Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
File: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft (raw, json)
Hash identifier: NYidLBOTlTbQ/UzgA3upEZN+YZgPdcj2IvOLk0A8ewM=
Subject key identifier: 94:C4:00:02:F2:28:BE:E8:C8:1F:EC:1D:0B:86:82:A9:2E:D3:D3:9A
Authority key identifier: 3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
Certificate issuer: /CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Certificate serial: 01987CAE5D2C49FFE0A61520BC36F5D46DBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
Manifest number: 161B
Signing time: Wed 06 Aug 2025 00:00:58 +0000
Manifest this update: Wed 06 Aug 2025 00:00:58 +0000
Manifest next update: Thu 07 Aug 2025 00:00:58 +0000
Files and hashes: 1: MChEll1heVmbFidBBJvsHOrl4fE.roa (hash: ARoQGxRNkrRdwVI3hmAp61vYLz+zRk9Xivm5xOWKmgg=)
2: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl (hash: mODph1r72azEX2JyvKppvE5LcdNeq/AU4XbTUuE8YfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:ae:5d:2c:49:ff:e0:a6:15:20:bc:36:f5:d4:6d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Validity
Not Before: Aug 6 00:00:58 2025 GMT
Not After : Aug 7 00:00:58 2025 GMT
Subject: CN=94c40002f228bee8c81fec1d0b8682a92ed3d39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:90:26:81:83:d0:d4:12:8a:15:66:4b:d8:8f:
54:e4:88:d5:82:68:1c:8a:e4:22:aa:31:52:8d:67:
91:13:08:d2:38:b9:9e:a9:a6:7d:88:6e:5e:9a:af:
c0:23:37:fe:f8:c2:69:c2:91:1b:56:fe:fa:3b:21:
33:1c:cb:2e:5b:eb:6a:29:2d:d3:58:b5:20:d2:43:
de:47:d2:96:51:0b:e0:f7:c5:a9:d9:42:27:cb:c6:
85:42:96:80:d9:ac:32:07:cf:13:f2:57:4b:66:65:
3d:5c:88:7d:15:6b:7f:17:1b:94:dc:a7:0d:4b:07:
cb:51:e3:01:c1:22:b4:a6:ef:22:3f:68:32:c9:8f:
b7:f4:6b:92:25:6c:a6:ec:12:22:32:30:e4:da:70:
56:3f:28:ff:fb:dd:c3:ae:fa:2c:a0:e7:e6:6f:b4:
4e:d8:7a:39:43:b5:f0:d0:e0:b6:13:01:e6:17:ce:
81:5b:87:69:91:cc:71:b1:fc:5c:ce:12:bd:03:6f:
76:8c:17:bc:f9:14:05:41:da:55:95:9e:70:85:0f:
ee:18:d3:81:6d:ba:e0:42:2f:a6:d7:63:57:be:fc:
ed:d3:c7:6a:e2:32:43:1b:92:cd:df:6d:ba:6c:90:
29:00:d4:d0:31:ac:12:f3:a8:f2:bc:12:ee:e8:2d:
1a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C4:00:02:F2:28:BE:E8:C8:1F:EC:1D:0B:86:82:A9:2E:D3:D3:9A
X509v3 Authority Key Identifier:
keyid:3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:7b:27:49:4a:ec:fb:88:52:00:6e:ce:ff:bc:6b:fe:de:24:
4e:16:ed:eb:f9:cd:de:5c:f9:e8:ca:76:20:07:ba:8e:4f:d7:
1e:b6:f0:9b:29:d5:af:c2:d7:8b:fc:e4:4a:f6:0d:f9:9f:20:
f4:06:68:19:6f:71:e3:38:a7:cb:27:bb:3a:b8:9a:9c:f6:c8:
65:3d:79:66:06:eb:01:b7:a4:44:53:ce:02:4b:cb:ab:f3:49:
e9:b2:89:e0:2b:33:41:33:99:a6:ad:3a:90:c9:7e:2d:37:10:
9a:09:c4:52:1b:0a:db:5a:53:49:aa:13:7c:5c:3d:fa:bb:71:
77:87:63:89:24:ce:1f:81:65:71:10:46:3f:8c:fb:da:e7:01:
7e:79:bb:cb:52:d8:e7:21:7c:8e:41:24:5c:c6:30:d0:47:4a:
14:4c:60:88:58:a9:55:7b:2d:c6:83:3b:18:72:45:76:12:30:
83:1c:71:7f:50:cc:e7:42:50:22:bd:a6:b5:3e:e9:69:02:2b:
d0:54:20:fc:a7:a5:4e:2e:d5:59:87:65:79:91:42:e3:c4:f8:
75:79:69:59:89:d1:74:ae:78:d4:21:28:7d:62:12:cc:c2:31:
e1:11:a1:2c:df:a0:26:39:86:a7:89:89:1c:ee:3b:0f:9c:9d:
ea:c6:c1:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh8rl0sSf/gphUgvDb11G2/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZDc3ZmU2OGZhOWRhYjY0NGZkMGEzZGZiM2EwMjU2NmE4
MDk1OTAwHhcNMjUwODA2MDAwMDU4WhcNMjUwODA3MDAwMDU4WjAzMTEwLwYDVQQD
Eyg5NGM0MDAwMmYyMjhiZWU4YzgxZmVjMWQwYjg2ODJhOTJlZDNkMzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZAmgYPQ1BKKFWZL2I9U5IjVgmgc
iuQiqjFSjWeREwjSOLmeqaZ9iG5emq/AIzf++MJpwpEbVv76OyEzHMsuW+tqKS3T
WLUg0kPeR9KWUQvg98Wp2UIny8aFQpaA2awyB88T8ldLZmU9XIh9FWt/FxuU3KcN
SwfLUeMBwSK0pu8iP2gyyY+39GuSJWym7BIiMjDk2nBWPyj/+93DrvosoOfmb7RO
2Ho5Q7Xw0OC2EwHmF86BW4dpkcxxsfxczhK9A292jBe8+RQFQdpVlZ5whQ/uGNOB
bbrgQi+m12NXvvzt08dq4jJDG5LN3226bJApANTQMawS86jyvBLu6C0a0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJTEAALyKL7oyB/sHQuGgqku09OaMB8GA1UdIwQY
MBaAFDrXf+aPqdq2RP0KPfs6AlZqgJWQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3RkXzVvLXAyclpFX1FvOS16b0NWbXFBbFpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8xMzc0YzAtNGJkNC00MTU2LWE3N2Yt
NjUzYTcwYmYwOTI1LzEvT3RkXzVvLXAyclpFX1FvOS16b0NWbXFBbFpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8xMzc0YzAtNGJkNC00MTU2LWE3N2YtNjUzYTcwYmYwOTI1
LzEvT3RkXzVvLXAyclpFX1FvOS16b0NWbXFBbFpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnHsnSUrs
+4hSAG7O/7xr/t4kThbt6/nN3lz56Mp2IAe6jk/XHrbwmynVr8LXi/zkSvYN+Z8g
9AZoGW9x4zinyye7OrianPbIZT15ZgbrAbekRFPOAkvLq/NJ6bKJ4CszQTOZpq06
kMl+LTcQmgnEUhsK21pTSaoTfFw9+rtxd4djiSTOH4FlcRBGP4z72ucBfnm7y1LY
5yF8jkEkXMYw0EdKFExgiFipVXstxoM7GHJFdhIwgxxxf1DM50JQIr2mtT7paQIr
0FQg/KelTi7VWYdleZFC48T4dXlpWYnRdK541CEofWISzMIx4RGhLN+gJjmGp4mJ
HO47D5yd6sbBAQ==
-----END CERTIFICATE-----
Generated at Wed Aug 6 10:16:56 2025 by rpki-client