Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: iJJZyuzDmbuBOPtT+07dCjfM3Nt127LhOZ+1MgT4ZGc=
Subject key identifier: 2B:98:D8:64:93:66:CF:45:BC:87:99:8B:AE:C9:14:A9:03:64:89:90
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 019A24790FA7FE38CF9ED2374DBC4941F79B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 120D
Signing time: Mon 27 Oct 2025 07:01:44 +0000
Manifest this update: Mon 27 Oct 2025 07:01:44 +0000
Manifest next update: Tue 28 Oct 2025 07:01:44 +0000
Files and hashes: 1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=)
2: CBZTZIxMDDoFTLtkXWpJNkPAyZA.roa (hash: cXql8AeIQAC8BMZkK4SJLIjChz+/Hte6gi3o/bh7lrE=)
3: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: a+RX1mU2LCdx3cXPKX+Z5336YUTMlBlGIz4atk5c3qo=)
4: RjuRaZuZ0xmwZH7qDjx0yyzfK8I.roa (hash: vDCSE2Q3+xwHwJ7yz5XXtXzSlCcuWpfsJowTd0aQz6o=)
5: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=)
6: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:79:0f:a7:fe:38:cf:9e:d2:37:4d:bc:49:41:f7:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Oct 27 07:01:44 2025 GMT
Not After : Oct 28 07:01:44 2025 GMT
Subject: CN=2b98d8649366cf45bc87998baec914a903648990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:00:73:80:a3:be:6f:9d:fa:25:1e:1d:31:b6:
3b:90:c7:e3:8e:e3:73:05:d7:f1:af:77:a6:fa:f5:
26:68:47:06:2a:11:d7:d0:07:e5:35:67:a3:17:75:
76:77:3a:74:b3:9e:c6:64:83:f8:34:de:60:61:34:
02:ae:4d:f8:a7:98:89:81:18:b3:a6:41:d7:9c:23:
6f:cd:24:e0:a8:fd:2c:ea:d7:9c:83:f7:e3:19:e6:
be:c2:1c:c9:f2:f7:94:2b:6c:c4:59:94:68:51:62:
ef:80:55:71:d2:04:4a:44:1e:8c:e4:30:d7:31:a4:
2a:4d:c9:13:0b:ac:cb:7e:61:a8:fa:a4:45:af:d9:
fb:3d:e7:73:a6:f5:2d:f8:32:31:50:ba:11:fe:e2:
c0:9b:39:4c:62:a0:b2:c5:b3:5c:c8:b7:62:48:82:
98:2a:7c:40:70:01:c5:95:b5:ed:62:0d:11:a4:c1:
12:a4:34:64:82:a6:36:9b:5a:be:c0:9f:f5:d1:2e:
20:a8:e7:4d:bc:31:f2:93:a1:99:4d:a2:5f:4d:3f:
cd:94:c0:ae:7c:57:f9:18:8f:a6:59:28:28:a5:a0:
83:79:6e:02:20:1d:df:1f:71:5e:6c:e1:d9:a6:84:
3a:54:3a:2a:f2:5a:3f:b7:62:c7:a1:e0:48:37:19:
41:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:98:D8:64:93:66:CF:45:BC:87:99:8B:AE:C9:14:A9:03:64:89:90
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:d0:70:1d:7b:d9:10:3c:cb:58:79:ca:82:69:ec:66:51:2c:
c2:77:1b:60:99:8c:45:d5:70:e0:c1:15:d5:31:dc:db:4b:87:
f1:e3:8c:01:99:79:21:e7:51:c8:68:40:cd:80:f0:34:0a:7a:
ea:de:5c:35:e5:06:77:9a:68:d2:26:cc:46:37:69:03:69:fe:
55:3d:04:55:2a:04:7d:b0:7f:8c:b9:c5:c6:23:f2:9d:dd:ba:
69:4e:bc:5e:91:c1:87:63:9c:e7:64:3c:80:5a:65:27:4e:e6:
42:be:81:68:c1:ad:41:90:2c:c4:c1:7f:e3:24:d7:18:1f:95:
31:3b:b2:74:67:8b:6d:4c:20:d9:7b:01:76:fc:06:6a:aa:9b:
58:9a:b5:47:ee:20:04:50:78:53:2c:bb:4f:dd:1f:3e:a0:ec:
71:2d:bf:3d:4b:ac:99:51:00:a5:8f:91:ad:15:06:f5:b1:0a:
0d:a5:ea:44:ba:7f:4d:85:92:10:e7:eb:4d:20:5b:ec:6b:a3:
23:77:9a:6a:df:19:2e:7c:7a:bc:a0:ff:b4:01:5f:82:34:c6:
0b:b4:13:24:b6:a4:96:df:22:cf:3b:c3:ba:91:1e:9b:b1:39:
96:f5:59:3e:78:a5:78:7d:af:8c:97:84:53:bc:6b:f9:3c:7e:
24:3b:eb:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 15:38:40 2025 by rpki-client