Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: GCdtP2ii8+xKTP7j+YqW6fImcyYDlVW+ZEsPuq1+hqs=
Subject key identifier: 23:0B:E2:5E:A0:91:76:D4:E4:90:CD:2E:09:00:E8:5B:89:2E:C7:C8
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 0198D6CD159277DBC4D1B1604BA9E1FB712D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 109D
Signing time: Sat 23 Aug 2025 12:00:21 +0000
Manifest this update: Sat 23 Aug 2025 12:00:21 +0000
Manifest next update: Sun 24 Aug 2025 12:00:21 +0000
Files and hashes: 1: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: +dOlqCpQjKaPlQ0GBoM49dg8cxn9TdpheWdZKrY1JtI=)
2: SyALsZDSYtge1NmYRoKzwbP5Vv8.roa (hash: rjh76rxbo7HoAknp3g/P2hhQiBIAvMqHmifN8tVtg/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:15:92:77:db:c4:d1:b1:60:4b:a9:e1:fb:71:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Aug 23 12:00:21 2025 GMT
Not After : Aug 24 12:00:21 2025 GMT
Subject: CN=230be25ea09176d4e490cd2e0900e85b892ec7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:10:2a:85:eb:09:5e:00:a9:cf:b1:99:40:3a:
21:84:8b:aa:7d:5d:64:e9:e4:e0:25:fd:dd:5d:b8:
73:ed:65:d7:85:08:1e:51:27:1f:c0:5a:f9:c6:13:
ba:e4:a4:4b:b0:56:80:8d:2e:7a:44:ef:7f:4d:56:
05:ea:32:f9:15:02:22:d5:6f:44:7e:57:42:ac:f7:
1b:e3:19:53:2e:b2:72:73:3e:10:e6:ad:e5:50:08:
59:a7:fb:27:a5:de:75:fc:a1:5e:b7:6a:50:06:63:
ec:15:ff:91:11:5a:c7:4c:19:7d:48:e3:37:f1:f6:
04:6c:aa:37:85:5d:60:27:6d:82:30:8c:09:ca:24:
fa:48:ea:fd:35:a4:ad:72:84:dc:2f:93:ff:a4:6a:
d6:bf:71:d5:a2:f6:3f:f7:2c:4b:0e:d1:da:3b:11:
0b:a1:12:58:b5:48:eb:ee:3c:d8:08:b4:11:b0:59:
f7:8e:1e:bc:f3:f6:80:dd:9d:70:b6:ed:c0:6e:91:
21:5b:7c:e1:cb:ac:4b:46:fe:a9:87:10:39:d9:7a:
b9:fc:4c:88:3b:d5:16:0a:1b:48:66:bc:64:63:c8:
2c:50:ab:7e:59:8c:60:1b:2c:46:07:8e:36:18:ad:
52:e1:04:4e:07:b9:84:46:d1:9f:ad:3a:e3:d2:5d:
a2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:0B:E2:5E:A0:91:76:D4:E4:90:CD:2E:09:00:E8:5B:89:2E:C7:C8
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:d4:32:74:b7:c2:f4:e4:9f:67:6e:8d:fd:c9:0f:15:f6:13:
4d:d2:86:ca:2c:c1:3b:ef:94:68:3b:bf:2f:68:5b:f7:fa:5d:
6c:b6:71:ac:7f:58:5f:b4:20:20:7b:57:d8:6f:87:c3:b7:6e:
ce:96:27:64:67:94:94:6c:84:48:51:2d:69:5f:c9:ff:71:ab:
d1:25:bd:93:5f:2e:25:11:9e:8f:71:bb:82:7c:51:83:44:10:
24:3d:dc:39:55:d2:cb:bf:e3:0e:9a:99:d8:d0:2f:58:6b:69:
d1:ba:c4:8e:c2:3f:cd:09:e2:76:49:f3:08:9a:d8:e5:19:f4:
cd:c4:ff:ad:54:b0:d4:6d:69:8b:6c:89:59:4c:64:63:d6:08:
37:c0:7d:90:2c:b8:b3:fe:a2:53:b3:dd:47:25:91:f2:ed:fc:
15:39:5f:61:85:50:b6:4d:cb:bd:89:cc:0b:fa:54:3e:8a:1f:
5e:1c:43:58:31:8f:cf:99:99:34:4c:da:41:35:a7:b5:aa:79:
e1:30:6c:41:3b:75:bd:56:9a:d3:cb:da:e7:21:f0:72:12:59:
fb:ef:9d:23:bc:e7:f8:9d:21:82:f1:b2:0f:2f:20:dc:75:31:
ec:e7:e6:c4:da:3f:97:e0:20:9e:17:0b:e3:24:76:97:99:dc:
36:49:6e:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzRWSd9vE0bFgS6nh+3EtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MzhhODFhNDQxMjc3NDFkOTQ5YTM1NWE0N2YzY2I1OTkz
ODlhNzgwHhcNMjUwODIzMTIwMDIxWhcNMjUwODI0MTIwMDIxWjAzMTEwLwYDVQQD
EygyMzBiZTI1ZWEwOTE3NmQ0ZTQ5MGNkMmUwOTAwZTg1Yjg5MmVjN2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhAqhesJXgCpz7GZQDohhIuqfV1k
6eTgJf3dXbhz7WXXhQgeUScfwFr5xhO65KRLsFaAjS56RO9/TVYF6jL5FQIi1W9E
fldCrPcb4xlTLrJycz4Q5q3lUAhZp/snpd51/KFet2pQBmPsFf+REVrHTBl9SOM3
8fYEbKo3hV1gJ22CMIwJyiT6SOr9NaStcoTcL5P/pGrWv3HVovY/9yxLDtHaOxEL
oRJYtUjr7jzYCLQRsFn3jh688/aA3Z1wtu3AbpEhW3zhy6xLRv6phxA52Xq5/EyI
O9UWChtIZrxkY8gsUKt+WYxgGyxGB442GK1S4QROB7mERtGfrTrj0l2i0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCML4l6gkXbU5JDNLgkA6FuJLsfIMB8GA1UdIwQY
MBaAFDk4qBpEEndB2UmjVaR/PLWZOJp4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1Rpb0drUVNkMEhaU2FOVnBIODh0Wms0bW5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wMmNhYjUtNTliNC00ZDkwLWE1ZGIt
ZmQyMTRjYWNmYjYyLzEvT1Rpb0drUVNkMEhaU2FOVnBIODh0Wms0bW5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wMmNhYjUtNTliNC00ZDkwLWE1ZGItZmQyMTRjYWNmYjYy
LzEvT1Rpb0drUVNkMEhaU2FOVnBIODh0Wms0bW5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhNQydLfC
9OSfZ26N/ckPFfYTTdKGyizBO++UaDu/L2hb9/pdbLZxrH9YX7QgIHtX2G+Hw7du
zpYnZGeUlGyESFEtaV/J/3Gr0SW9k18uJRGej3G7gnxRg0QQJD3cOVXSy7/jDpqZ
2NAvWGtp0brEjsI/zQnidknzCJrY5Rn0zcT/rVSw1G1pi2yJWUxkY9YIN8B9kCy4
s/6iU7PdRyWR8u38FTlfYYVQtk3LvYnMC/pUPoofXhxDWDGPz5mZNEzaQTWntap5
4TBsQTt1vVaa08va5yHwchJZ+++dI7zn+J0hgvGyDy8g3HUx7OfmxNo/l+AgnhcL
4yR2l5ncNklu5Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:28:06 2025 by rpki-client