Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: Acv21p6AveWwwZbym5S3/ibH+2HW6nA3ygviYs+fRT4=
Subject key identifier: BF:AE:40:CC:A0:59:C0:66:57:10:CE:52:E8:90:33:2A:4D:74:E7:C7
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 019A4D73D33581CB5B283E872DD1ECC9C788
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 08C6
Signing time: Tue 04 Nov 2025 06:00:27 +0000
Manifest this update: Tue 04 Nov 2025 06:00:27 +0000
Manifest next update: Wed 05 Nov 2025 06:00:27 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: D2x90Hp-gN9ES-WMtaRxOkRU7zk.roa (hash: l/qjD5THnTNjpjg3s7YHV5e23ifKj7BiMe0FzY2nCgo=)
3: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: 58Jrpn9kZEZxT3yOMf/kBuWwTWcZXhnBKcsPyrMEGPE=)
4: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
5: hbNzX9sb-OFJ3CONrcdLuZ55uyU.roa (hash: NFMtgtynDHta0KlGWRazjZvBYm+8qkNagl80fkK/Tdk=)
6: y5t9VCG86iK6aUs1XnSlJL9WwkU.roa (hash: AeobAv5BcqpSnLadsMWLSvPDtqBRihCI6v5wMAmYfok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:d3:35:81:cb:5b:28:3e:87:2d:d1:ec:c9:c7:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Nov 4 06:00:27 2025 GMT
Not After : Nov 5 06:00:27 2025 GMT
Subject: CN=bfae40cca059c0665710ce52e890332a4d74e7c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:04:51:89:ed:20:e5:3d:f8:11:5a:cd:01:5b:
18:41:9d:47:3a:57:58:c3:ca:3d:7d:09:c7:29:eb:
c8:50:10:6b:eb:2e:3d:22:4f:12:b1:fd:4e:82:37:
f3:63:25:d2:ef:bf:2d:72:f4:51:08:6a:28:e6:16:
ce:39:88:2e:1f:16:86:49:79:5e:a9:2b:29:7f:ff:
0c:a5:31:bb:8c:4a:f3:1c:f5:45:51:06:2c:a7:f7:
db:af:5e:37:08:69:5b:3a:58:90:f9:32:16:75:dc:
5d:b5:cc:63:18:60:11:f2:df:99:fe:97:b6:22:fa:
b9:b5:36:0d:69:63:7b:10:3e:6e:af:10:b9:86:c2:
57:14:07:fc:93:7e:f7:25:e9:06:8e:2a:7b:63:85:
85:01:09:86:13:a5:2a:d0:af:e7:d5:2e:25:8e:1c:
e4:55:e8:cc:d4:2b:60:d3:b7:87:f3:73:3a:94:5b:
9e:ae:49:da:9e:e7:ef:00:ad:5b:e6:a3:86:63:c8:
c2:55:c1:ed:cf:a6:be:76:c6:6d:3a:9c:08:8f:af:
34:ed:b4:84:e2:32:a6:3b:0f:f3:aa:59:f8:3a:b8:
90:11:2c:7c:69:d4:8a:85:4f:b2:60:1a:c0:a1:35:
e9:0b:b8:a6:ea:40:fd:24:76:a8:5d:4c:93:a8:1c:
73:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AE:40:CC:A0:59:C0:66:57:10:CE:52:E8:90:33:2A:4D:74:E7:C7
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c4:ef:93:e5:01:cf:f9:8a:04:c3:2c:0e:86:9e:b2:3a:b3:
c3:3c:af:08:f8:da:ab:28:07:0f:25:64:c5:ee:18:ce:63:f2:
00:12:6a:69:17:8f:c8:7f:cd:d5:85:c5:d7:15:b9:55:3c:8e:
dc:dd:74:cd:0b:3c:27:42:56:46:95:eb:7d:07:1d:90:54:55:
e9:86:08:4b:4a:89:4e:f2:33:77:4f:75:e8:b0:aa:87:59:ee:
db:52:29:66:66:59:45:a4:5d:28:0c:4d:97:d0:8d:c9:21:45:
38:0a:91:ae:d4:70:68:80:10:d8:66:4a:41:6f:7e:15:35:71:
55:58:1b:21:ba:23:58:85:21:99:0c:3b:70:38:d5:3f:df:83:
5c:5d:b4:e5:a5:64:7e:a0:7b:77:38:b0:5c:4f:ea:bb:fa:19:
49:04:0e:19:b9:bf:26:df:4f:55:5a:6e:b0:14:dd:f1:18:a0:
18:be:c5:04:95:15:64:d8:30:1e:3a:6a:75:0b:8b:21:fa:9f:
62:24:d2:04:30:5c:da:30:3b:a5:fb:00:c2:74:ae:24:a8:3a:
e1:34:0e:31:3d:df:37:b9:39:80:42:d0:d0:5a:ec:74:87:23:
5b:e4:af:40:12:71:9e:d2:d9:b1:9c:90:74:3e:b9:06:23:24:
49:08:2c:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:25 2025 by rpki-client