Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
File: oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft (raw, json)
Hash identifier: 7W10VAJk/FP4FEk02qT1jjzGZmgAb8JLZHa+BKunpIU=
Subject key identifier: 1B:3F:AF:51:B8:FD:98:83:4F:FF:86:60:89:C4:10:4D:10:24:CB:1A
Authority key identifier: A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
Certificate issuer: /CN=a1655282be419d21222b506fb7a368c3fe5db23d
Certificate serial: 019922C34D878514DB8DC4A886A60CF29405
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 06:00:48 +0000
Manifest this update: Sun 07 Sep 2025 06:00:48 +0000
Manifest next update: Mon 08 Sep 2025 06:00:48 +0000
Files and hashes: 1: SxgKNPaYJVhAK36SOSTuyxJmYzI.roa (hash: iBEUhnRScZ+rajzC9bqU9rcXbnYIQMvrpQOY+tW8FQc=)
2: oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl (hash: /LeAKgGbvqdCajfzJjx62pxQ2bxeqRWADF/ZWx3mGPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:4d:87:85:14:db:8d:c4:a8:86:a6:0c:f2:94:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1655282be419d21222b506fb7a368c3fe5db23d
Validity
Not Before: Sep 7 06:00:48 2025 GMT
Not After : Sep 8 06:00:48 2025 GMT
Subject: CN=1b3faf51b8fd98834fff866089c4104d1024cb1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0c:be:11:32:c3:9e:0e:a1:7c:6d:7c:0f:67:
ea:46:2f:94:fe:e7:b2:be:27:48:60:15:89:36:1b:
e1:2b:2e:8e:e1:72:fd:71:65:fc:c3:d9:13:c3:1a:
9f:91:2e:68:9d:c4:3d:41:46:c2:3e:2a:df:b1:04:
8a:b3:a7:f4:e0:cd:d5:b7:ec:5e:99:51:66:83:17:
32:ec:33:aa:b0:3d:df:f8:db:cd:56:d8:aa:86:db:
25:70:5d:38:30:ee:b8:f2:7d:eb:ab:da:7b:a9:40:
14:0e:7b:80:dd:e7:d1:2c:15:78:d2:3e:72:2a:11:
b8:02:15:9c:a1:26:06:b9:68:7f:3a:1c:6f:51:42:
5f:ef:a7:54:5f:6a:69:30:96:68:56:a0:24:cd:42:
78:0a:55:12:c4:c9:14:47:e0:e6:fc:af:d6:30:28:
8f:fe:95:bb:ae:5d:bd:d1:a0:94:ec:03:20:ec:c5:
98:f8:8a:a3:ac:e5:31:df:c0:3b:cb:e6:15:8d:56:
e5:7f:d9:4e:9f:30:8e:b1:74:10:77:b8:79:82:31:
c2:82:97:c5:b8:a1:7d:88:7a:72:04:d9:87:8f:f5:
10:a7:a5:8f:d4:ee:0e:55:b4:f8:ec:f5:f4:42:9a:
09:fe:99:12:f5:79:d9:96:47:cf:47:a4:b4:0d:7e:
24:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3F:AF:51:B8:FD:98:83:4F:FF:86:60:89:C4:10:4D:10:24:CB:1A
X509v3 Authority Key Identifier:
keyid:A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:cc:3c:9e:05:e8:05:6a:4c:f5:ab:45:40:bb:1e:89:67:ab:
0f:ea:48:52:7d:db:97:55:c2:7c:84:46:18:35:72:97:b7:46:
2c:c4:a7:e7:a4:98:ad:cf:bb:6d:ee:5c:df:8a:83:46:f8:01:
0c:ea:01:2f:9e:ab:01:88:8d:3f:f3:f9:7d:4a:6c:c1:89:2e:
6d:48:80:19:ce:73:db:f9:5b:2c:99:55:40:fb:67:e3:03:80:
7d:5f:88:6a:06:52:e4:af:53:66:8f:cc:96:8a:c6:52:48:ab:
47:9a:75:82:7a:21:d6:d3:b9:fd:df:93:f6:23:ad:00:49:c2:
ac:a1:10:52:ac:8e:51:19:30:7f:c9:17:4e:a3:97:92:cd:48:
b1:6c:34:54:17:1f:6f:dd:52:c4:a4:c7:7b:12:4e:15:41:2a:
64:87:66:3a:ff:84:fe:ca:09:fd:43:5f:0c:77:10:2c:62:0f:
d8:47:60:93:91:65:64:03:1b:39:64:70:7a:ec:e5:38:08:79:
bc:68:25:9c:a0:5b:a5:9c:e5:26:f0:f9:8c:8b:3e:f8:86:dc:
fb:a2:eb:13:f0:88:f8:bb:90:46:ff:99:a8:70:50:6f:8d:c4:
d7:22:f6:69:62:c0:35:8a:4e:a5:cc:36:e3:a4:c9:3a:8b:e2:
a4:a4:b2:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiw02HhRTbjcSohqYM8pQFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNjU1MjgyYmU0MTlkMjEyMjJiNTA2ZmI3YTM2OGMzZmU1
ZGIyM2QwHhcNMjUwOTA3MDYwMDQ4WhcNMjUwOTA4MDYwMDQ4WjAzMTEwLwYDVQQD
EygxYjNmYWY1MWI4ZmQ5ODgzNGZmZjg2NjA4OWM0MTA0ZDEwMjRjYjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Ay+ETLDng6hfG18D2fqRi+U/uey
vidIYBWJNhvhKy6O4XL9cWX8w9kTwxqfkS5oncQ9QUbCPirfsQSKs6f04M3Vt+xe
mVFmgxcy7DOqsD3f+NvNVtiqhtslcF04MO648n3rq9p7qUAUDnuA3efRLBV40j5y
KhG4AhWcoSYGuWh/OhxvUUJf76dUX2ppMJZoVqAkzUJ4ClUSxMkUR+Dm/K/WMCiP
/pW7rl290aCU7AMg7MWY+IqjrOUx38A7y+YVjVblf9lOnzCOsXQQd7h5gjHCgpfF
uKF9iHpyBNmHj/UQp6WP1O4OVbT47PX0QpoJ/pkS9XnZlkfPR6S0DX4k1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBs/r1G4/ZiDT/+GYInEEE0QJMsaMB8GA1UdIwQY
MBaAFKFlUoK+QZ0hIitQb7ejaMP+XbI9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1dWU2dyNUJuU0VpSzFCdnQ2Tm93XzVkc2owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS84MDYyYTktN2Y0Ny00NGVhLWFiYjct
OTFkYmM5ZjBlOGRiLzEvb1dWU2dyNUJuU0VpSzFCdnQ2Tm93XzVkc2owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS84MDYyYTktN2Y0Ny00NGVhLWFiYjctOTFkYmM5ZjBlOGRi
LzEvb1dWU2dyNUJuU0VpSzFCdnQ2Tm93XzVkc2owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYsw8ngXo
BWpM9atFQLseiWerD+pIUn3bl1XCfIRGGDVyl7dGLMSn56SYrc+7be5c34qDRvgB
DOoBL56rAYiNP/P5fUpswYkubUiAGc5z2/lbLJlVQPtn4wOAfV+IagZS5K9TZo/M
lorGUkirR5p1gnoh1tO5/d+T9iOtAEnCrKEQUqyOURkwf8kXTqOXks1IsWw0VBcf
b91SxKTHexJOFUEqZIdmOv+E/soJ/UNfDHcQLGIP2Edgk5FlZAMbOWRweuzlOAh5
vGglnKBbpZzlJvD5jIs++Ibc+6LrE/CI+LuQRv+ZqHBQb43E1yL2aWLANYpOpcw2
46TJOovipKSy4Q==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:41 2025 by rpki-client