Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: d4Q4ItxJqe9yjRC10GlTxp82raWqorrB1CHBAbczRJI=
Subject key identifier: BF:C8:71:DE:1C:91:34:CC:80:4A:6E:ED:30:70:00:30:09:C2:8D:39
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019A09DD075DB5C9D9B4AFEFD57D89515840
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 08A3
Signing time: Wed 22 Oct 2025 03:01:11 +0000
Manifest this update: Wed 22 Oct 2025 03:01:11 +0000
Manifest next update: Thu 23 Oct 2025 03:01:11 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: D2x90Hp-gN9ES-WMtaRxOkRU7zk.roa (hash: l/qjD5THnTNjpjg3s7YHV5e23ifKj7BiMe0FzY2nCgo=)
3: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: 8zvRPWbMgqGUCOrsWd1cPLHcxtZxzbrC8d8SdVSgXe8=)
4: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
5: hbNzX9sb-OFJ3CONrcdLuZ55uyU.roa (hash: NFMtgtynDHta0KlGWRazjZvBYm+8qkNagl80fkK/Tdk=)
6: y5t9VCG86iK6aUs1XnSlJL9WwkU.roa (hash: AeobAv5BcqpSnLadsMWLSvPDtqBRihCI6v5wMAmYfok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:09:dd:07:5d:b5:c9:d9:b4:af:ef:d5:7d:89:51:58:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Oct 22 03:01:11 2025 GMT
Not After : Oct 23 03:01:11 2025 GMT
Subject: CN=bfc871de1c9134cc804a6eed3070003009c28d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:21:a4:68:57:e2:24:ba:0a:ab:25:9a:62:f7:
af:e6:2f:c7:b5:63:c5:a4:2c:5c:99:a5:e4:e2:8c:
86:51:87:6f:bf:5d:8e:f6:6f:b3:3e:28:70:0a:ff:
c3:31:b4:7b:df:c5:9a:a3:ee:6c:4c:e8:5c:de:a0:
b7:22:fe:28:20:2a:dc:dc:00:fa:cf:43:66:7d:af:
f3:54:3b:85:26:92:55:ee:93:13:20:dc:4f:3a:88:
7c:10:dc:3f:83:5d:f9:c8:f9:f7:ff:a9:b6:71:71:
74:0a:cb:ae:cd:1c:70:34:02:8a:fe:4d:26:b2:dc:
3a:a3:69:0e:a1:41:ce:5b:d3:6c:b5:1d:99:a2:f3:
f3:67:67:6b:8e:c6:d0:16:f3:b6:d2:0a:e4:11:e7:
11:6e:1f:2b:97:02:16:8e:de:09:60:89:5a:ae:6e:
80:3f:6d:25:f4:c1:16:1e:6e:cd:90:64:f8:55:8f:
54:d6:c2:1d:97:18:92:67:2f:6f:10:8c:7f:ba:33:
fb:60:c9:27:11:c9:52:fc:73:8b:2d:29:cd:68:56:
b6:84:32:c0:f6:6f:0a:3f:c2:3e:7b:f2:4a:83:1b:
a1:80:d4:9c:9b:7a:54:cd:c7:52:7c:e6:cc:b5:9f:
42:bd:37:91:a0:73:97:0e:f5:3a:da:2d:bb:d5:7b:
6b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C8:71:DE:1C:91:34:CC:80:4A:6E:ED:30:70:00:30:09:C2:8D:39
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:58:91:8c:a7:e1:9c:fe:f6:20:b0:78:23:42:d0:08:c5:5f:
cc:6c:38:1b:5e:51:fb:a2:7f:4a:e1:2f:53:e1:6b:83:c9:1a:
53:56:6d:92:4c:59:d3:a2:10:6b:68:ab:6b:52:e3:cc:77:7b:
6e:17:28:0e:fd:b4:a5:e5:dc:2a:89:a0:66:98:10:3b:52:1c:
7a:b3:b2:e8:e1:74:c5:ab:f4:1b:b3:af:49:2a:52:02:1e:c0:
e8:04:26:df:1c:55:ee:7a:25:44:29:16:0f:1c:9c:40:9e:52:
22:e1:8f:1f:4a:93:13:ee:98:d9:69:05:80:2d:07:ec:d1:8e:
03:37:6c:02:2f:ef:23:71:6f:42:ea:8b:d0:af:8f:27:98:cb:
96:b9:4f:54:2c:d3:c6:6f:f1:08:9d:69:f7:65:de:29:a8:e7:
14:35:40:5c:6f:b5:69:1a:d3:02:dc:35:a9:f4:3d:ea:0a:74:
e9:ea:5f:3c:66:8b:2d:9d:e2:b0:85:6c:97:ff:e6:f8:31:d8:
c1:91:df:95:8e:81:f2:d6:ec:5b:5b:1e:62:75:2b:5e:7b:68:
12:0a:0e:6f:53:a9:a8:9e:a2:97:64:fb:4d:d9:05:dc:5d:36:
84:87:1b:4e:7e:35:91:4e:24:7f:3d:fa:03:36:87:97:06:3d:
9d:3b:02:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 07:18:11 2025 by rpki-client