:82:fe:07:d3:6e:
48:15:92:66:77:4d:00:72:28:20:34:87:87:f9:c0:
ca:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:17:06:73:34:F7:EE:43:F0:A7:F5:3E:08:10:B5:51:49:85:05:EA
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:e4:f6:57:48:ec:9a:bf:8d:0f:6c:1c:3a:09:f4:d7:33:af:
78:2d:f1:b0:8f:f3:c2:22:f6:25:20:7e:01:f4:42:3d:4c:0f:
62:52:02:68:43:64:f3:ba:02:ed:01:43:d2:74:36:46:26:29:
34:c3:bc:c7:5f:69:0d:cc:5a:98:6f:f4:e9:63:06:51:0c:49:
a1:4c:da:ef:25:be:09:d6:8a:6d:40:38:a2:6a:c0:b8:6e:be:
06:da:db:38:7d:67:b3:fc:96:38:11:1f:0b:6d:bc:0e:65:99:
40:d8:29:7e:d0:10:1a:f1:9b:95:3d:26:d5:35:ed:89:38:0d:
ea:4b:ef:47:c1:eb:49:94:85:47:e9:59:41:73:f1:f5:73:58:
e6:84:2b:e2:09:1b:01:b8:b4:9f:4c:55:1b:b9:63:bc:93:6d:
4f:61:92:35:b3:be:fc:87:ca:90:ae:57:33:40:31:82:1c:c9:
dc:c7:c1:c8:d6:13:ef:0e:7b:65:93:5e:10:3d:b1:6c:c9:10:
19:a2:db:90:2d:13:ba:c1:e7:ee:2d:5f:9a:02:58:24:7a:b2:
53:c4:5d:c8:a7:01:b0:df:be:cc:5e:50:1b:0e:3a:7c:3c:e5:
92:5b:90:03:bf:d7:dd:11:2e:ef:f6:30:26:81:15:cf:94:d7:
3c:08:73:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkxJIYu/uTNYIK0ZafgiycOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwZTY1MzQ4ZGMxM2M4NTQ5OWM3Nzc0ZDE1NjYxNGMxMjAx
MThhYjUwHhcNMjUwOTEwMDEwMTQxWhcNMjUwOTExMDEwMTQxWjAzMTEwLwYDVQQD
Eyg3ZTE3MDY3MzM0ZjdlZTQzZjBhN2Y1M2UwODEwYjU1MTQ5ODUwNWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsX34KaM0emv6J1+xEplf/HZgfEz
ghGgCWkL+Xj9UuW+d8Qs85egGWo3KCFAbTmHqDHSaiJvxZdkdSIaxrrofKF2aBFP
IfXKOQvK2qoqmc2YwXftfrXn2fRau6XIs0lOL9RJYfIbRmnwJmJ4aZGVIlfKWVUA
/A1XIrk+k/BcUdSpxCxJxzfzca8cIoJulnp8MQeeaGA2L9T4F6mp8uY6+yNL1Tmr
cnFJ6FQDQNivhxWgHGnIxskFlGrvm1ym+tX6aB/w6NIXm5B6+u8EQb+QWZovwe8e
XUfkm+n15uyaMlWHdm0hMlEql6f6gv4H025IFZJmd00AciggNIeH+cDKLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH4XBnM09+5D8Kf1PggQtVFJhQXqMB8GA1UdIwQY
MBaAFNDmU0jcE8hUmcd3TRVmFMEgEYq1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYt
MGRiMGVjMWU5NDVjLzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYtMGRiMGVjMWU5NDVj
LzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFOT2V0js
mr+ND2wcOgn01zOveC3xsI/zwiL2JSB+AfRCPUwPYlICaENk87oC7QFD0nQ2RiYp
NMO8x19pDcxamG/06WMGUQxJoUza7yW+CdaKbUA4omrAuG6+BtrbOH1ns/yWOBEf
C228DmWZQNgpftAQGvGblT0m1TXtiTgN6kvvR8HrSZSFR+lZQXPx9XNY5oQr4gkb
Abi0n0xVG7ljvJNtT2GSNbO+/IfKkK5XM0AxghzJ3MfByNYT7w57ZZNeED2xbMkQ
GaLbkC0TusHn7i1fmgJYJHqyU8RdyKcBsN++zF5QGw46fDzlkluQA7/X3REu7/Yw
JoEVz5TXPAhzrQ==
-----END CERTIFICATE-----
Generated at Wed Sep 10 03:41:10 2025 by rpki-client