Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
File: _OTzlnKb9HjmNlSYIfb2lw2JP1I.mft (raw, json)
Hash identifier: gs6gykH+dqlOQlPjq9DSbXkc0piyfOzI5/0Cl47cLMw=
Subject key identifier: 11:5C:82:B5:27:F0:99:4C:FE:DA:47:C7:5C:01:BA:61:1C:C4:F2:73
Authority key identifier: FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
Certificate issuer: /CN=fce4f396729bf478e636549821f6f6970d893f52
Certificate serial: 019A5075060E34C7B347FF0D11FDA93817DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 20:00:37 +0000
Manifest this update: Tue 04 Nov 2025 20:00:37 +0000
Manifest next update: Wed 05 Nov 2025 20:00:37 +0000
Files and hashes: 1: _OTzlnKb9HjmNlSYIfb2lw2JP1I.crl (hash: /ZdeefENGznOneoI7aUvglUsAq7JVRGe7GZsR2EuKyA=)
2: adNqeNQUFWI4IAHxy1r153UdECA.roa (hash: xLvUeb8ak+yii4A1TZl7dHrog2mgx9j4/AxydjM8K8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:75:06:0e:34:c7:b3:47:ff:0d:11:fd:a9:38:17:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce4f396729bf478e636549821f6f6970d893f52
Validity
Not Before: Nov 4 20:00:37 2025 GMT
Not After : Nov 5 20:00:37 2025 GMT
Subject: CN=115c82b527f0994cfeda47c75c01ba611cc4f273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6b:80:92:b4:56:7d:22:28:03:d8:34:94:7c:
68:27:dc:eb:89:f0:78:5a:0c:47:38:91:45:fe:98:
33:b9:f6:0d:db:81:1c:75:e6:f8:a7:64:84:37:9a:
fb:0c:40:4c:c6:58:a7:81:c6:21:e7:29:3e:5f:ca:
80:63:17:34:44:a2:be:1e:0e:3b:a8:51:6d:0d:9c:
21:f3:7d:6e:f6:8b:98:47:11:59:59:94:36:ea:28:
3a:2d:2d:b1:cc:b9:69:8b:05:45:e9:7d:4f:53:61:
74:0e:13:91:bf:0d:b6:46:32:e6:8e:5b:c1:fe:54:
9e:49:d9:69:91:f9:ec:c9:81:4d:27:2e:0e:be:86:
89:f8:18:4a:31:be:dd:3e:02:14:78:86:23:a8:e6:
95:d2:30:eb:c4:c9:a1:66:2e:ef:41:a0:6b:1d:29:
89:f6:c5:21:54:11:5d:03:a1:13:ba:15:31:e8:0c:
c3:4c:da:2e:71:76:eb:8f:b3:58:23:4f:03:7b:a7:
3a:66:f4:af:eb:0d:da:00:42:29:0f:d4:f4:cd:40:
73:72:4c:30:b1:7d:a5:db:2b:39:d9:aa:93:e3:b7:
5c:ad:67:34:f3:c1:35:ea:05:3b:a0:1b:8a:77:32:
f7:23:3a:ec:6d:7c:58:72:ce:98:7b:76:ff:c1:f1:
d3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5C:82:B5:27:F0:99:4C:FE:DA:47:C7:5C:01:BA:61:1C:C4:F2:73
X509v3 Authority Key Identifier:
keyid:FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:86:83:f1:ba:6a:2b:47:ca:fc:94:13:99:65:7e:6e:d6:e9:
fe:e7:7c:6c:93:c8:0f:be:f5:d5:a2:25:e9:c8:ca:7c:79:75:
03:be:1d:ea:18:88:61:20:2b:e4:78:04:96:65:77:2b:ca:42:
61:10:19:6c:f5:3b:c2:4c:33:26:9d:d9:73:bc:6f:fe:91:17:
ce:cf:01:85:b9:9e:33:74:87:30:38:02:66:67:34:5d:f1:c3:
6a:63:c7:2c:3e:d0:19:06:25:62:fa:ed:32:48:38:9a:84:f8:
aa:c9:ba:78:67:7f:62:5c:d2:f8:9b:08:58:9c:05:59:bc:54:
4b:ba:5a:22:c1:4b:c2:cb:e4:4d:92:00:0f:f5:71:55:01:7c:
f1:46:9c:0d:dc:ec:ef:ce:e3:49:4c:da:9d:28:c0:bb:25:47:
73:8c:e5:99:08:28:49:ab:7f:47:32:e5:97:22:3e:62:d4:5c:
a8:cd:38:69:94:34:58:3e:2f:30:a0:c2:56:28:42:9d:f7:fb:
82:c6:ae:4f:70:5a:05:fd:a0:c4:5a:68:af:fe:5a:b1:ae:b1:
46:f2:80:06:d3:f0:73:6a:2a:f4:93:cb:b8:3b:6d:3d:43:52:
a0:8b:ed:3b:7c:a8:d5:95:8d:28:ff:39:19:22:70:60:50:d9:
fb:00:c4:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQdQYONMezR/8NEf2pOBffMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjZTRmMzk2NzI5YmY0NzhlNjM2NTQ5ODIxZjZmNjk3MGQ4
OTNmNTIwHhcNMjUxMTA0MjAwMDM3WhcNMjUxMTA1MjAwMDM3WjAzMTEwLwYDVQQD
EygxMTVjODJiNTI3ZjA5OTRjZmVkYTQ3Yzc1YzAxYmE2MTFjYzRmMjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2uAkrRWfSIoA9g0lHxoJ9zrifB4
WgxHOJFF/pgzufYN24Ecdeb4p2SEN5r7DEBMxlingcYh5yk+X8qAYxc0RKK+Hg47
qFFtDZwh831u9ouYRxFZWZQ26ig6LS2xzLlpiwVF6X1PU2F0DhORvw22RjLmjlvB
/lSeSdlpkfnsyYFNJy4OvoaJ+BhKMb7dPgIUeIYjqOaV0jDrxMmhZi7vQaBrHSmJ
9sUhVBFdA6ETuhUx6AzDTNoucXbrj7NYI08De6c6ZvSv6w3aAEIpD9T0zUBzckww
sX2l2ys52aqT47dcrWc088E16gU7oBuKdzL3IzrsbXxYcs6Ye3b/wfHT1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBFcgrUn8JlM/tpHx1wBumEcxPJzMB8GA1UdIwQY
MBaAFPzk85Zym/R45jZUmCH29pcNiT9SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX09UemxuS2I5SGptTmxTWUlmYjJsdzJKUDFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8zNjI3NWUtNjc1OS00ZDUyLWIyZDEt
OGM3MGRlOWU5YjlkLzEvX09UemxuS2I5SGptTmxTWUlmYjJsdzJKUDFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My8zNjI3NWUtNjc1OS00ZDUyLWIyZDEtOGM3MGRlOWU5Yjlk
LzEvX09UemxuS2I5SGptTmxTWUlmYjJsdzJKUDFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZYaD8bpq
K0fK/JQTmWV+btbp/ud8bJPID7711aIl6cjKfHl1A74d6hiIYSAr5HgElmV3K8pC
YRAZbPU7wkwzJp3Zc7xv/pEXzs8BhbmeM3SHMDgCZmc0XfHDamPHLD7QGQYlYvrt
Mkg4moT4qsm6eGd/YlzS+JsIWJwFWbxUS7paIsFLwsvkTZIAD/VxVQF88UacDdzs
787jSUzanSjAuyVHc4zlmQgoSat/RzLllyI+YtRcqM04aZQ0WD4vMKDCVihCnff7
gsauT3BaBf2gxFpor/5asa6xRvKABtPwc2oq9JPLuDttPUNSoIvtO3yo1ZWNKP85
GSJwYFDZ+wDEEw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:52:15 2025 by rpki-client