Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
File: otP5vJZWutwm594auw-nLD1yjdg.mft (raw, json)
Hash identifier: CqJqh3F33oV4xVUQ5Om6RtpUKPHDFTjZD00E+RLuTdQ=
Subject key identifier: B4:1F:8E:1E:73:4E:9D:A3:0B:6C:3C:33:C9:D0:5A:6F:82:B1:42:8D
Authority key identifier: A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
Certificate issuer: /CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Certificate serial: 0198A0BACDF4A6AB1D15C481A8364A8AF98C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
Manifest number: 0293
Signing time: Wed 13 Aug 2025 00:00:53 +0000
Manifest this update: Wed 13 Aug 2025 00:00:53 +0000
Manifest next update: Thu 14 Aug 2025 00:00:53 +0000
Files and hashes: 1: otP5vJZWutwm594auw-nLD1yjdg.crl (hash: Ah7o6bm6nQwmWF31HWurKMPcwBmoP6jUc69mvzkHeHY=)
2: yntKueGdh_gRYfTjbFRGz4s6BD8.roa (hash: 8wVmYZSgIm0dCsPvd2oqoO7MS+FukiT5t5Ke1EaX2FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:ba:cd:f4:a6:ab:1d:15:c4:81:a8:36:4a:8a:f9:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Validity
Not Before: Aug 13 00:00:53 2025 GMT
Not After : Aug 14 00:00:53 2025 GMT
Subject: CN=b41f8e1e734e9da30b6c3c33c9d05a6f82b1428d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:88:82:cd:f4:93:2a:58:89:83:9e:ba:d0:7b:
13:df:1f:b0:28:f2:90:0c:4f:42:92:c2:e3:c6:d1:
6b:8a:c2:b3:e0:f3:0b:f1:58:7f:17:72:83:4e:c7:
fe:5c:dc:a8:34:dd:67:a7:e2:e9:3e:ea:39:7a:6f:
f2:85:fb:7a:e8:9a:88:67:87:db:bb:9f:a7:e8:ef:
c7:c5:1e:58:08:b9:5d:24:be:ea:aa:e8:8f:bd:d8:
a7:71:20:09:16:d8:33:94:8f:16:cc:75:4d:19:e6:
54:a4:bd:dd:2b:3a:12:d3:07:63:45:43:23:35:c5:
1f:ff:47:8e:30:fa:e7:e9:e1:f7:8b:de:68:f9:1d:
49:8a:f3:c6:52:87:42:d3:c9:f8:d6:e5:79:8c:f0:
d9:1b:c0:eb:b0:65:7b:6a:cf:7f:3b:49:89:70:7b:
3d:f3:39:a1:d3:d3:2c:7d:8f:48:65:8d:e0:73:50:
2d:99:4e:10:e7:69:28:de:67:62:20:d9:63:43:28:
f3:ec:29:e9:e1:79:98:d4:88:86:89:c1:d1:12:ac:
3b:4a:ed:e6:89:41:3b:fc:22:a6:66:3b:a1:72:53:
57:d9:fa:01:eb:a7:d6:1d:45:ab:f0:2d:13:11:10:
f8:1c:7d:80:d8:f4:12:75:d6:e0:1e:b8:be:6a:e2:
3c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:1F:8E:1E:73:4E:9D:A3:0B:6C:3C:33:C9:D0:5A:6F:82:B1:42:8D
X509v3 Authority Key Identifier:
keyid:A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:f8:0e:c3:ac:1b:01:aa:67:f4:2e:6a:c4:bf:eb:27:f4:3e:
b7:b5:27:8a:71:98:ea:3a:49:99:48:5a:98:34:56:17:12:16:
71:a7:95:a6:0b:bd:9c:49:43:1e:15:8d:2a:9c:db:62:3d:fb:
aa:e9:20:5a:40:09:7b:8a:68:8d:ce:4f:39:a8:43:d6:cb:2f:
b9:ff:b8:88:b8:fa:8e:f4:b6:47:cc:4b:d1:fe:da:7f:0e:ef:
03:1f:9c:2f:13:28:b5:8a:cb:54:84:34:07:44:70:aa:06:4e:
c3:75:86:34:b3:43:60:80:6f:76:12:1b:9d:92:82:7d:54:77:
d0:ea:fc:7f:6d:51:38:fc:d8:1e:1b:c6:12:f5:54:91:48:f6:
ae:fa:a8:63:db:00:54:dc:f4:1d:2c:26:18:64:b7:d8:ac:a7:
b8:5d:f3:22:83:94:d2:1d:32:d3:56:de:76:f5:7b:b7:17:2d:
75:32:1e:24:cf:8e:91:79:4d:47:6e:1b:9f:91:b3:00:f1:6a:
95:20:b2:3a:c7:e0:77:28:7a:4e:a3:e3:a3:68:76:72:19:67:
c0:89:6a:c1:42:79:35:00:2a:a0:78:32:98:15:65:de:c1:54:
34:5a:83:61:13:3b:02:08:f0:e6:7e:f5:f8:48:b6:ef:82:50:
5e:8f:5c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 04:24:00 2025 by rpki-client