Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json)
Hash identifier: 7yBQup9gmDWPxTG425Saa0deHE3bc9Zyy6+o2W0FsUY=
Subject key identifier: 29:55:43:55:25:79:8C:FA:FD:7A:C0:2D:2E:51:E2:07:E5:C5:6A:0C
Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Certificate serial: 01992255459B551C504B48D2507FD5B5DB3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
Manifest number: 0A1E
Signing time: Sun 07 Sep 2025 04:00:37 +0000
Manifest this update: Sun 07 Sep 2025 04:00:37 +0000
Manifest next update: Mon 08 Sep 2025 04:00:37 +0000
Files and hashes: 1: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: QdfwBEAaoQQWMkwMFyoRVOseUdnXcfXsKPaFaoIkU94=)
2: Uekfh-0K2vRcuzrLz8uBXFaOroQ.roa (hash: QN8HhWjjJPearCTxHxonyEJ2yJIbW9sXZXyp6RMDaE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:45:9b:55:1c:50:4b:48:d2:50:7f:d5:b5:db:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Validity
Not Before: Sep 7 04:00:37 2025 GMT
Not After : Sep 8 04:00:37 2025 GMT
Subject: CN=2955435525798cfafd7ac02d2e51e207e5c56a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:6a:87:24:0b:7a:ef:cc:29:72:d8:41:b4:
c7:8e:55:76:1f:6a:a4:93:e1:06:f9:b6:74:09:5e:
24:36:fb:9e:dc:7c:5d:7b:3d:83:a9:e7:ba:96:a2:
d1:6f:e0:e7:c1:cd:ba:ad:1e:d1:85:6d:40:7f:60:
0a:cd:75:5d:14:db:ac:18:9a:b7:90:25:8e:24:65:
64:ed:c8:5c:4c:0d:59:b9:76:20:92:d6:2c:1e:3f:
dd:05:a9:64:6d:f6:26:1a:67:f7:f7:24:9f:e6:94:
43:ee:ef:67:fe:98:b0:34:93:a6:19:f8:99:af:05:
98:c7:0a:b7:3d:aa:03:57:d9:d9:3a:48:1c:2f:8a:
6e:82:14:d4:0b:b2:89:f8:31:ac:54:21:24:49:ef:
30:16:f9:5e:3a:6c:77:23:97:35:74:31:55:c0:b6:
b8:59:0b:fa:19:d9:ba:af:44:64:bd:27:90:cf:93:
e8:20:0d:8a:6a:53:b0:c3:14:61:c1:28:11:38:70:
b4:57:29:37:ac:c6:81:fd:e1:05:ff:7d:25:04:fc:
41:6c:02:fe:b0:80:3f:92:e4:55:f1:a4:f2:2a:6c:
f9:73:c3:a3:46:ac:3d:84:6d:a0:9a:3b:39:89:e9:
ec:1d:bc:5e:a3:63:fe:ff:5b:a0:6f:26:3e:c0:5a:
91:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:55:43:55:25:79:8C:FA:FD:7A:C0:2D:2E:51:E2:07:E5:C5:6A:0C
X509v3 Authority Key Identifier:
keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:7d:3a:1a:17:b3:f7:35:66:72:04:4c:03:35:43:3e:3d:60:
57:f9:9f:a4:86:ba:88:58:11:35:c4:62:c9:7c:9c:a4:e6:17:
bf:6e:cb:9c:9c:45:8d:d1:a9:74:b2:da:ea:07:6c:b0:9f:68:
ee:0d:bc:ec:4d:f1:11:56:c1:e2:b0:1f:07:29:3b:4f:7c:f0:
0e:ed:55:f4:6d:43:e6:3b:7e:b2:37:6d:64:0c:b4:5d:c8:74:
88:a1:1a:91:05:b2:1f:44:92:25:ce:1f:ab:5c:a5:16:54:14:
72:ea:c0:34:3e:1f:d3:ee:08:13:3f:9b:ed:48:de:b0:a7:12:
51:9f:72:08:60:8a:85:44:76:20:f3:95:53:a9:35:c9:1f:84:
cc:7c:52:a3:6e:56:23:60:f2:f9:06:49:39:ea:18:dc:a4:a9:
08:b7:86:cd:2d:56:d0:dc:f9:40:ce:70:38:6c:44:b7:6e:b9:
00:a7:f0:e7:04:aa:a9:e1:04:4b:49:a5:ef:7f:27:5f:b4:ff:
20:69:1a:e4:90:d4:71:6e:93:d2:c9:a8:6b:82:6b:2e:df:db:
bb:9f:00:f4:ac:90:7f:b8:30:b8:11:3e:39:fe:43:bf:a0:18:
62:9f:2c:a5:1f:ba:2b:38:f9:a5:57:6e:a1:32:aa:e2:f6:ef:
3a:32:fb:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVUWbVRxQS0jSUH/Vtds9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNjA0ZWMwY2ZlZTk2NmM0MTliM2E2ZDVmMDgyYjU2M2Mx
ODY4YmQwHhcNMjUwOTA3MDQwMDM3WhcNMjUwOTA4MDQwMDM3WjAzMTEwLwYDVQQD
EygyOTU1NDM1NTI1Nzk4Y2ZhZmQ3YWMwMmQyZTUxZTIwN2U1YzU2YTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvh5qhyQLeu/MKXLYQbTHjlV2H2qk
k+EG+bZ0CV4kNvue3Hxdez2Dqee6lqLRb+Dnwc26rR7RhW1Af2AKzXVdFNusGJq3
kCWOJGVk7chcTA1ZuXYgktYsHj/dBalkbfYmGmf39ySf5pRD7u9n/piwNJOmGfiZ
rwWYxwq3PaoDV9nZOkgcL4pughTUC7KJ+DGsVCEkSe8wFvleOmx3I5c1dDFVwLa4
WQv6Gdm6r0RkvSeQz5PoIA2KalOwwxRhwSgROHC0Vyk3rMaB/eEF/30lBPxBbAL+
sIA/kuRV8aTyKmz5c8OjRqw9hG2gmjs5iensHbxeo2P+/1ugbyY+wFqRYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFClVQ1UleYz6/XrALS5R4gflxWoMMB8GA1UdIwQY
MBaAFDtgTsDP7pZsQZs6bV8IK1Y8GGi9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgt
ODdlOWYyMWI0MThiLzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgtODdlOWYyMWI0MThi
LzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfX06Ghez
9zVmcgRMAzVDPj1gV/mfpIa6iFgRNcRiyXycpOYXv27LnJxFjdGpdLLa6gdssJ9o
7g287E3xEVbB4rAfByk7T3zwDu1V9G1D5jt+sjdtZAy0Xch0iKEakQWyH0SSJc4f
q1ylFlQUcurAND4f0+4IEz+b7UjesKcSUZ9yCGCKhUR2IPOVU6k1yR+EzHxSo25W
I2Dy+QZJOeoY3KSpCLeGzS1W0Nz5QM5wOGxEt265AKfw5wSqqeEES0ml738nX7T/
IGka5JDUcW6T0smoa4JrLt/bu58A9KyQf7gwuBE+Of5Dv6AYYp8spR+6Kzj5pVdu
oTKq4vbvOjL7Eg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:38:24 2025 by rpki-client