Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
File: otCM3GpDDvDaiCmRcla2rY0KNvk.mft (raw, json)
Hash identifier: wEjfOthy+l3zH/bE3j0vZA8UyNI6pLSBxnscesuc4Io=
Subject key identifier: 23:60:EC:28:44:69:CD:B5:7B:EC:DF:19:33:1C:7D:82:B4:B8:45:8F
Authority key identifier: A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
Certificate issuer: /CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Certificate serial: 019923A054963501365B3A86B9D4EF271BF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
Manifest number: 0895
Signing time: Sun 07 Sep 2025 10:02:13 +0000
Manifest this update: Sun 07 Sep 2025 10:02:13 +0000
Manifest next update: Mon 08 Sep 2025 10:02:13 +0000
Files and hashes: 1: otCM3GpDDvDaiCmRcla2rY0KNvk.crl (hash: Puug+HV8+AmmWi15WsJ6oTsYWs5VQKHceETg4EodwmM=)
2: uWHHQqBwsm-RgF6BGlPrCIiU5u8.roa (hash: c70DUe86Dscr+BOk1RbQf+gmFBszpSvbzYy8111R1f4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:54:96:35:01:36:5b:3a:86:b9:d4:ef:27:1b:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Validity
Not Before: Sep 7 10:02:13 2025 GMT
Not After : Sep 8 10:02:13 2025 GMT
Subject: CN=2360ec284469cdb57becdf19331c7d82b4b8458f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:33:76:85:44:6b:05:45:49:75:f4:4d:0b:ba:
00:d4:e6:41:88:ca:cf:ea:59:17:84:e9:ef:c8:db:
f5:3f:8e:f2:a6:9a:fe:ee:4f:93:2b:cc:da:e5:9a:
6d:aa:e3:53:99:5c:c5:aa:43:22:22:79:06:99:fb:
5b:62:40:72:16:00:8c:ea:db:40:69:b1:a5:0a:ad:
be:fc:fd:ab:81:4e:53:b9:ca:7a:dc:b5:28:1e:79:
cf:79:a6:c6:67:2b:28:01:c0:97:7d:9a:ed:08:76:
5d:b9:82:d1:c0:2e:04:52:5b:e4:3b:6b:ce:3e:ac:
d9:d8:fd:d9:a6:bc:f3:34:5a:99:dc:89:88:09:e5:
60:36:fa:4d:cc:c6:38:1c:ad:f8:4f:f3:b2:e0:55:
aa:00:e5:f7:60:ff:ca:ad:a6:49:51:b4:02:18:47:
83:30:de:a9:29:0c:4a:19:f7:fc:b3:59:93:13:f4:
67:dc:d4:3f:88:d2:2d:2d:d2:6d:a8:e9:a8:5a:02:
d4:df:39:bd:34:52:9a:36:9a:89:13:04:ff:6e:b9:
4a:2d:c5:a4:70:2e:63:07:f4:a7:95:89:96:b7:96:
63:14:bf:e0:44:d8:71:dd:fe:46:58:c6:cd:85:45:
65:64:e7:f4:65:38:65:fc:fa:d8:d3:ca:77:60:be:
72:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:60:EC:28:44:69:CD:B5:7B:EC:DF:19:33:1C:7D:82:B4:B8:45:8F
X509v3 Authority Key Identifier:
keyid:A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:a9:30:4b:3d:76:b3:a1:0e:bb:cb:f0:a7:22:3f:ea:a2:3b:
4d:b4:d9:18:ba:e1:87:70:76:c5:0e:fb:28:30:53:52:fc:b0:
1f:9b:b1:d7:00:b8:5a:48:0a:17:97:22:84:26:8b:ff:9c:4c:
fe:92:58:ce:b1:23:ca:06:44:d2:56:3a:60:20:28:03:0e:94:
51:1b:5c:d2:41:aa:75:a2:2a:5c:6b:2c:87:b2:1a:cd:97:1b:
61:b2:42:52:1e:e0:73:6c:3f:79:3d:14:bb:ae:b0:53:ea:1d:
5a:5b:a8:44:92:9e:37:d0:70:2a:96:a4:6c:10:23:44:fb:8d:
c3:f0:60:89:3f:55:e2:21:31:ac:8d:83:af:82:86:8a:c5:cb:
26:4f:91:72:42:4d:f2:88:dc:cb:e9:9e:63:eb:a7:51:5b:01:
fa:64:9f:ec:fe:1d:8b:86:18:e1:db:37:2e:d6:6a:7b:49:53:
3a:c3:a8:9b:d9:f3:5f:3b:12:c2:2e:a5:8a:29:46:32:6d:e5:
b2:1b:2b:f3:cc:a3:63:3c:80:bd:67:b8:2c:6b:f2:4c:5c:bf:
a2:3c:c2:d6:ad:20:d1:4e:35:7b:7b:0b:05:7d:de:8d:9a:80:
c0:d6:b5:a9:82:b8:6b:60:55:e2:f4:17:02:6f:6e:b7:7a:b6:
2f:4e:8f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:42:23 2025 by rpki-client