
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: GaZLTU3ryLZWOiYFOAALOAQXO4jZqYNt1v+yjAR81YM=
Subject key identifier: E7:3B:CD:66:B6:EA:9C:85:48:AE:54:85:83:62:BE:AB:F0:41:22:B8
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 019759494D6A0F110C01D14C041EA97BA1E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 1099
Signing time: Tue 10 Jun 2025 10:01:05 +0000
Manifest this update: Tue 10 Jun 2025 10:01:05 +0000
Manifest next update: Wed 11 Jun 2025 10:01:05 +0000
Files and hashes: 1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=)
2: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: YAIBEf5OEWdGsoATbleuOHRzZ0NK5WcuV8Ydh8bXLOI=)
3: lKnLzY94Z9zOTG6_1gzuoDIJ_5Y.roa (hash: veP44H4IXhWwV/CHwiAUB7r/bJ77LhyJozTjkioLQx0=)
4: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=)
5: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:49:4d:6a:0f:11:0c:01:d1:4c:04:1e:a9:7b:a1:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Jun 10 10:01:05 2025 GMT
Not After : Jun 11 10:01:05 2025 GMT
Subject: CN=e73bcd66b6ea9c8548ae54858362beabf04122b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7d:63:a1:5c:61:92:d6:55:42:fe:74:3e:4a:
5a:5d:d1:fc:b9:18:e7:7a:7a:e0:48:80:c4:53:93:
33:23:1a:30:a1:06:64:6b:a3:87:21:62:a0:00:1f:
63:1b:92:9c:2e:db:f8:08:98:1b:46:35:c2:71:7d:
c5:4a:ac:43:5e:33:d1:cd:73:56:30:04:a9:72:1a:
eb:fa:e5:0a:fa:dc:10:09:88:32:10:31:b2:17:35:
c0:2c:72:35:1e:35:9a:4f:dd:8b:9c:f0:bd:11:db:
fb:71:23:fc:af:8c:b1:df:c9:ba:3a:81:50:bd:bd:
d5:ca:96:e4:b2:24:f7:a9:5d:13:2b:b5:bf:20:d4:
19:4b:42:db:8e:12:b0:85:5a:81:d8:9b:f1:21:f8:
2b:f1:56:0f:b1:2e:1a:5c:51:8c:5b:f3:7e:0e:92:
7e:b1:3a:f8:97:15:63:e0:11:22:00:4d:e1:21:56:
cb:b1:e6:eb:d0:a8:be:21:cb:e3:04:64:00:a7:05:
82:65:49:a1:d4:03:70:33:31:cc:79:5e:1b:43:b3:
ea:3c:21:98:b5:23:e4:af:8f:d0:74:25:39:9f:58:
c8:1b:ba:4c:7a:f5:02:2c:95:3b:80:29:6c:78:41:
48:94:22:6b:60:39:7e:57:b8:bc:f1:d2:af:85:92:
f8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3B:CD:66:B6:EA:9C:85:48:AE:54:85:83:62:BE:AB:F0:41:22:B8
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:de:ca:70:e8:14:84:37:d4:33:37:29:ce:12:2d:ae:59:65:
c1:75:de:5a:f2:89:ac:50:30:25:a2:b3:f6:21:4a:d0:f8:06:
3a:9f:ab:06:38:2e:54:3a:b2:f7:65:41:43:b1:59:9d:cc:45:
e5:49:06:56:2b:e8:92:c4:ec:20:57:49:b7:31:a5:15:0e:31:
91:21:a0:9f:5e:84:42:ca:57:2e:0f:e7:c0:10:7a:29:1d:df:
10:76:51:75:e6:28:da:ec:60:c7:a8:ba:6c:85:41:e0:83:d5:
ec:bf:e7:0b:5c:cb:07:9f:c8:76:04:b3:d2:0b:34:22:6e:5f:
f4:11:6c:6d:b0:21:a8:55:d9:f0:77:aa:b9:59:b6:bf:0d:75:
34:cc:d5:98:9f:3d:47:9d:00:01:83:78:0e:ad:b3:6c:3e:e1:
1a:ba:03:b2:40:35:ee:1e:a4:23:15:f5:8b:96:88:f2:fa:ff:
9e:16:e1:2b:b6:9e:6b:63:57:4d:76:40:45:f8:c5:35:5b:8e:
8d:46:d9:e1:69:a8:2d:f9:fa:0f:9c:4d:09:cc:69:64:6c:00:
bd:af:d0:a9:5c:b8:8f:d9:d5:84:85:7f:9c:69:99:bd:c0:91:
b5:3e:2d:2e:b2:c5:bb:03:c1:63:ac:ec:58:14:84:2a:73:95:
0a:26:14:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdZSU1qDxEMAdFMBB6pe6HmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZDY1MjE2ODEyZWQyNGZkMWM3MTk4NzFhNTlhOTcxZGVj
MzBhMjYwHhcNMjUwNjEwMTAwMTA1WhcNMjUwNjExMTAwMTA1WjAzMTEwLwYDVQQD
EyhlNzNiY2Q2NmI2ZWE5Yzg1NDhhZTU0ODU4MzYyYmVhYmYwNDEyMmI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy31joVxhktZVQv50PkpaXdH8uRjn
enrgSIDEU5MzIxowoQZka6OHIWKgAB9jG5KcLtv4CJgbRjXCcX3FSqxDXjPRzXNW
MASpchrr+uUK+twQCYgyEDGyFzXALHI1HjWaT92LnPC9Edv7cSP8r4yx38m6OoFQ
vb3VypbksiT3qV0TK7W/INQZS0LbjhKwhVqB2JvxIfgr8VYPsS4aXFGMW/N+DpJ+
sTr4lxVj4BEiAE3hIVbLsebr0Ki+IcvjBGQApwWCZUmh1ANwMzHMeV4bQ7PqPCGY
tSPkr4/QdCU5n1jIG7pMevUCLJU7gClseEFIlCJrYDl+V7i88dKvhZL4OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOc7zWa26pyFSK5UhYNivqvwQSK4MB8GA1UdIwQY
MBaAFDrWUhaBLtJP0ccZhxpZqXHewwomMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9iOGNhZTQtYjVhZi00MzgwLTk4MTct
NDY1MzhjYTUzODNjLzEvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9iOGNhZTQtYjVhZi00MzgwLTk4MTctNDY1MzhjYTUzODNj
LzEvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARd7KcOgU
hDfUMzcpzhItrlllwXXeWvKJrFAwJaKz9iFK0PgGOp+rBjguVDqy92VBQ7FZncxF
5UkGVivoksTsIFdJtzGlFQ4xkSGgn16EQspXLg/nwBB6KR3fEHZRdeYo2uxgx6i6
bIVB4IPV7L/nC1zLB5/IdgSz0gs0Im5f9BFsbbAhqFXZ8HequVm2vw11NMzVmJ89
R50AAYN4Dq2zbD7hGroDskA17h6kIxX1i5aI8vr/nhbhK7aea2NXTXZARfjFNVuO
jUbZ4WmoLfn6D5xNCcxpZGwAva/QqVy4j9nVhIV/nGmZvcCRtT4tLrLFuwPBY6zs
WBSEKnOVCiYUqw==
-----END CERTIFICATE-----
Generated at Tue Jun 10 14:56:40 2025 by rpki-client