Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
File: oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json)
Hash identifier: 2Ab20MuozjMCPYyXNp27o+RvwucHyaPsi6rwDqDDPLU=
Subject key identifier: 92:37:45:5A:75:37:14:F2:E3:8F:5E:1C:EF:B2:29:5D:C0:8E:AB:76
Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
Certificate issuer: /CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Certificate serial: 01992FDA63FA8F8CD39AB1D5466312EAC94C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
Manifest number: 03C2
Signing time: Tue 09 Sep 2025 19:01:05 +0000
Manifest this update: Tue 09 Sep 2025 19:01:05 +0000
Manifest next update: Wed 10 Sep 2025 19:01:05 +0000
Files and hashes: 1: 0BmC-81HN_hGVStiVWyBsG7yPOQ.roa (hash: 1DBUkLbwQ3sH8OPXtfdrx6wa0RdQ3lqLVqMY8QCHCK8=)
2: 58QzCphRddJsBqi71H5oisOTtGM.roa (hash: K7oZA9oPzuB3kuDmCdohN1gPlNbeKKgYedD/MB4pxbM=)
3: K5VqopWIERNLlg6XYIHxbSMQwf8.roa (hash: 6CqhTE0o4WqNXO4cXlNrVv+QBipio9ZfLg1pbcvRhvU=)
4: Qt9hOGMkdfDH8ID_bHwfLmJlE60.roa (hash: ARZiY2rT8rE43lKmT9EIHjzaS4HpYkA+YcbbFMZTS4E=)
5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: y3+7N8cbBhf4ZpnHaR88ooGDRP9TjJIlTI5dPdxseBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 19:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:da:63:fa:8f:8c:d3:9a:b1:d5:46:63:12:ea:c9:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Validity
Not Before: Sep 9 19:01:05 2025 GMT
Not After : Sep 10 19:01:05 2025 GMT
Subject: CN=9237455a753714f2e38f5e1cefb2295dc08eab76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a7:58:41:6b:72:16:eb:79:65:85:d9:ed:24:
04:3b:be:60:8e:fd:5f:71:e1:4e:24:d7:f6:de:2d:
38:8d:4f:e8:84:c4:a5:a7:4a:05:78:4e:26:64:90:
49:16:5e:7c:7c:cb:89:9b:90:c8:71:fd:ed:fd:fa:
1c:0d:5d:db:48:ee:ca:ae:90:9f:cf:5f:a4:75:df:
a2:79:4c:75:ce:83:de:a2:aa:49:71:0d:22:3c:b6:
2c:27:2f:5d:0a:60:7c:9e:80:0e:ff:fd:b9:a5:f6:
5d:9b:f7:a8:49:ce:61:74:4c:66:c0:4e:d9:35:7d:
ce:85:e9:80:96:a0:fb:0f:ed:16:5e:e2:46:b6:34:
35:76:82:1d:45:e4:38:94:07:8a:6a:d6:da:b3:f2:
91:aa:05:b5:17:06:12:13:9a:ba:c9:0d:fa:f0:db:
33:97:f8:dc:37:88:d9:9e:8e:64:6e:15:28:11:d9:
bf:2f:a3:81:e0:96:ee:94:c6:84:63:50:28:d5:fa:
0c:4f:bc:68:c7:36:20:d6:76:e1:76:81:cd:d9:bf:
14:1d:20:40:67:d2:af:e5:09:0c:d5:03:8b:5e:d6:
09:55:7e:ba:37:2e:96:e9:38:84:11:e1:aa:1c:54:
09:ea:0e:97:33:2d:d4:b3:88:8a:b2:83:4c:89:de:
81:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:37:45:5A:75:37:14:F2:E3:8F:5E:1C:EF:B2:29:5D:C0:8E:AB:76
X509v3 Authority Key Identifier:
keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:70:15:9c:33:e0:c9:94:53:49:1e:1f:9e:fd:53:f0:71:fa:
20:4f:ca:a4:64:cc:e6:1e:54:aa:73:80:04:09:7f:96:c1:36:
9f:89:b6:64:4f:5a:40:74:4c:3d:5c:69:c4:d9:9a:f1:e3:6c:
d4:42:32:4c:ad:ce:5c:11:74:09:04:92:a5:b3:ae:68:a1:5e:
ef:d2:18:15:12:74:5b:e6:c5:e5:a0:a6:9a:51:4f:22:2b:5a:
7c:b6:ce:5e:09:93:db:20:9d:9e:5c:30:32:f2:94:f0:39:00:
10:b5:15:84:ae:c6:5b:88:37:34:a9:58:e3:13:b6:38:45:4b:
f2:9a:74:aa:ea:f4:93:59:26:14:b4:ac:eb:17:86:97:97:64:
2e:40:61:8d:b4:c9:9c:ef:28:84:80:07:69:cc:0c:9e:50:2c:
10:aa:5a:4e:c0:16:59:38:f5:d5:70:06:ac:c0:79:95:1b:d7:
5f:19:71:e0:0e:3f:c6:ae:9e:ea:db:81:1c:03:ec:13:f5:49:
8c:0c:3a:63:f4:bc:06:9f:f5:da:e2:e4:7e:96:64:e0:84:df:
54:38:11:61:07:d5:9f:33:7e:5f:a5:85:f5:36:31:0f:1b:b5:
f3:50:30:fe:36:2c:84:59:45:ef:86:85:fa:19:40:3e:a5:a8:
24:81:5f:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkv2mP6j4zTmrHVRmMS6slMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExZWJmNTRkMDI4ZWU0NzY0ZjYyZjc4YWQ4NzFkYmYwMjYy
Mjg3ODgwHhcNMjUwOTA5MTkwMTA1WhcNMjUwOTEwMTkwMTA1WjAzMTEwLwYDVQQD
Eyg5MjM3NDU1YTc1MzcxNGYyZTM4ZjVlMWNlZmIyMjk1ZGMwOGVhYjc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6dYQWtyFut5ZYXZ7SQEO75gjv1f
ceFOJNf23i04jU/ohMSlp0oFeE4mZJBJFl58fMuJm5DIcf3t/focDV3bSO7KrpCf
z1+kdd+ieUx1zoPeoqpJcQ0iPLYsJy9dCmB8noAO//25pfZdm/eoSc5hdExmwE7Z
NX3OhemAlqD7D+0WXuJGtjQ1doIdReQ4lAeKatbas/KRqgW1FwYSE5q6yQ368Nsz
l/jcN4jZno5kbhUoEdm/L6OB4JbulMaEY1Ao1foMT7xoxzYg1nbhdoHN2b8UHSBA
Z9Kv5QkM1QOLXtYJVX66Ny6W6TiEEeGqHFQJ6g6XMy3Us4iKsoNMid6B9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJI3RVp1NxTy449eHO+yKV3Ajqt2MB8GA1UdIwQY
MBaAFKHr9U0CjuR2T2L3ithx2/AmIoeIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8xYjE3MmEtNjFkMS00MjBjLWEzZGQt
NDdhNWJmNWIzMTNkLzEvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS8xYjE3MmEtNjFkMS00MjBjLWEzZGQtNDdhNWJmNWIzMTNk
LzEvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYnAVnDPg
yZRTSR4fnv1T8HH6IE/KpGTM5h5UqnOABAl/lsE2n4m2ZE9aQHRMPVxpxNma8eNs
1EIyTK3OXBF0CQSSpbOuaKFe79IYFRJ0W+bF5aCmmlFPIitafLbOXgmT2yCdnlww
MvKU8DkAELUVhK7GW4g3NKlY4xO2OEVL8pp0qur0k1kmFLSs6xeGl5dkLkBhjbTJ
nO8ohIAHacwMnlAsEKpaTsAWWTj11XAGrMB5lRvXXxlx4A4/xq6e6tuBHAPsE/VJ
jAw6Y/S8Bp/12uLkfpZk4ITfVDgRYQfVnzN+X6WF9TYxDxu181Aw/jYshFlF74aF
+hlAPqWoJIFfRw==
-----END CERTIFICATE-----
Generated at Wed Sep 10 04:06:24 2025 by rpki-client