Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
File: OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft (raw, json)
Hash identifier: Cl5DfAWoImHNIkb3Py04VndpW5J1Hz/tBPYW+Aq+qnY=
Subject key identifier: E5:F9:87:D6:DC:ED:13:F7:29:84:48:04:8D:F3:9B:63:66:69:1E:E6
Authority key identifier: 39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43
Certificate issuer: /CN=39348867dcb2956aca65d08348e440d4727a3743
Certificate serial: 01987306E3607F3867FEDD5FD225BDE0779D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
Manifest number: 03BA
Signing time: Mon 04 Aug 2025 03:01:27 +0000
Manifest this update: Mon 04 Aug 2025 03:01:27 +0000
Manifest next update: Tue 05 Aug 2025 03:01:27 +0000
Files and hashes: 1: OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl (hash: 9RlTcSQ447rCZIjgAsw8iiWCSTIix8as9DWCVRyhTD4=)
2: c6YXeFcziXYV8oA7IxxFWWIl7jo.roa (hash: 772kO8FIL8B9L379YEWTLwC21iJYKEhsMHuMIDdHwY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:e3:60:7f:38:67:fe:dd:5f:d2:25:bd:e0:77:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39348867dcb2956aca65d08348e440d4727a3743
Validity
Not Before: Aug 4 03:01:27 2025 GMT
Not After : Aug 5 03:01:27 2025 GMT
Subject: CN=e5f987d6dced13f7298448048df39b6366691ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e5:8a:7c:8c:d0:be:92:62:a1:74:e4:f2:d3:
80:71:76:54:d6:b8:e8:aa:c3:fb:28:df:e7:e4:22:
a6:a7:04:ef:c9:1a:e5:10:98:00:35:d2:84:8f:97:
ab:50:69:33:85:da:15:e6:2a:24:09:5c:e1:b6:23:
65:0b:6f:77:f2:5f:be:46:92:43:08:5d:18:2b:ed:
2a:11:75:37:7e:c9:bd:48:35:55:18:23:bb:71:68:
a4:12:d9:ff:94:72:73:74:fc:67:fc:f3:0e:da:77:
ef:79:3a:c5:d2:b2:b3:64:9b:f2:21:a7:d0:90:0b:
bf:f3:55:d1:1d:a5:80:1c:dd:9c:96:22:81:a4:eb:
68:a0:ec:7c:fb:84:cc:c0:3b:76:78:2f:d6:e4:b2:
d6:70:89:3b:d6:aa:45:ee:c6:f2:db:8d:52:4f:65:
30:15:78:b6:72:56:b2:fa:0f:00:3d:15:ce:ad:f1:
74:3f:64:f0:a5:45:0e:7b:db:e4:76:d7:61:4a:c5:
68:8c:3b:0b:ed:d3:99:f5:03:95:5f:75:cf:79:27:
28:9b:0b:8b:ae:e2:b1:4e:0b:fd:23:48:ae:a7:c7:
3d:48:f8:e5:07:ef:45:52:3d:bd:e3:33:3a:e7:de:
7c:34:5b:b0:be:36:04:82:57:86:83:78:74:ed:ed:
c0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F9:87:D6:DC:ED:13:F7:29:84:48:04:8D:F3:9B:63:66:69:1E:E6
X509v3 Authority Key Identifier:
keyid:39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:4a:60:55:30:e6:e8:be:ad:e4:95:bc:8c:3e:1f:c8:f9:e6:
bc:32:7e:58:63:c9:7d:59:ef:4e:73:b9:d6:a4:3f:e3:a6:11:
2e:da:b3:17:72:73:44:21:b0:89:f9:53:66:92:07:16:0d:1d:
ae:c7:eb:4a:75:27:ba:75:55:eb:5f:fc:30:e4:ce:bb:6d:6a:
fd:18:6c:7c:17:a0:38:99:a6:3b:c8:e8:ba:06:be:de:49:2c:
6e:c8:a4:b7:24:46:16:4a:84:a6:86:74:94:0e:4e:29:5f:14:
8b:d9:b7:e6:b4:46:69:b8:05:c9:83:7f:87:c9:eb:14:39:26:
05:13:d2:cb:a8:6b:ab:18:fb:16:b8:a4:42:8c:b5:de:a4:4a:
da:a9:85:1e:07:ba:15:63:16:83:ac:e6:ec:d3:a8:ec:0e:65:
03:09:ea:fa:5e:fe:f5:b8:f5:ed:95:15:89:16:bd:34:bb:28:
5a:fe:69:60:4a:46:9c:4e:f4:51:63:5f:94:18:1a:60:12:e6:
68:43:eb:1b:97:2e:07:3d:1f:3e:2f:81:d5:68:86:b0:c8:20:
d1:36:7d:57:a0:de:5b:f2:8e:d4:85:cf:d9:9e:b4:71:23:b6:
25:1a:5d:fc:f5:4e:d0:e3:59:ba:cf:31:1f:e4:cb:e5:2f:46:
e2:93:77:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzBuNgfzhn/t1f0iW94HedMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MzQ4ODY3ZGNiMjk1NmFjYTY1ZDA4MzQ4ZTQ0MGQ0NzI3
YTM3NDMwHhcNMjUwODA0MDMwMTI3WhcNMjUwODA1MDMwMTI3WjAzMTEwLwYDVQQD
EyhlNWY5ODdkNmRjZWQxM2Y3Mjk4NDQ4MDQ4ZGYzOWI2MzY2NjkxZWU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuWKfIzQvpJioXTk8tOAcXZU1rjo
qsP7KN/n5CKmpwTvyRrlEJgANdKEj5erUGkzhdoV5iokCVzhtiNlC2938l++RpJD
CF0YK+0qEXU3fsm9SDVVGCO7cWikEtn/lHJzdPxn/PMO2nfveTrF0rKzZJvyIafQ
kAu/81XRHaWAHN2cliKBpOtooOx8+4TMwDt2eC/W5LLWcIk71qpF7sby241ST2Uw
FXi2clay+g8APRXOrfF0P2TwpUUOe9vkdtdhSsVojDsL7dOZ9QOVX3XPeScomwuL
ruKxTgv9I0iup8c9SPjlB+9FUj294zM65958NFuwvjYEgleGg3h07e3AdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOX5h9bc7RP3KYRIBI3zm2NmaR7mMB8GA1UdIwQY
MBaAFDk0iGfcspVqymXQg0jkQNRyejdDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1RTSVo5eXlsV3JLWmRDRFNPUkExSEo2TjBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS8xZGZmZTEtYzhmZi00NjZiLTlkYzIt
YmZjNmY0OGU5NmFiLzEvT1RTSVo5eXlsV3JLWmRDRFNPUkExSEo2TjBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS8xZGZmZTEtYzhmZi00NjZiLTlkYzItYmZjNmY0OGU5NmFi
LzEvT1RTSVo5eXlsV3JLWmRDRFNPUkExSEo2TjBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaUpgVTDm
6L6t5JW8jD4fyPnmvDJ+WGPJfVnvTnO51qQ/46YRLtqzF3JzRCGwiflTZpIHFg0d
rsfrSnUnunVV61/8MOTOu21q/RhsfBegOJmmO8jouga+3kksbsiktyRGFkqEpoZ0
lA5OKV8Ui9m35rRGabgFyYN/h8nrFDkmBRPSy6hrqxj7FrikQoy13qRK2qmFHge6
FWMWg6zm7NOo7A5lAwnq+l7+9bj17ZUViRa9NLsoWv5pYEpGnE70UWNflBgaYBLm
aEPrG5cuBz0fPi+B1WiGsMgg0TZ9V6DeW/KO1IXP2Z60cSO2JRpd/PVO0ONZus8x
H+TL5S9G4pN3zw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:24 2025 by rpki-client