Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: CHoCGgBEvCl85eSAcAl3vUOfC9F4GZADFamSaCe6bmY=
Subject key identifier: CF:73:33:94:A9:1A:5E:C2:02:6E:93:2F:96:B1:1B:62:3B:EF:5D:B6
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 019A52D26B3DF88564B5488EE31A8569AD22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 1225
Signing time: Wed 05 Nov 2025 07:01:53 +0000
Manifest this update: Wed 05 Nov 2025 07:01:53 +0000
Manifest next update: Thu 06 Nov 2025 07:01:53 +0000
Files and hashes: 1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=)
2: CBZTZIxMDDoFTLtkXWpJNkPAyZA.roa (hash: cXql8AeIQAC8BMZkK4SJLIjChz+/Hte6gi3o/bh7lrE=)
3: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: +BYBBzMDOxPK0wrHsI6xEXLs/wlCp83cJ0V4ovXa/HU=)
4: RjuRaZuZ0xmwZH7qDjx0yyzfK8I.roa (hash: vDCSE2Q3+xwHwJ7yz5XXtXzSlCcuWpfsJowTd0aQz6o=)
5: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=)
6: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:6b:3d:f8:85:64:b5:48:8e:e3:1a:85:69:ad:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Nov 5 07:01:53 2025 GMT
Not After : Nov 6 07:01:53 2025 GMT
Subject: CN=cf733394a91a5ec2026e932f96b11b623bef5db6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a2:cb:e0:54:9e:25:50:de:e0:54:44:0d:5a:
77:c9:7d:1c:1c:00:c8:e9:a3:70:5c:04:06:46:3e:
ef:a1:a2:bc:fd:f6:c2:b6:31:53:f3:15:0a:58:d8:
3e:5f:e9:a2:52:9b:3b:e9:06:c1:7c:b4:3c:f9:45:
f0:c5:9d:df:62:9c:6b:33:00:e5:01:6e:1d:4f:aa:
db:f4:0f:5b:52:1b:95:66:6a:b1:77:63:cc:9c:78:
cf:2d:7d:26:10:42:1a:0a:e1:52:97:c2:61:fc:f3:
06:06:79:6b:fe:1c:a4:92:d6:6c:4a:2c:a8:09:4e:
1e:fd:46:3c:73:02:92:3a:81:63:08:65:21:d5:9e:
e7:bc:55:a8:11:82:04:e4:78:6c:76:fd:9a:9b:57:
b7:81:d7:26:80:74:2f:31:25:19:3d:b3:77:9e:ae:
a9:5b:a8:58:ea:d1:d1:c7:b7:c1:ae:14:2a:22:46:
e4:f8:3f:87:12:d7:29:a3:40:73:96:3e:b0:0a:57:
c1:5f:57:25:4e:61:ea:44:3c:ce:ac:fd:0a:22:f1:
52:6d:41:4b:1d:26:38:42:f3:8f:fd:8e:be:04:9a:
a5:12:e2:03:93:80:8a:43:03:d8:f5:0f:6d:47:df:
e5:65:ab:3f:37:d2:78:7f:8a:a7:86:50:5c:f2:ed:
83:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:73:33:94:A9:1A:5E:C2:02:6E:93:2F:96:B1:1B:62:3B:EF:5D:B6
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:e9:92:0d:9f:ca:c7:57:31:f4:8e:20:75:4f:59:db:f0:62:
59:b8:a5:17:14:74:54:3b:21:70:25:94:d6:30:5d:39:89:c8:
bd:01:0f:2e:3f:26:78:ab:ce:f0:7d:53:c8:8c:c4:5c:4c:9a:
ef:be:43:95:c1:4a:51:7f:35:ce:8c:53:ef:69:7a:ca:69:5c:
e3:ab:7e:b8:15:db:40:db:0a:07:6b:94:38:63:9e:e9:dc:5b:
97:68:c3:3d:25:7f:c4:2e:12:e1:19:51:65:25:d0:22:26:35:
95:80:da:4f:19:a5:34:cf:e9:f1:fe:19:ad:73:83:ed:c9:5f:
1e:b1:2f:8a:7c:50:da:fd:b4:4a:17:06:af:c8:82:67:a2:5e:
23:25:1c:b4:a8:8c:50:e2:98:a8:b2:ef:ac:15:ab:00:1e:19:
c1:57:ce:bb:bc:29:f6:9c:c0:21:c6:03:f2:c7:2d:48:85:a4:
54:07:b0:fb:df:86:25:bd:e5:e0:e4:ca:d1:69:a1:18:15:e0:
1c:b2:44:eb:46:e3:94:c0:2f:9b:dd:db:e0:ab:cf:e2:20:3b:
fe:db:44:71:b4:67:25:30:ec:73:3b:eb:32:41:0c:43:d2:dd:
0c:0a:ce:44:f4:95:a7:de:ca:2f:0c:5b:37:d8:7e:9d:a4:bf:
9f:26:1d:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:29:43 2025 by rpki-client