Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: NVE6xYYKA4fcHrYRhNxBuwD6pYVBPREJX1sUV2BnJMw=
Subject key identifier: F1:0C:6C:62:94:EA:CD:01:EA:40:82:A4:2C:F7:D2:1B:F5:AF:92:F1
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 01991E784FECD5BA19670BFCB8C6945A993E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0828
Signing time: Sat 06 Sep 2025 10:00:25 +0000
Manifest this update: Sat 06 Sep 2025 10:00:25 +0000
Manifest next update: Sun 07 Sep 2025 10:00:25 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: cOkEfF+TQ2pctPwnmoS0hdW+08yRJPfifbJNtOHyM3Q=)
3: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
4: jpcOzJlD5DNOBR0PvFka9EhBs6c.roa (hash: BgC9FPq25CFFYRb5W+esR5XkAJuLVqKyZBOpB4qwDEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 02:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1e:78:4f:ec:d5:ba:19:67:0b:fc:b8:c6:94:5a:99:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Sep 6 10:00:25 2025 GMT
Not After : Sep 7 10:00:25 2025 GMT
Subject: CN=f10c6c6294eacd01ea4082a42cf7d21bf5af92f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:43:27:2a:6c:f0:66:49:d2:2c:b1:31:a0:09:
6f:a8:bf:3d:ca:34:d7:eb:41:8b:d5:47:9a:14:54:
84:a5:5a:6e:74:54:21:9c:d5:a5:f9:fc:4c:23:c3:
15:a9:76:ba:8c:f2:25:bd:14:70:a0:7f:7f:75:d1:
0d:5d:72:df:ea:d1:6b:69:1a:1d:0f:c0:fb:c8:73:
37:bb:5e:2d:f7:a6:5b:f6:00:3a:91:39:6d:e4:9a:
bf:64:50:db:d5:19:8f:56:5e:86:63:39:4c:a2:0c:
4c:71:c6:b2:ac:89:9a:5b:c8:e1:eb:1f:5b:ce:3d:
13:01:65:49:b8:b4:3a:c0:3a:fc:cd:21:65:f7:91:
a8:b6:e0:61:93:35:47:33:30:fd:5b:59:01:0b:b7:
4c:0d:99:bb:2c:8a:3c:29:a2:2b:fd:29:86:d3:59:
61:87:0b:5b:77:6d:5a:f0:15:08:00:eb:6f:ad:53:
12:bd:35:e6:a7:81:84:b0:2d:bd:ef:af:b3:86:2a:
eb:27:f2:be:55:64:6e:0e:7f:1e:04:7b:81:bd:81:
f4:8b:af:9f:fc:02:f3:19:81:c3:37:ea:0a:56:ff:
c1:76:d9:10:a9:eb:70:e9:f2:0f:94:98:de:11:d3:
72:8f:d5:ad:23:37:d7:a9:20:7b:cc:5f:51:df:d9:
7b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:0C:6C:62:94:EA:CD:01:EA:40:82:A4:2C:F7:D2:1B:F5:AF:92:F1
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:4b:93:97:61:98:25:16:bf:c1:5c:8e:ba:03:23:a4:bd:aa:
45:92:db:c2:31:6b:2d:bf:ff:85:7b:4e:d8:66:75:82:db:17:
e8:34:04:9f:cc:73:a6:9e:81:16:73:b2:a8:d6:4a:fe:0a:70:
f4:bb:07:d1:7b:76:4d:d5:6e:6f:03:5e:e4:f3:ce:50:34:33:
17:35:9a:31:2f:7f:a5:af:93:b4:da:d2:4c:7d:15:f8:7e:af:
2f:51:9c:57:97:4d:f8:e5:4e:9b:f2:f3:c2:1f:48:a4:a4:e6:
a7:aa:0c:a3:4c:ec:d0:ce:fe:f5:a4:8c:ee:63:67:1d:1b:d8:
ef:c2:e0:99:89:fd:91:d6:f3:eb:15:75:33:0b:84:f3:15:93:
3c:3b:f6:dc:b8:09:0d:e9:30:5f:a7:10:ba:1b:49:ef:0c:5e:
c3:ca:11:ad:b0:b8:48:ec:a7:34:4b:af:69:a3:06:97:f0:77:
13:48:85:05:8a:ae:30:1f:03:88:a4:5c:d3:60:cb:93:45:31:
5a:52:54:c9:cd:37:b2:be:61:27:0f:0f:38:f9:3f:09:85:7d:
72:31:16:fd:19:25:0f:ea:73:5e:de:3d:03:d9:22:e7:21:24:
19:fe:cb:16:37:a7:2b:db:2e:57:86:a5:e4:72:7e:b3:1c:dd:
1c:fa:07:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 12:04:12 2025 by rpki-client