Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
File: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft (raw, json)
Hash identifier: epyG7IH7G7Cr/rotZ7D5b+bjxZfyhKHATvIw+zpv2Ug=
Subject key identifier: 2E:6F:E6:D8:3E:F6:36:5E:B1:97:DA:51:FD:24:AA:4E:2F:56:B6:C4
Authority key identifier: 3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
Certificate issuer: /CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Certificate serial: 019A4E191ED7AD1A635DB850EAF247DEC387
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 09:01:00 +0000
Manifest this update: Tue 04 Nov 2025 09:01:00 +0000
Manifest next update: Wed 05 Nov 2025 09:01:00 +0000
Files and hashes: 1: MChEll1heVmbFidBBJvsHOrl4fE.roa (hash: ARoQGxRNkrRdwVI3hmAp61vYLz+zRk9Xivm5xOWKmgg=)
2: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl (hash: MW5tg/YBwF5HqEAHZUGzgE7FSx8GXZpB+7lZk+Xm0is=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:1e:d7:ad:1a:63:5d:b8:50:ea:f2:47:de:c3:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Validity
Not Before: Nov 4 09:01:00 2025 GMT
Not After : Nov 5 09:01:00 2025 GMT
Subject: CN=2e6fe6d83ef6365eb197da51fd24aa4e2f56b6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cc:69:2f:70:1d:10:9a:d8:1b:ca:6d:b1:86:
1f:ad:77:96:85:2f:89:0d:1a:ef:18:9b:38:ac:69:
3a:51:ed:8c:bc:fd:08:c6:08:38:f8:34:17:7e:aa:
37:53:fc:fc:0c:81:38:0f:ce:f6:a5:25:e0:e3:18:
be:3b:11:0d:1c:bc:e3:d7:b2:21:f5:a6:97:ff:1d:
ae:a7:08:6b:36:9d:a7:7a:9e:f7:ff:3d:3c:a1:5c:
6c:2f:07:6a:40:c2:45:b7:51:93:ea:79:20:b9:d9:
5c:fb:d6:e6:55:31:5b:e9:d6:5f:26:44:d6:dc:75:
51:1d:b0:46:4a:b1:f1:b3:aa:6e:0c:06:25:29:c5:
0f:c0:80:32:3f:0c:a7:e4:85:cd:fb:3c:62:53:af:
a5:e0:95:1f:35:1f:d9:0e:83:c9:94:35:a1:cd:56:
fe:f6:d4:7f:4c:62:5c:27:25:27:6d:3a:c5:11:92:
ad:75:6b:59:12:8f:fc:d5:ea:fe:5c:de:12:c7:bb:
a3:ac:e5:d5:a3:da:1c:63:8b:02:e1:fe:b4:37:fe:
0b:6f:70:ea:23:40:dc:6d:64:64:34:52:62:37:9a:
e8:76:c8:fc:87:96:c3:db:17:67:4c:be:17:b2:92:
24:14:06:bc:d0:ac:e9:57:ce:9a:b1:aa:23:e3:d4:
56:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6F:E6:D8:3E:F6:36:5E:B1:97:DA:51:FD:24:AA:4E:2F:56:B6:C4
X509v3 Authority Key Identifier:
keyid:3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:88:75:ab:fb:30:d3:0a:eb:88:3a:80:c8:38:a3:f2:c2:ec:
7e:e8:2f:ee:88:3e:95:87:87:87:5b:af:25:9d:2b:21:b8:38:
2a:25:57:d7:9f:f5:94:00:37:56:0a:d0:f9:fd:13:46:80:c5:
00:a7:fb:ee:3c:43:a3:c6:41:38:81:ee:d2:d2:da:8a:4d:31:
cd:00:00:bd:91:21:bc:7e:f1:57:10:4b:b8:e1:50:27:01:2b:
2f:18:57:9d:e3:60:29:72:06:76:19:79:f7:95:75:37:f0:07:
e0:df:11:72:30:ce:58:b9:f3:54:62:22:31:9c:33:28:e0:bd:
1e:ad:ac:4a:64:b5:fa:1c:ea:fc:2c:a3:3c:03:95:62:2b:25:
ef:d1:20:6c:94:07:72:7d:12:d7:16:14:c3:8e:b7:fd:2b:23:
fc:c0:e6:05:21:a1:17:73:97:e6:85:1c:55:7b:c1:f1:40:2d:
c3:3a:df:4d:e7:22:77:5c:de:d3:0a:f6:7a:4f:4a:c3:9d:19:
af:2f:4d:2a:05:44:fc:13:ab:37:11:1e:fd:4f:98:72:68:fe:
c7:6a:b8:18:55:f0:29:6d:b8:8f:d4:36:24:86:a0:69:3f:4d:
e4:e0:0d:5d:d6:79:7c:bf:6e:b9:f9:dc:ab:c7:af:0b:89:1c:
73:4d:9f:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOGR7XrRpjXbhQ6vJH3sOHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZDc3ZmU2OGZhOWRhYjY0NGZkMGEzZGZiM2EwMjU2NmE4
MDk1OTAwHhcNMjUxMTA0MDkwMTAwWhcNMjUxMTA1MDkwMTAwWjAzMTEwLwYDVQQD
EygyZTZmZTZkODNlZjYzNjVlYjE5N2RhNTFmZDI0YWE0ZTJmNTZiNmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsxpL3AdEJrYG8ptsYYfrXeWhS+J
DRrvGJs4rGk6Ue2MvP0Ixgg4+DQXfqo3U/z8DIE4D872pSXg4xi+OxENHLzj17Ih
9aaX/x2upwhrNp2nep73/z08oVxsLwdqQMJFt1GT6nkgudlc+9bmVTFb6dZfJkTW
3HVRHbBGSrHxs6puDAYlKcUPwIAyPwyn5IXN+zxiU6+l4JUfNR/ZDoPJlDWhzVb+
9tR/TGJcJyUnbTrFEZKtdWtZEo/81er+XN4Sx7ujrOXVo9ocY4sC4f60N/4Lb3Dq
I0DcbWRkNFJiN5rodsj8h5bD2xdnTL4XspIkFAa80KzpV86asaoj49RWdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC5v5tg+9jZesZfaUf0kqk4vVrbEMB8GA1UdIwQY
MBaAFDrXf+aPqdq2RP0KPfs6AlZqgJWQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3RkXzVvLXAyclpFX1FvOS16b0NWbXFBbFpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8xMzc0YzAtNGJkNC00MTU2LWE3N2Yt
NjUzYTcwYmYwOTI1LzEvT3RkXzVvLXAyclpFX1FvOS16b0NWbXFBbFpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8xMzc0YzAtNGJkNC00MTU2LWE3N2YtNjUzYTcwYmYwOTI1
LzEvT3RkXzVvLXAyclpFX1FvOS16b0NWbXFBbFpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU4h1q/sw
0wrriDqAyDij8sLsfugv7og+lYeHh1uvJZ0rIbg4KiVX15/1lAA3VgrQ+f0TRoDF
AKf77jxDo8ZBOIHu0tLaik0xzQAAvZEhvH7xVxBLuOFQJwErLxhXneNgKXIGdhl5
95V1N/AH4N8RcjDOWLnzVGIiMZwzKOC9Hq2sSmS1+hzq/CyjPAOVYisl79EgbJQH
cn0S1xYUw463/Ssj/MDmBSGhF3OX5oUcVXvB8UAtwzrfTecid1ze0wr2ek9Kw50Z
ry9NKgVE/BOrNxEe/U+Ycmj+x2q4GFXwKW24j9Q2JIagaT9N5OANXdZ5fL9uufnc
q8evC4kcc02fow==
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:52:40 2025 by rpki-client