Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
File: OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft (raw, json)
Hash identifier: XM6g3No7+q9FXGPW/GhzBvGjYWapWbyXRJthcLGMzRY=
Subject key identifier: 05:C2:7B:CD:A2:AF:E8:39:44:6A:91:31:4C:1F:75:12:71:7F:56:8E
Authority key identifier: 39:37:30:70:00:B9:33:3F:88:00:0A:35:BF:3B:5B:8F:E3:8C:16:DE
Certificate issuer: /CN=3937307000b9333f88000a35bf3b5b8fe38c16de
Certificate serial: 019A71EEBAF0272B370F7633B0836C8B2AFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
Manifest number: 04E3
Signing time: Tue 11 Nov 2025 08:01:02 +0000
Manifest this update: Tue 11 Nov 2025 08:01:02 +0000
Manifest next update: Wed 12 Nov 2025 08:01:02 +0000
Files and hashes: 1: OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl (hash: eKrWg5bOot7c7KJQUU2XiQ4vW+hb6yGAmfvX5hVOqL8=)
2: XzMnx3Q6lXV5BFC3Ulnea3IgALE.roa (hash: MHnaHZdpDHAywK5Gif3w+d5y+x0GzsWCN2jIZcL+Afc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:ba:f0:27:2b:37:0f:76:33:b0:83:6c:8b:2a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3937307000b9333f88000a35bf3b5b8fe38c16de
Validity
Not Before: Nov 11 08:01:02 2025 GMT
Not After : Nov 12 08:01:02 2025 GMT
Subject: CN=05c27bcda2afe839446a91314c1f7512717f568e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c0:93:7b:67:4d:34:5b:b9:bf:fe:e4:cf:22:
36:84:60:8d:42:97:42:9c:9a:2c:96:78:90:88:f4:
78:e6:6f:fb:75:9d:af:bc:67:5f:72:6c:2e:78:ad:
20:ae:72:7d:e3:77:03:eb:e5:76:f0:be:48:0e:d9:
87:df:fb:a8:bd:f2:59:5c:bb:0c:49:55:e4:bd:49:
03:fb:25:d2:a1:90:8f:89:1c:80:4f:f1:86:be:53:
52:f4:e8:3a:f7:b7:e0:b4:c4:ee:96:25:0a:0f:15:
e1:f7:5d:68:a0:a4:dc:32:ba:08:7b:b9:79:cd:e8:
f2:a8:23:1a:63:97:fb:63:05:a2:d6:64:a1:7a:62:
38:db:9f:c5:d9:57:95:20:53:3a:43:58:d4:a6:3a:
5e:a4:56:79:40:fa:ba:05:1f:1d:b1:a5:22:69:56:
f4:93:a2:33:a2:f0:de:2b:17:de:3b:c5:b0:cf:28:
80:d5:85:1e:32:46:1b:5c:a3:21:ec:60:68:3e:58:
3a:69:aa:da:72:fc:1a:99:55:3a:96:fe:a4:f0:06:
92:7e:6a:3e:31:7b:94:0b:cb:36:d8:60:b4:a4:b1:
86:39:aa:4a:26:3a:57:d8:1f:a3:2b:dc:7a:2e:ff:
54:dd:b4:14:e1:f8:57:fe:b9:c4:fe:dc:3d:30:1e:
21:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C2:7B:CD:A2:AF:E8:39:44:6A:91:31:4C:1F:75:12:71:7F:56:8E
X509v3 Authority Key Identifier:
keyid:39:37:30:70:00:B9:33:3F:88:00:0A:35:BF:3B:5B:8F:E3:8C:16:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:b7:70:21:50:c7:34:03:6f:0f:ed:25:97:14:77:6f:3e:b3:
31:62:ff:fe:68:52:6b:b4:9f:15:bc:46:17:71:3f:6f:45:cd:
0d:9c:74:f6:6b:a0:ee:82:eb:fa:a0:ae:b3:58:0e:93:95:78:
39:2a:f1:27:b9:42:24:5a:99:79:79:00:24:94:b5:1d:52:2a:
a4:e2:ab:8c:a8:67:38:3e:10:e9:f7:8c:41:20:70:9f:cb:be:
da:c1:97:53:45:18:ee:1d:99:69:1d:58:ce:5a:7d:f2:b7:45:
97:81:a8:e2:bb:7c:d2:57:6a:4e:44:d3:5b:f7:1b:d3:60:27:
2a:7d:a7:48:15:93:ef:72:11:8b:dc:19:76:d0:71:25:9a:b1:
eb:40:7a:fe:b2:9e:ad:32:3d:c5:df:ef:6f:d2:b6:30:9d:e2:
6d:b0:2c:7b:4d:01:4f:65:b0:2c:b9:95:c8:27:b7:ac:e1:33:
ed:4f:2d:e1:96:91:9d:db:a7:24:a6:00:bd:30:1c:5f:d4:8a:
c2:17:ae:11:ea:b0:9d:74:7c:a4:4e:ec:7a:7c:47:0e:1d:89:
d5:65:58:72:7a:78:95:d9:12:18:ca:09:07:6d:f2:21:0e:6c:
44:bb:7f:b3:b6:6c:04:2f:6b:86:6a:14:7b:c5:db:fc:19:b5:
85:ea:4a:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:58 2025 by rpki-client