Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: clQNdO4PDsnO5wOkJi0ftbvmAFCJh97AOS2ndVG66Xw=
Subject key identifier: E8:79:F4:4C:11:ED:9C:D3:CE:43:4B:DD:31:5D:BB:8D:F0:DD:E9:88
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 0199326D3F52B467BEE10DDCCBE9AD4A328D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0E09
Signing time: Wed 10 Sep 2025 07:00:44 +0000
Manifest this update: Wed 10 Sep 2025 07:00:44 +0000
Manifest next update: Thu 11 Sep 2025 07:00:44 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: K4UBR4foT12t/s3HG+X8NhEUWAL8gVg1x2ad9IqqOdQ=)
2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:6d:3f:52:b4:67:be:e1:0d:dc:cb:e9:ad:4a:32:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Sep 10 07:00:44 2025 GMT
Not After : Sep 11 07:00:44 2025 GMT
Subject: CN=e879f44c11ed9cd3ce434bdd315dbb8df0dde988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:35:f2:b7:7f:e2:16:29:22:12:84:9c:7a:0d:
98:4c:72:9f:05:8e:fe:09:3b:97:6b:ca:03:54:3b:
4e:6e:b2:c3:d0:44:c5:d1:36:6e:d6:5e:60:c9:4e:
45:04:d4:c7:6a:17:2b:5a:dc:73:f5:45:4c:cc:14:
0e:74:82:00:57:b3:01:31:11:c1:50:e5:ba:0f:67:
1b:11:ef:be:2d:79:69:ce:e5:f0:7a:84:34:9c:c8:
8f:c8:58:ec:33:68:9e:e8:9c:91:81:e9:e7:7d:3f:
2b:e5:7e:d3:29:77:c0:20:13:47:ca:11:35:d2:c4:
15:20:bc:2b:ad:0f:d0:06:4f:11:46:29:56:45:71:
84:a1:1e:31:88:b4:b2:9c:9c:5a:6b:ee:de:d7:2b:
e7:fb:6b:a3:69:07:9d:fb:8b:e1:0f:1c:74:1a:2f:
c7:43:92:89:bd:0b:28:85:65:df:23:39:ae:50:38:
00:45:94:1a:96:36:b4:80:a6:d3:04:53:68:83:b9:
0c:97:80:ec:e7:06:83:62:6e:9f:2c:5b:38:79:46:
be:c7:02:6f:13:84:c4:1a:76:d7:36:31:3b:cd:96:
84:91:e5:38:e9:f6:44:5b:e8:f7:5b:00:cb:25:74:
8c:3f:14:22:63:5c:c1:13:0f:e6:24:27:88:10:c7:
54:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:79:F4:4C:11:ED:9C:D3:CE:43:4B:DD:31:5D:BB:8D:F0:DD:E9:88
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:e2:e8:f6:2e:f9:c1:a0:f0:c9:50:50:ea:22:ea:f3:0e:7c:
0e:f7:a8:7e:95:31:64:8c:c4:ba:eb:2f:56:9b:72:a6:b6:4f:
3e:fc:df:d0:bb:b7:00:b2:cf:5e:4f:63:0a:db:46:f0:5d:26:
d2:52:f7:ce:03:5d:92:ae:04:a5:cb:10:25:f9:1b:66:c4:8f:
fa:c3:ec:5c:ca:c9:13:5a:0b:fe:96:41:a0:c8:6d:6a:f4:87:
69:ff:dd:c4:1e:8c:68:0b:34:5b:18:f2:88:86:b6:b3:fe:30:
0d:1d:83:13:19:57:7a:ed:d8:09:74:7a:c5:32:80:a7:e5:28:
6e:3a:40:45:2c:61:ee:14:87:d9:00:9c:27:08:b9:b8:77:17:
ec:47:c5:dd:e9:0e:7b:78:9e:a6:43:94:ba:ce:a2:0f:76:3c:
e0:a7:5f:c8:1b:22:e1:ef:a8:96:65:e6:12:da:5a:5b:7c:b7:
8b:ef:99:2c:3b:66:30:7b:ae:50:4d:ae:ba:d4:cb:f7:7e:7e:
4f:d2:59:d2:96:11:30:f7:74:a9:b1:a1:eb:1a:38:9e:36:83:
dd:9e:ac:00:19:a2:71:2e:cb:1f:ef:77:5c:a2:68:b3:ad:1d:
db:32:11:b1:99:50:9d:a7:63:b7:b6:a6:73:c9:bb:be:5f:d8:
00:d3:61:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkybT9StGe+4Q3cy+mtSjKNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNzNhMzlhMGUwNDVkZGZhZWY1MDJmMWZkOTFjNmNjMTY1
MDk0NTkwHhcNMjUwOTEwMDcwMDQ0WhcNMjUwOTExMDcwMDQ0WjAzMTEwLwYDVQQD
EyhlODc5ZjQ0YzExZWQ5Y2QzY2U0MzRiZGQzMTVkYmI4ZGYwZGRlOTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhjXyt3/iFikiEoSceg2YTHKfBY7+
CTuXa8oDVDtObrLD0ETF0TZu1l5gyU5FBNTHahcrWtxz9UVMzBQOdIIAV7MBMRHB
UOW6D2cbEe++LXlpzuXweoQ0nMiPyFjsM2ie6JyRgennfT8r5X7TKXfAIBNHyhE1
0sQVILwrrQ/QBk8RRilWRXGEoR4xiLSynJxaa+7e1yvn+2ujaQed+4vhDxx0Gi/H
Q5KJvQsohWXfIzmuUDgARZQalja0gKbTBFNog7kMl4Ds5waDYm6fLFs4eUa+xwJv
E4TEGnbXNjE7zZaEkeU46fZEW+j3WwDLJXSMPxQiY1zBEw/mJCeIEMdUtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOh59EwR7ZzTzkNL3TFdu43w3emIMB8GA1UdIwQY
MBaAFNpzo5oOBF3frvUC8f2RxswWUJRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMm5Pam1nNEVYZC11OVFMeF9aSEd6QlpRbEZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8xNzM3ZmMtYjIyMS00ZmYwLWJmYTct
NWQ2NzRjYWRkZDZmLzEvMm5Pam1nNEVYZC11OVFMeF9aSEd6QlpRbEZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi8xNzM3ZmMtYjIyMS00ZmYwLWJmYTctNWQ2NzRjYWRkZDZm
LzEvMm5Pam1nNEVYZC11OVFMeF9aSEd6QlpRbEZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApeLo9i75
waDwyVBQ6iLq8w58DveofpUxZIzEuusvVptyprZPPvzf0Lu3ALLPXk9jCttG8F0m
0lL3zgNdkq4EpcsQJfkbZsSP+sPsXMrJE1oL/pZBoMhtavSHaf/dxB6MaAs0Wxjy
iIa2s/4wDR2DExlXeu3YCXR6xTKAp+UobjpARSxh7hSH2QCcJwi5uHcX7EfF3ekO
e3iepkOUus6iD3Y84KdfyBsi4e+olmXmEtpaW3y3i++ZLDtmMHuuUE2uutTL935+
T9JZ0pYRMPd0qbGh6xo4njaD3Z6sABmicS7LH+93XKJos60d2zIRsZlQnadjt7am
c8m7vl/YANNhHQ==
-----END CERTIFICATE-----
Generated at Wed Sep 10 10:20:47 2025 by rpki-client