Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: gO2cIRe2O8s+5GCFzUr4aqsyzxOvdHtdUSYUU8NmDuk=
Subject key identifier: CF:BD:3D:93:2E:4B:E3:FF:7E:3D:BF:0B:C6:BB:32:C1:8E:2E:DF:B3
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019922FAD2DD40517D33001532245532C28D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1675
Signing time: Sun 07 Sep 2025 07:01:27 +0000
Manifest this update: Sun 07 Sep 2025 07:01:27 +0000
Manifest next update: Mon 08 Sep 2025 07:01:27 +0000
Files and hashes: 1: YZGMIvadW2xPxhoSXpNJb8SDWu8.roa (hash: jQfGmlQO1sTVXZe+wmgboQPBpNBgVW+6jbuLSLsW9ZU=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: ooZUjDnQCBNK0rfHQwDOTpzFWxVuh6jJgT30To7ChoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:d2:dd:40:51:7d:33:00:15:32:24:55:32:c2:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Sep 7 07:01:27 2025 GMT
Not After : Sep 8 07:01:27 2025 GMT
Subject: CN=cfbd3d932e4be3ff7e3dbf0bc6bb32c18e2edfb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9c:53:dc:59:b4:a1:ea:0a:75:ae:b6:db:0e:
18:14:21:e7:60:6f:1b:e3:99:7f:7f:b9:58:81:87:
85:27:e4:82:77:5b:d2:df:5b:ac:b2:a3:5c:30:a9:
52:69:48:61:2f:f5:1b:66:38:19:be:35:38:ad:41:
50:23:82:1a:98:99:24:a9:e3:4b:41:03:4f:ea:48:
5c:f3:27:b7:6f:09:26:68:86:24:ad:99:5a:64:7e:
69:71:05:6a:27:43:c3:0f:44:d2:18:82:b1:28:81:
6e:a2:44:d7:75:12:be:06:7b:ac:fa:ce:1e:58:9b:
04:89:07:7d:70:c5:b8:91:8d:17:05:cb:c2:3b:ca:
99:59:83:49:d4:28:5c:03:da:d0:d6:0e:80:6b:ff:
46:10:eb:55:31:f1:29:08:f7:df:e5:48:ab:66:11:
2f:44:a1:f1:c7:df:f6:b5:6e:13:0f:f9:6f:8e:dc:
ba:a1:2d:e5:db:23:31:7c:de:37:f0:6c:f2:e5:a8:
5d:c6:06:23:94:eb:09:b3:2e:ed:b0:fd:d7:83:d2:
d9:2f:a3:77:f6:ad:f9:db:ed:5b:1f:3c:0d:83:82:
df:43:9b:60:12:e7:f4:0a:15:b1:1e:6b:b8:ee:2e:
7f:c4:01:98:b3:9a:11:45:ea:c9:98:d7:84:f9:19:
9e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:BD:3D:93:2E:4B:E3:FF:7E:3D:BF:0B:C6:BB:32:C1:8E:2E:DF:B3
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:17:0d:75:9d:f6:a7:da:e3:64:61:f9:b9:a1:f5:f1:bd:9a:
50:9c:7b:59:bc:ff:96:80:45:a3:d6:c1:4c:cc:2a:f0:a0:52:
31:bd:7e:3c:51:35:ef:bf:de:66:b8:4e:9d:d4:5e:61:e0:b9:
9d:93:17:08:62:dd:ce:08:bc:55:ab:78:4e:4c:5d:a0:2a:76:
eb:b8:2a:11:d3:84:dc:74:dd:ec:60:cc:ef:07:a6:54:0d:0a:
39:58:cf:0b:df:91:17:b4:88:f4:58:db:e9:84:97:ed:a6:80:
80:2b:37:b5:92:d7:81:62:ed:b5:7f:e7:97:cf:b2:ee:d8:70:
83:73:d2:c2:83:e0:6e:b8:5c:76:9a:d3:ce:dc:c3:20:a4:89:
77:8e:2a:f5:8f:4b:2f:4e:17:22:f9:3a:d1:19:26:e5:db:ce:
67:7d:a1:95:f5:3b:4d:1f:0b:7f:78:b4:09:2d:d7:51:f6:51:
38:98:48:f2:dd:ac:a3:02:bf:ee:2b:ab:f0:53:ae:41:9e:10:
7d:f1:37:84:cb:6e:c8:a8:33:90:f3:6b:e5:f0:84:90:f8:11:
0e:fd:c8:aa:a0:73:ef:d8:32:4d:fb:56:4a:77:20:84:d6:78:
bf:d0:04:b0:50:38:42:62:a1:6f:1e:b7:ca:63:6b:e4:23:3b:
8a:7c:51:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+tLdQFF9MwAVMiRVMsKNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYmZkMDZjZTg1NWI2MmQ5YjY4OGNkOGM1MzVkNWY0OTRj
ZDM5MzIwHhcNMjUwOTA3MDcwMTI3WhcNMjUwOTA4MDcwMTI3WjAzMTEwLwYDVQQD
EyhjZmJkM2Q5MzJlNGJlM2ZmN2UzZGJmMGJjNmJiMzJjMThlMmVkZmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZxT3Fm0oeoKda622w4YFCHnYG8b
45l/f7lYgYeFJ+SCd1vS31ussqNcMKlSaUhhL/UbZjgZvjU4rUFQI4IamJkkqeNL
QQNP6khc8ye3bwkmaIYkrZlaZH5pcQVqJ0PDD0TSGIKxKIFuokTXdRK+Bnus+s4e
WJsEiQd9cMW4kY0XBcvCO8qZWYNJ1ChcA9rQ1g6Aa/9GEOtVMfEpCPff5UirZhEv
RKHxx9/2tW4TD/lvjty6oS3l2yMxfN438Gzy5ahdxgYjlOsJsy7tsP3Xg9LZL6N3
9q352+1bHzwNg4LfQ5tgEuf0ChWxHmu47i5/xAGYs5oRRerJmNeE+RmedwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM+9PZMuS+P/fj2/C8a7MsGOLt+zMB8GA1UdIwQY
MBaAFKC/0GzoVbYtm2iM2MU11fSUzTkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2Ut
NjcxODM5MjAwNjA0LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2UtNjcxODM5MjAwNjA0
LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmxcNdZ32
p9rjZGH5uaH18b2aUJx7Wbz/loBFo9bBTMwq8KBSMb1+PFE177/eZrhOndReYeC5
nZMXCGLdzgi8Vat4TkxdoCp267gqEdOE3HTd7GDM7wemVA0KOVjPC9+RF7SI9Fjb
6YSX7aaAgCs3tZLXgWLttX/nl8+y7thwg3PSwoPgbrhcdprTztzDIKSJd44q9Y9L
L04XIvk60Rkm5dvOZ32hlfU7TR8Lf3i0CS3XUfZROJhI8t2sowK/7iur8FOuQZ4Q
ffE3hMtuyKgzkPNr5fCEkPgRDv3IqqBz79gyTftWSncghNZ4v9AEsFA4QmKhbx63
ymNr5CM7inxRwg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:49:21 2025 by rpki-client