Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: hZfNtVka1ASy3PB9Ex2iSos0aePwKuQS2KFukzlLPUY=
Subject key identifier: 38:7C:0D:04:59:95:05:6E:F3:36:78:5C:A7:CE:24:CD:45:D2:EE:6D
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 0197BB8FE2F6E004890ACE952ED0DD11D6B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0770
Signing time: Sun 29 Jun 2025 12:00:58 +0000
Manifest this update: Sun 29 Jun 2025 12:00:58 +0000
Manifest next update: Mon 30 Jun 2025 12:00:58 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: 2DDfXUiH85YC1X3PgfdtyKVgjPw.roa (hash: IX38bNkkduAXN8SBzl133Uzin5uXQV9chMH9hhrcGco=)
3: 5O5OsM3NhBX9ufi05PLP13l29To.roa (hash: 3SSp0jqDRZlrWNGbYWPuIP2g5yvlTpjsrbIVea72fZ0=)
4: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: 0mRbvtyQbzsFEF1zSxj12meSeK8r0EEDac3dAfKGPEk=)
5: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:8f:e2:f6:e0:04:89:0a:ce:95:2e:d0:dd:11:d6:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Jun 29 12:00:58 2025 GMT
Not After : Jun 30 12:00:58 2025 GMT
Subject: CN=387c0d045995056ef336785ca7ce24cd45d2ee6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ba:05:66:87:bb:a5:fb:24:06:62:26:c8:76:
07:60:5c:a5:f0:84:2d:87:14:0b:ae:74:7c:75:1e:
3f:7d:65:db:51:c0:19:f4:90:89:a9:c6:11:98:ac:
fd:fc:4d:b1:b3:18:62:6c:b6:c3:1d:23:0f:83:9b:
cb:42:3d:a5:19:5a:cf:8b:ec:66:e8:7c:2e:8c:ac:
e8:74:5c:d6:67:6a:06:27:b5:c3:a6:0b:3a:be:e7:
33:fb:11:6b:62:12:7f:2b:4f:8f:6b:15:7d:b6:ea:
71:d2:5b:c2:75:24:0d:ae:0b:65:b6:96:e1:a4:ca:
1d:31:22:55:68:76:57:10:06:17:29:7d:a4:01:26:
7b:0a:e9:25:af:5b:6a:fe:a6:2a:b5:a5:95:39:b8:
f5:0b:ff:e8:4f:0f:86:2d:c5:bf:eb:7e:02:5c:2d:
83:d8:92:f5:b1:78:fe:10:ec:58:78:40:86:3b:c7:
cc:c0:c2:94:be:ac:09:5b:52:d2:ca:9a:4b:9b:77:
05:53:69:f6:9a:45:e0:a5:83:dc:a6:5a:39:d9:06:
bc:40:05:13:a9:4e:b2:67:05:7f:52:4b:83:a5:8a:
98:ea:9a:a9:c1:cc:8b:ee:22:63:43:b0:a2:62:b3:
1a:fb:a2:cd:14:92:18:3a:ba:04:68:a6:19:b7:3d:
24:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7C:0D:04:59:95:05:6E:F3:36:78:5C:A7:CE:24:CD:45:D2:EE:6D
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:7e:12:ff:d6:7e:bc:31:f1:11:7f:80:cb:8a:a1:87:18:cd:
b9:b5:55:fc:36:2a:9f:90:7b:21:a5:b1:c7:2d:22:f1:3c:83:
ef:0a:06:d5:09:ca:e5:db:f6:41:8f:01:ce:5a:de:f8:0e:cb:
5c:a2:89:aa:aa:29:68:c1:b8:ce:49:4c:83:6b:06:40:76:89:
eb:ee:07:62:09:ee:ba:ce:3d:98:39:81:75:c5:3e:60:01:f9:
ee:49:9c:df:ff:5e:f7:07:88:8f:2c:31:e7:41:36:58:70:39:
24:42:7e:36:d8:b5:51:de:26:33:49:07:46:ea:ee:be:6f:21:
8e:b4:41:87:97:55:dd:74:0b:cd:5a:48:9b:4e:71:d6:c8:39:
71:e7:e0:ce:25:ee:2d:40:69:26:eb:ee:e1:e7:c3:a8:5f:7d:
ec:fa:8d:78:aa:93:1c:be:ee:8d:31:2a:d6:ab:b8:0e:d1:2f:
91:09:54:d1:2f:1b:65:0a:8f:10:c8:4d:b5:33:86:12:38:89:
a9:88:71:2f:9b:69:0b:b3:02:67:16:bf:3d:b0:4f:14:b2:89:
c6:6a:1a:79:20:ed:99:4e:0c:ba:fc:7a:52:dd:c0:c6:32:ab:
43:2f:8e:e1:44:73:da:05:b9:86:e0:eb:97:d8:c2:56:cc:c9:
2f:cb:80:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe7j+L24ASJCs6VLtDdEdazMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MzZkYWYwMzc1NmJhZjgzYmE0ZjM4ZGJlNWQ2OGNiOWJh
Y2VmZjkwHhcNMjUwNjI5MTIwMDU4WhcNMjUwNjMwMTIwMDU4WjAzMTEwLwYDVQQD
EygzODdjMGQwNDU5OTUwNTZlZjMzNjc4NWNhN2NlMjRjZDQ1ZDJlZTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqboFZoe7pfskBmImyHYHYFyl8IQt
hxQLrnR8dR4/fWXbUcAZ9JCJqcYRmKz9/E2xsxhibLbDHSMPg5vLQj2lGVrPi+xm
6HwujKzodFzWZ2oGJ7XDpgs6vucz+xFrYhJ/K0+PaxV9tupx0lvCdSQNrgtltpbh
pModMSJVaHZXEAYXKX2kASZ7Cuklr1tq/qYqtaWVObj1C//oTw+GLcW/634CXC2D
2JL1sXj+EOxYeECGO8fMwMKUvqwJW1LSyppLm3cFU2n2mkXgpYPcplo52Qa8QAUT
qU6yZwV/UkuDpYqY6pqpwcyL7iJjQ7CiYrMa+6LNFJIYOroEaKYZtz0k0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDh8DQRZlQVu8zZ4XKfOJM1F0u5tMB8GA1UdIwQY
MBaAFDk22vA3Vrr4O6Tzjb5daMubrO/5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2Mt
Zjk1ZjY2ZDYwNTVjLzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2MtZjk1ZjY2ZDYwNTVj
LzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ34S/9Z+
vDHxEX+Ay4qhhxjNubVV/DYqn5B7IaWxxy0i8TyD7woG1QnK5dv2QY8Bzlre+A7L
XKKJqqopaMG4zklMg2sGQHaJ6+4HYgnuus49mDmBdcU+YAH57kmc3/9e9weIjywx
50E2WHA5JEJ+Nti1Ud4mM0kHRuruvm8hjrRBh5dV3XQLzVpIm05x1sg5cefgziXu
LUBpJuvu4efDqF997PqNeKqTHL7ujTEq1qu4DtEvkQlU0S8bZQqPEMhNtTOGEjiJ
qYhxL5tpC7MCZxa/PbBPFLKJxmoaeSDtmU4Muvx6Ut3AxjKrQy+O4URz2gW5huDr
l9jCVszJL8uA9g==
-----END CERTIFICATE-----
Generated at Sun Jun 29 14:43:45 2025 by rpki-client