Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: KleHyN1ot/LggkXnCT8SrC2lVjCQhsbT3cmoBPPU9LY=
Subject key identifier: DC:16:37:6D:9D:D6:FB:8D:15:49:F2:1B:B6:09:96:4F:C7:11:2A:A0
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 019892237EC9C3DEDD674A37BA26E170C6C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 113B
Signing time: Sun 10 Aug 2025 04:00:56 +0000
Manifest this update: Sun 10 Aug 2025 04:00:56 +0000
Manifest next update: Mon 11 Aug 2025 04:00:56 +0000
Files and hashes: 1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=)
2: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: E+lzQ7gnPNQBdWjInwZ0b9xcJasIaebzmYO0IqdBfNI=)
3: lKnLzY94Z9zOTG6_1gzuoDIJ_5Y.roa (hash: veP44H4IXhWwV/CHwiAUB7r/bJ77LhyJozTjkioLQx0=)
4: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=)
5: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:23:7e:c9:c3:de:dd:67:4a:37:ba:26:e1:70:c6:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Aug 10 04:00:56 2025 GMT
Not After : Aug 11 04:00:56 2025 GMT
Subject: CN=dc16376d9dd6fb8d1549f21bb609964fc7112aa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:a8:0f:31:d8:79:e6:97:a0:36:2f:14:d2:
b6:5c:c9:eb:45:f8:a8:52:84:bb:8b:a5:86:b7:78:
1c:09:0f:c0:9c:11:99:d4:23:6d:c1:a7:ac:dc:10:
84:d1:3c:c6:59:98:08:0b:78:50:ae:d8:11:67:a0:
80:89:9b:bc:36:34:ec:3f:26:30:22:e5:ea:03:eb:
58:df:ea:78:90:3c:3a:39:ae:46:fb:e3:3b:02:df:
6e:3e:0c:7b:00:71:ae:bd:da:c1:c5:a1:8c:fa:45:
7c:f0:26:e0:50:c0:0a:95:d4:0b:81:fb:e6:e5:32:
7d:61:e9:cd:53:5a:4e:25:b3:99:17:dc:18:3f:82:
b6:ef:47:9b:cf:0d:d5:5e:ca:a7:2a:37:89:2c:5d:
38:17:f2:26:c8:65:50:9e:ff:ff:fc:a9:d8:ee:d3:
da:d1:ed:44:ca:e4:7a:4e:16:2a:d6:c7:97:2d:cf:
da:81:5d:89:b8:a3:1b:dc:a9:c9:d7:c3:f0:13:10:
2d:ac:39:3d:7d:ba:81:f6:ed:50:1e:18:d4:68:bc:
58:13:e4:aa:78:a3:d5:fa:50:d5:11:1e:c0:ba:39:
1c:63:8c:86:07:4b:78:ab:37:5b:3d:0a:28:eb:fe:
ff:15:0c:cf:2d:71:16:c7:d4:65:90:e9:d6:a8:65:
c4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:16:37:6D:9D:D6:FB:8D:15:49:F2:1B:B6:09:96:4F:C7:11:2A:A0
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:96:fa:03:97:68:f6:5d:54:86:02:cd:a1:2d:56:bd:59:66:
88:ca:b3:4c:f5:6d:71:ea:b7:6a:23:38:70:7b:d3:23:c9:e6:
07:69:9a:c2:19:19:5c:c5:9d:d9:58:37:fb:92:ba:3e:75:76:
46:00:14:22:e3:38:37:8e:2b:33:80:78:d5:84:b6:63:c6:2f:
6e:e5:22:49:a0:c2:30:93:88:8a:fb:c7:20:81:26:9f:0d:b8:
b1:97:75:ed:66:c1:60:78:44:ee:80:97:3f:cd:14:44:aa:9c:
c6:89:92:0e:89:7f:20:ad:87:cd:62:80:4e:3f:c7:c0:bf:9a:
86:04:05:b3:75:00:e4:d0:46:78:c8:0f:b9:4b:00:72:ca:28:
b4:3e:22:8b:46:61:d0:14:ce:5f:31:4c:a0:a2:ce:09:c7:a1:
b7:bd:20:a2:6b:69:c6:8a:2a:29:5f:4b:3d:be:f7:3d:9c:84:
3c:fe:19:56:13:9f:66:fb:34:69:b2:cd:23:2f:65:ee:02:e1:
be:1a:14:e2:73:31:dc:ec:dd:4d:1b:94:b0:36:cb:42:b0:4f:
5b:c1:88:05:58:36:47:46:ae:c8:b8:27:a2:84:71:70:8b:51:
42:5d:5c:7a:b3:7d:be:ca:ba:8c:3a:1c:dd:03:d7:6f:f1:4a:
8a:6d:54:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiSI37Jw97dZ0o3uibhcMbAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZDY1MjE2ODEyZWQyNGZkMWM3MTk4NzFhNTlhOTcxZGVj
MzBhMjYwHhcNMjUwODEwMDQwMDU2WhcNMjUwODExMDQwMDU2WjAzMTEwLwYDVQQD
EyhkYzE2Mzc2ZDlkZDZmYjhkMTU0OWYyMWJiNjA5OTY0ZmM3MTEyYWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6CoDzHYeeaXoDYvFNK2XMnrRfio
UoS7i6WGt3gcCQ/AnBGZ1CNtwaes3BCE0TzGWZgIC3hQrtgRZ6CAiZu8NjTsPyYw
IuXqA+tY3+p4kDw6Oa5G++M7At9uPgx7AHGuvdrBxaGM+kV88CbgUMAKldQLgfvm
5TJ9YenNU1pOJbOZF9wYP4K270ebzw3VXsqnKjeJLF04F/ImyGVQnv///KnY7tPa
0e1EyuR6ThYq1seXLc/agV2JuKMb3KnJ18PwExAtrDk9fbqB9u1QHhjUaLxYE+Sq
eKPV+lDVER7AujkcY4yGB0t4qzdbPQoo6/7/FQzPLXEWx9RlkOnWqGXE2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNwWN22d1vuNFUnyG7YJlk/HESqgMB8GA1UdIwQY
MBaAFDrWUhaBLtJP0ccZhxpZqXHewwomMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9iOGNhZTQtYjVhZi00MzgwLTk4MTct
NDY1MzhjYTUzODNjLzEvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9iOGNhZTQtYjVhZi00MzgwLTk4MTctNDY1MzhjYTUzODNj
LzEvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFJb6A5do
9l1UhgLNoS1WvVlmiMqzTPVtceq3aiM4cHvTI8nmB2mawhkZXMWd2Vg3+5K6PnV2
RgAUIuM4N44rM4B41YS2Y8YvbuUiSaDCMJOIivvHIIEmnw24sZd17WbBYHhE7oCX
P80URKqcxomSDol/IK2HzWKATj/HwL+ahgQFs3UA5NBGeMgPuUsAcsootD4ii0Zh
0BTOXzFMoKLOCceht70gomtpxooqKV9LPb73PZyEPP4ZVhOfZvs0abLNIy9l7gLh
vhoU4nMx3OzdTRuUsDbLQrBPW8GIBVg2R0auyLgnooRxcItRQl1cerN9vsq6jDoc
3QPXb/FKim1U9w==
-----END CERTIFICATE-----
Generated at Sun Aug 10 13:50:57 2025 by rpki-client