Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
File: otP5vJZWutwm594auw-nLD1yjdg.mft (raw, json)
Hash identifier: v2x0uba6JcJK/CMmnRPqSQ/gncHbbbC32z7t8JQHah0=
Subject key identifier: BE:07:91:4E:67:19:3C:3F:DE:C5:2F:29:C2:E4:EF:C2:CA:95:F9:F3
Authority key identifier: A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
Certificate issuer: /CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Certificate serial: 0199FC58CE9161DCCB9C82FC5FFCABF2BCF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
Manifest number: 0347
Signing time: Sun 19 Oct 2025 12:01:42 +0000
Manifest this update: Sun 19 Oct 2025 12:01:42 +0000
Manifest next update: Mon 20 Oct 2025 12:01:42 +0000
Files and hashes: 1: otP5vJZWutwm594auw-nLD1yjdg.crl (hash: /4d5P8Kbow3qjZadtXka7TXPGb+k3wHg01Yv3UO1ksg=)
2: yntKueGdh_gRYfTjbFRGz4s6BD8.roa (hash: 8wVmYZSgIm0dCsPvd2oqoO7MS+FukiT5t5Ke1EaX2FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:ce:91:61:dc:cb:9c:82:fc:5f:fc:ab:f2:bc:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Validity
Not Before: Oct 19 12:01:42 2025 GMT
Not After : Oct 20 12:01:42 2025 GMT
Subject: CN=be07914e67193c3fdec52f29c2e4efc2ca95f9f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:43:9a:f0:7b:ed:45:37:53:9d:3b:0f:c3:c8:
e7:40:7b:9a:b0:2a:8c:9c:4b:c1:1b:7f:fa:29:43:
1d:ed:50:df:a4:13:63:e0:64:88:c4:38:cc:ae:fa:
7b:e8:bc:f2:4a:e4:0b:d5:72:f9:ca:00:58:6f:8a:
43:78:09:06:10:20:68:46:02:90:87:8d:2e:ed:19:
5a:e6:7e:8b:6f:41:60:b3:d2:41:c4:cf:bc:a8:0a:
dd:e5:8a:45:ba:28:bf:74:ef:a9:c8:d1:c9:93:6e:
dc:91:dd:aa:8f:4e:24:3c:ea:6e:24:f8:75:de:68:
4d:e5:8a:09:a8:f5:68:36:ca:37:3e:6b:26:a8:b6:
28:25:ab:04:14:27:8f:a6:03:c0:3d:8c:93:9a:ff:
21:ac:00:d7:58:d8:3d:91:af:1c:f0:e7:cf:9b:b9:
07:f9:3e:ce:00:8f:0a:ce:28:ec:c3:72:d5:6e:e1:
5b:c0:72:28:f6:87:90:ec:f3:74:e9:49:f0:d7:3a:
87:ae:ae:dd:59:9e:7c:91:c7:b0:eb:fe:71:c5:f8:
2a:94:31:3b:2b:f5:58:fa:9c:83:46:e4:0c:d3:49:
8d:ad:c1:81:f5:15:3c:d7:02:c8:b4:86:c3:f1:1f:
9d:84:f3:6c:08:35:42:57:d1:7d:c6:cf:1a:63:8f:
62:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:07:91:4E:67:19:3C:3F:DE:C5:2F:29:C2:E4:EF:C2:CA:95:F9:F3
X509v3 Authority Key Identifier:
keyid:A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:c0:7c:ab:26:44:6a:83:37:e2:eb:fe:56:4b:ea:ba:a8:8b:
7f:bd:ea:0d:94:8a:27:9a:9b:f1:c5:38:96:a0:84:82:1c:78:
93:e6:d6:13:fb:89:cc:74:9a:45:b7:de:10:fc:b5:cd:69:9a:
4f:c2:51:ea:6b:73:4e:e1:8a:06:4e:f3:ff:99:df:44:f7:60:
86:55:3c:91:c6:ca:02:50:70:3b:a4:da:11:b8:fc:bc:77:04:
89:cd:2f:33:da:8e:5e:e0:5d:55:9e:6d:20:98:f3:c1:2f:8d:
6c:bd:d0:09:a9:43:4e:4e:7f:54:f5:a1:3a:5f:ec:a5:99:a9:
ae:bc:ed:7f:2d:ea:f1:69:fa:d3:45:3e:92:2c:67:57:4b:e0:
66:5f:82:e5:d0:f9:a8:f5:ff:fa:d2:63:a1:61:f5:f6:5b:05:
c0:53:67:63:19:50:31:36:b9:1c:5e:f0:88:b0:62:28:ec:84:
dd:aa:d2:34:d4:3c:e4:a2:17:0a:b0:75:64:02:83:0f:e8:1c:
a3:b0:0d:83:cd:20:39:29:11:76:87:92:ff:e5:3f:92:c5:a3:
de:3f:b2:c2:99:f8:73:e2:da:7e:f1:be:cc:7d:30:75:db:ff:
47:ec:09:a0:4f:aa:c6:05:03:66:01:02:a2:35:6a:4f:aa:6b:
ce:60:be:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:25 2025 by rpki-client