Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: wZqyPHSLJBTHgzzy1g7HEGYoxen0srd7lPLus7CXSsE=
Subject key identifier: DB:C7:2D:A8:92:8C:F9:70:77:65:24:3E:A3:AF:C0:15:A4:02:D2:AC
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 019A4F628A01560447132C1456E0F415C05C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 1160
Signing time: Tue 04 Nov 2025 15:00:48 +0000
Manifest this update: Tue 04 Nov 2025 15:00:48 +0000
Manifest next update: Wed 05 Nov 2025 15:00:48 +0000
Files and hashes: 1: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: 7s9kI1yPMe1MMtVSlVcmJYeEFknAptQeQJClvfXXXpI=)
2: SyALsZDSYtge1NmYRoKzwbP5Vv8.roa (hash: rjh76rxbo7HoAknp3g/P2hhQiBIAvMqHmifN8tVtg/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:8a:01:56:04:47:13:2c:14:56:e0:f4:15:c0:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Nov 4 15:00:48 2025 GMT
Not After : Nov 5 15:00:48 2025 GMT
Subject: CN=dbc72da8928cf9707765243ea3afc015a402d2ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:33:13:ce:fa:08:5c:d4:ac:53:79:38:f0:4c:
86:0b:be:f0:61:8a:6e:c1:97:2c:9c:65:15:8c:7e:
11:aa:4a:14:ec:f4:41:74:6f:8a:8d:cc:15:14:20:
40:00:07:6e:14:85:0b:b2:9c:8c:23:f5:1f:ff:e7:
72:c4:35:f4:fe:90:ee:58:fb:52:d9:e0:14:a7:41:
17:0d:d2:08:97:fa:4f:63:e8:8c:91:5d:4b:bb:9f:
77:5b:d6:7d:0b:c1:84:c7:6e:68:1a:2f:66:16:a1:
c5:3d:cf:d7:03:0c:00:58:20:d6:bd:93:57:96:8f:
00:43:a1:2f:cd:bb:53:4a:5d:bb:e6:98:de:04:c2:
fd:fb:e0:3d:bc:8e:80:93:cf:92:86:24:1e:e4:06:
a6:91:1e:65:bf:62:0f:e7:52:c9:ff:8d:6b:dc:c5:
a5:0d:cf:ea:d3:5b:82:e0:bb:61:a6:d0:92:8d:79:
9a:4d:20:f4:66:84:be:4b:b3:cf:15:62:c7:96:c7:
67:66:5a:86:84:69:08:71:d0:84:d4:2b:c3:d4:b8:
b2:72:a9:90:54:6e:37:84:69:61:66:57:10:39:37:
6c:f0:6d:b8:1b:46:b8:eb:50:25:7a:06:b9:29:c7:
2d:ee:01:60:42:a6:c5:fe:a8:3d:63:17:ff:6d:d1:
10:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C7:2D:A8:92:8C:F9:70:77:65:24:3E:A3:AF:C0:15:A4:02:D2:AC
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:60:45:8d:37:d6:07:ac:5e:b0:69:5e:a7:98:32:b4:30:70:
5a:36:ec:1d:3e:67:24:19:c1:97:b0:df:05:ef:48:60:e5:95:
0d:ec:67:4a:5c:8e:c7:30:88:f6:c4:ac:1f:c0:40:4e:97:22:
e9:d9:46:0d:cc:95:5b:98:76:63:09:e7:d9:77:25:b1:e5:cc:
54:06:18:ee:7d:ab:b2:9f:5d:d8:5d:92:1f:95:aa:9e:64:a6:
9f:72:97:d5:62:5a:68:24:94:a0:5a:f3:56:32:60:5e:f0:19:
66:e5:14:95:76:5c:16:ab:7e:f1:a4:d6:24:2c:5f:ac:dc:0e:
b7:68:f1:59:d2:be:46:f7:19:be:80:f3:b3:0e:1a:43:9d:7c:
25:dd:87:c2:bc:9d:b1:f8:01:37:15:b0:73:18:95:34:46:bb:
6a:c3:92:d1:ce:9d:7b:f3:08:f1:1d:4e:8d:22:b3:93:fb:54:
aa:39:10:55:c3:c2:da:2a:aa:aa:90:d2:4e:83:7d:b8:f7:80:
a9:ee:a2:94:43:4e:b7:d4:f5:2b:cd:69:0f:11:39:e3:f2:32:
9f:99:74:88:0e:47:3c:a0:fe:d8:24:ee:ca:21:e6:c3:68:b3:
68:ca:4c:0b:2e:34:0a:c4:34:2c:90:41:00:07:64:94:20:95:
3e:c7:58:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:28:09 2025 by rpki-client