Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: HDsn0YIxIt1uDKek73bvfrKVMUzkFBcFgmD+twG73HM=
Subject key identifier: 86:31:D0:3D:4F:85:69:34:80:8F:D0:37:02:20:EA:B2:F3:64:44:E9
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019745C264C1332E110989547B5E2AB99B92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0733
Signing time: Fri 06 Jun 2025 15:00:56 +0000
Manifest this update: Fri 06 Jun 2025 15:00:56 +0000
Manifest next update: Sat 07 Jun 2025 15:00:56 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: 2DDfXUiH85YC1X3PgfdtyKVgjPw.roa (hash: IX38bNkkduAXN8SBzl133Uzin5uXQV9chMH9hhrcGco=)
3: 5O5OsM3NhBX9ufi05PLP13l29To.roa (hash: 3SSp0jqDRZlrWNGbYWPuIP2g5yvlTpjsrbIVea72fZ0=)
4: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: xtsNsdb8JFVMjEa0JzipoEf7Xrp89aetpa8U4UShsp4=)
5: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:64:c1:33:2e:11:09:89:54:7b:5e:2a:b9:9b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Jun 6 15:00:56 2025 GMT
Not After : Jun 7 15:00:56 2025 GMT
Subject: CN=8631d03d4f856934808fd0370220eab2f36444e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b6:6e:1f:62:89:bb:08:07:c9:b8:f0:23:3e:
c4:02:59:3e:32:22:9a:7e:bc:c6:24:6a:f8:13:88:
25:0d:15:ff:8f:0f:98:3c:13:df:7a:ba:bf:d5:34:
f6:66:59:84:78:c0:8b:c5:67:82:9e:66:2c:42:e7:
bb:d7:1e:2a:d3:b5:7a:47:29:9f:1d:69:90:d9:7c:
97:11:b1:73:79:b6:b9:85:21:46:13:c3:94:b9:d5:
f1:02:18:d7:eb:49:1a:84:b9:ed:7b:30:fb:ef:cd:
7f:ef:26:fc:3a:ff:84:ef:26:15:9b:a7:d3:0c:13:
d0:e7:7b:e1:32:ee:20:c6:94:3f:41:e7:eb:da:c1:
5b:3f:67:9a:f8:49:d1:c2:f6:73:1b:fc:92:6e:7a:
6c:e5:03:81:df:4d:c7:0d:65:45:20:a6:29:48:9a:
9d:d9:45:33:a3:0f:25:91:2c:41:24:07:fa:12:42:
b5:07:53:b8:aa:b8:83:df:17:16:da:78:4c:0c:d5:
c7:db:7c:17:e7:af:57:31:04:f6:4d:32:f8:54:a7:
d7:e8:e1:15:e2:88:7a:c6:5e:68:60:6e:d0:a4:a6:
86:10:e2:66:42:f7:b8:6a:49:91:d0:29:d7:f6:3e:
99:17:70:7a:84:fa:9f:f1:6e:6a:0a:0e:e4:49:1e:
7d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:31:D0:3D:4F:85:69:34:80:8F:D0:37:02:20:EA:B2:F3:64:44:E9
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:1d:a7:78:7e:35:f9:5f:34:51:49:09:93:d6:4d:d5:99:9e:
e9:e5:c1:cb:af:9a:4a:e2:fc:f6:c3:03:30:f2:43:e8:37:84:
64:86:c8:d7:24:97:d6:58:4b:37:25:fa:e2:4e:bc:f0:8f:53:
2e:eb:6b:92:db:24:d1:f5:bc:25:f8:7b:77:15:d2:26:f5:d0:
90:c9:f1:b0:0e:59:c9:e8:3a:28:20:dc:63:8f:2b:e0:ae:45:
96:58:61:bd:88:d7:f9:09:8a:f7:3e:79:26:fd:af:77:3d:16:
35:f0:ab:c6:bb:5e:d2:7d:bb:75:d2:3a:cc:24:78:7f:e6:f7:
ef:c6:02:e8:25:d0:65:2c:a5:84:6f:14:1d:d6:fd:45:61:bb:
d9:3c:16:43:5e:74:7d:5f:93:51:f1:76:eb:c3:f5:78:b3:9a:
1c:65:c7:59:83:ce:f9:70:cf:fb:2b:ca:85:8c:05:ec:63:1e:
1e:b2:bd:3b:7c:ab:06:78:44:32:fd:da:c3:42:b8:89:f2:46:
a8:bc:26:e6:bf:6a:68:2b:d2:51:60:f7:10:8f:4b:45:ec:e8:
8d:84:76:dd:cc:33:fb:69:86:94:ec:e8:34:7d:3d:b2:f2:3b:
2f:a0:69:82:ae:44:40:7e:e1:82:c9:c1:e3:a5:1c:29:42:24:
20:02:3c:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdFwmTBMy4RCYlUe14quZuSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MzZkYWYwMzc1NmJhZjgzYmE0ZjM4ZGJlNWQ2OGNiOWJh
Y2VmZjkwHhcNMjUwNjA2MTUwMDU2WhcNMjUwNjA3MTUwMDU2WjAzMTEwLwYDVQQD
Eyg4NjMxZDAzZDRmODU2OTM0ODA4ZmQwMzcwMjIwZWFiMmYzNjQ0NGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbZuH2KJuwgHybjwIz7EAlk+MiKa
frzGJGr4E4glDRX/jw+YPBPferq/1TT2ZlmEeMCLxWeCnmYsQue71x4q07V6Rymf
HWmQ2XyXEbFzeba5hSFGE8OUudXxAhjX60kahLntezD7781/7yb8Ov+E7yYVm6fT
DBPQ53vhMu4gxpQ/Qefr2sFbP2ea+EnRwvZzG/ySbnps5QOB303HDWVFIKYpSJqd
2UUzow8lkSxBJAf6EkK1B1O4qriD3xcW2nhMDNXH23wX569XMQT2TTL4VKfX6OEV
4oh6xl5oYG7QpKaGEOJmQve4akmR0CnX9j6ZF3B6hPqf8W5qCg7kSR59xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIYx0D1PhWk0gI/QNwIg6rLzZETpMB8GA1UdIwQY
MBaAFDk22vA3Vrr4O6Tzjb5daMubrO/5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2Mt
Zjk1ZjY2ZDYwNTVjLzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2MtZjk1ZjY2ZDYwNTVj
LzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABh2neH41
+V80UUkJk9ZN1Zme6eXBy6+aSuL89sMDMPJD6DeEZIbI1ySX1lhLNyX64k688I9T
Lutrktsk0fW8Jfh7dxXSJvXQkMnxsA5Zyeg6KCDcY48r4K5FllhhvYjX+QmK9z55
Jv2vdz0WNfCrxrte0n27ddI6zCR4f+b378YC6CXQZSylhG8UHdb9RWG72TwWQ150
fV+TUfF268P1eLOaHGXHWYPO+XDP+yvKhYwF7GMeHrK9O3yrBnhEMv3aw0K4ifJG
qLwm5r9qaCvSUWD3EI9LRezojYR23cwz+2mGlOzoNH09svI7L6Bpgq5EQH7hgsnB
46UcKUIkIAI8dA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:17:50 2025 by rpki-client