Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: QdWVxQOfvxg8i+EncHJPVFG1T1sk7XhY8ZfVxHkxbto=
Subject key identifier: 2E:08:27:97:05:3F:A5:47:1F:11:33:C4:5A:AE:7E:54:6C:F3:A0:90
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 01987AC00D42C064719A0469CA3F2B5094F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 07D3
Signing time: Tue 05 Aug 2025 15:01:03 +0000
Manifest this update: Tue 05 Aug 2025 15:01:03 +0000
Manifest next update: Wed 06 Aug 2025 15:01:03 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: 2DDfXUiH85YC1X3PgfdtyKVgjPw.roa (hash: IX38bNkkduAXN8SBzl133Uzin5uXQV9chMH9hhrcGco=)
3: 5O5OsM3NhBX9ufi05PLP13l29To.roa (hash: 3SSp0jqDRZlrWNGbYWPuIP2g5yvlTpjsrbIVea72fZ0=)
4: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: 8fiL1+IzSzOJN9ZU4PegR5/ejgxzFsAulnyfK0B1Vqw=)
5: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 15:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:c0:0d:42:c0:64:71:9a:04:69:ca:3f:2b:50:94:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Aug 5 15:01:03 2025 GMT
Not After : Aug 6 15:01:03 2025 GMT
Subject: CN=2e082797053fa5471f1133c45aae7e546cf3a090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3c:00:c6:08:01:d3:9e:92:9a:a8:51:7e:34:
bc:2c:5b:ea:9c:be:ef:ae:e7:38:74:4c:88:78:f6:
b9:e1:48:a3:16:ca:78:dc:09:c0:f6:68:53:dd:f6:
16:82:eb:b8:99:48:2a:2a:37:53:ab:76:5d:39:d1:
fa:ec:63:ac:e8:67:82:72:f7:6f:c5:7b:4e:eb:65:
ca:01:74:32:05:65:ab:81:a3:94:95:28:d3:7e:4d:
8c:d9:56:5b:eb:94:6d:58:49:88:a9:fe:1e:e7:e4:
1e:4a:65:0b:37:02:c4:b5:5f:3b:29:cf:ed:98:9a:
6c:bd:5d:10:31:6b:b7:0e:dc:08:77:64:47:32:00:
4d:09:2c:04:f1:1d:6d:b4:a6:b8:f4:21:12:c9:64:
e1:0c:d9:66:a5:f7:c3:1b:75:2f:4b:1a:0d:60:95:
cf:d9:4c:ea:45:55:c0:56:a2:61:93:0b:06:9f:16:
7f:d6:82:90:1c:39:55:57:cc:ac:cf:6e:63:95:e2:
f6:1e:62:98:f4:e9:37:11:81:ed:aa:6a:c0:cb:33:
38:9f:e0:43:da:1a:b7:31:8b:68:c1:e6:77:d9:c5:
ef:a8:f8:0f:28:d2:26:50:0b:11:96:d6:66:08:ef:
82:4c:61:47:a7:17:a4:49:b2:7e:ec:e5:2d:95:13:
b5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:08:27:97:05:3F:A5:47:1F:11:33:C4:5A:AE:7E:54:6C:F3:A0:90
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:87:28:f7:d1:51:fc:91:22:60:f6:63:ef:cc:67:bd:fa:45:
cf:da:9a:11:32:45:d5:a1:38:e3:a7:f7:38:c3:4a:3a:27:04:
b2:9b:61:f3:ce:11:ed:38:a1:36:25:35:5a:f8:6c:1a:16:52:
55:e4:f7:5b:ed:2d:79:97:13:58:65:00:39:d6:81:10:52:4b:
59:6b:88:58:4e:80:85:a3:c0:8d:c0:04:51:9e:e2:30:06:a1:
7e:98:d6:ed:9a:d8:4d:43:e5:52:2d:5c:c2:7f:82:88:b2:98:
33:de:28:e5:54:ee:a4:7a:65:fa:80:1d:fb:ae:71:0d:a8:be:
fb:55:c0:4f:25:48:7f:25:ff:7c:8e:9c:cc:5a:da:b9:4c:9f:
32:5b:c4:77:21:8d:24:c4:5d:e4:b8:e3:0d:17:21:32:19:46:
e9:ff:60:48:7b:64:9e:7f:eb:63:6a:13:29:5f:47:b3:a9:2e:
4a:bc:98:7a:82:d5:59:64:e1:38:7f:81:4c:9a:30:61:2b:bd:
48:92:9a:9d:1e:8a:cd:b4:ae:73:4a:bd:6f:fa:59:43:8a:39:
1b:6e:c4:25:83:c4:cb:e1:11:fe:8b:c6:6d:56:02:e1:de:65:
f4:cb:e2:0a:93:f8:82:43:f1:3d:eb:25:42:5f:ed:4a:9d:6b:
62:c1:ae:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:48:24 2025 by rpki-client