Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: OcVyrwllAMwY4JDWV9BOKkyFM5lkgsYyWXBxB6ocz8A=
Subject key identifier: 2F:9F:82:00:C9:CF:29:FC:57:8C:B4:04:27:6E:AB:63:2D:8F:ED:80
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 0199FE46F3943ACE409EA5914AA9B6253DB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 089D
Signing time: Sun 19 Oct 2025 21:01:26 +0000
Manifest this update: Sun 19 Oct 2025 21:01:26 +0000
Manifest next update: Mon 20 Oct 2025 21:01:26 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: D2x90Hp-gN9ES-WMtaRxOkRU7zk.roa (hash: l/qjD5THnTNjpjg3s7YHV5e23ifKj7BiMe0FzY2nCgo=)
3: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: RGsTTZguqRL+13WxSC/uW6FZ8wIZOhVgd8Ot/ETW3G4=)
4: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
5: hbNzX9sb-OFJ3CONrcdLuZ55uyU.roa (hash: NFMtgtynDHta0KlGWRazjZvBYm+8qkNagl80fkK/Tdk=)
6: y5t9VCG86iK6aUs1XnSlJL9WwkU.roa (hash: AeobAv5BcqpSnLadsMWLSvPDtqBRihCI6v5wMAmYfok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:f3:94:3a:ce:40:9e:a5:91:4a:a9:b6:25:3d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Oct 19 21:01:26 2025 GMT
Not After : Oct 20 21:01:26 2025 GMT
Subject: CN=2f9f8200c9cf29fc578cb404276eab632d8fed80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8b:a5:1d:95:ba:8c:03:43:09:88:9e:ac:03:
6e:5e:89:61:e4:15:c0:a4:b8:1b:8b:9d:7d:57:b5:
d2:4d:a7:dc:5c:56:0e:d2:45:75:d1:24:e2:0c:a6:
4f:5b:6d:c5:38:2c:ac:97:50:dd:e1:f8:7a:71:03:
cd:c1:b7:6f:d2:5b:e2:e1:78:08:46:0f:86:e7:57:
f6:aa:5d:94:1b:8a:3d:e4:cd:e7:36:ab:20:00:b0:
02:e2:c7:7d:24:6a:89:66:ca:d9:9e:28:c2:cb:62:
2b:fc:7f:a6:87:8d:9a:8c:ef:e2:57:6a:f6:16:72:
51:d0:2f:e0:9c:7e:b5:e1:77:0e:26:60:18:48:c7:
2a:01:07:7f:5f:57:89:81:e2:cd:2b:dc:66:bd:00:
b3:ea:7e:56:1b:fc:fd:56:6e:75:f9:0e:9c:b5:69:
a9:9b:02:bf:59:16:4f:20:2c:03:d5:24:95:2a:a2:
0d:27:67:01:a9:25:fb:f4:6e:32:58:3e:82:d0:33:
4b:37:74:be:d8:54:90:a2:9d:3b:5d:a2:89:dd:3a:
fc:43:78:6e:5d:ca:42:ec:f7:4a:88:3a:be:f2:10:
e4:ce:18:01:68:ff:d2:5d:d8:a9:60:aa:51:f7:f8:
37:a2:19:fb:b7:4c:ff:61:0b:38:b3:61:67:20:44:
b2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9F:82:00:C9:CF:29:FC:57:8C:B4:04:27:6E:AB:63:2D:8F:ED:80
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:a6:77:6c:11:09:c5:6c:ba:f0:9f:32:5c:ce:7d:5f:b2:9c:
72:83:85:32:39:09:54:fc:9b:59:85:5b:b8:e2:a6:da:97:29:
38:07:6c:78:e4:84:fd:eb:4e:d2:11:ba:cc:95:d2:c7:2f:7a:
bf:a4:a9:a4:bb:e6:3b:47:7b:0e:32:cc:f1:4a:70:e9:fa:ee:
ae:f9:3a:d5:4f:ec:54:4c:a3:11:97:c7:78:01:8c:c8:6d:3b:
37:d9:f8:a3:37:5d:68:53:f3:af:66:cc:ac:d5:26:2a:d0:9e:
a7:53:82:b5:4d:af:28:0b:41:f3:bb:6d:4d:44:b1:eb:86:79:
aa:e3:d0:3c:f3:19:90:ea:5c:7b:9c:14:57:1d:7d:51:95:a0:
1a:04:3b:2f:6e:8e:9f:a8:e6:14:c0:a2:8e:db:07:c4:79:d3:
21:6d:90:21:9d:af:db:d6:c4:5d:bc:88:8f:c1:a6:b4:7c:74:
6b:3e:ae:93:17:a5:4e:26:08:40:2d:c7:86:62:19:69:22:a8:
2f:14:bd:e8:ba:d5:21:53:a9:15:ea:65:b2:98:55:4c:38:ae:
5e:1d:46:0b:e8:4c:c1:12:86:09:63:e1:d3:b6:cb:b7:73:1c:
9c:3b:e9:53:81:53:fa:c9:9d:8c:53:58:a4:6d:c3:c1:55:71:
61:69:2a:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+RvOUOs5AnqWRSqm2JT2zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MzZkYWYwMzc1NmJhZjgzYmE0ZjM4ZGJlNWQ2OGNiOWJh
Y2VmZjkwHhcNMjUxMDE5MjEwMTI2WhcNMjUxMDIwMjEwMTI2WjAzMTEwLwYDVQQD
EygyZjlmODIwMGM5Y2YyOWZjNTc4Y2I0MDQyNzZlYWI2MzJkOGZlZDgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoulHZW6jANDCYierANuXolh5BXA
pLgbi519V7XSTafcXFYO0kV10STiDKZPW23FOCysl1Dd4fh6cQPNwbdv0lvi4XgI
Rg+G51f2ql2UG4o95M3nNqsgALAC4sd9JGqJZsrZnijCy2Ir/H+mh42ajO/iV2r2
FnJR0C/gnH614XcOJmAYSMcqAQd/X1eJgeLNK9xmvQCz6n5WG/z9Vm51+Q6ctWmp
mwK/WRZPICwD1SSVKqINJ2cBqSX79G4yWD6C0DNLN3S+2FSQop07XaKJ3Tr8Q3hu
XcpC7PdKiDq+8hDkzhgBaP/SXdipYKpR9/g3ohn7t0z/YQs4s2FnIESyowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC+fggDJzyn8V4y0BCduq2Mtj+2AMB8GA1UdIwQY
MBaAFDk22vA3Vrr4O6Tzjb5daMubrO/5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2Mt
Zjk1ZjY2ZDYwNTVjLzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2MtZjk1ZjY2ZDYwNTVj
LzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKKZ3bBEJ
xWy68J8yXM59X7KccoOFMjkJVPybWYVbuOKm2pcpOAdseOSE/etO0hG6zJXSxy96
v6SppLvmO0d7DjLM8Upw6frurvk61U/sVEyjEZfHeAGMyG07N9n4ozddaFPzr2bM
rNUmKtCep1OCtU2vKAtB87ttTUSx64Z5quPQPPMZkOpce5wUVx19UZWgGgQ7L26O
n6jmFMCijtsHxHnTIW2QIZ2v29bEXbyIj8GmtHx0az6ukxelTiYIQC3HhmIZaSKo
LxS96LrVIVOpFeplsphVTDiuXh1GC+hMwRKGCWPh07bLt3McnDvpU4FT+smdjFNY
pG3DwVVxYWkqUA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:19:58 2025 by rpki-client