Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: kS9TVUyzRq37cDqqLpiq/zfrxz+26fdiMuQMg0VIZ/Y=
Subject key identifier: FB:0E:03:27:B4:BC:90:6E:A7:A0:DD:56:99:4D:D5:C9:D8:51:70:A6
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 0198D5162FF68000CFC62BDDA7E33DA6299E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0802
Signing time: Sat 23 Aug 2025 04:00:57 +0000
Manifest this update: Sat 23 Aug 2025 04:00:57 +0000
Manifest next update: Sun 24 Aug 2025 04:00:57 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: kEAubrzuvkwbxloBFPuA2f94IN5roy8MfSw+nl8YAu0=)
3: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
4: jpcOzJlD5DNOBR0PvFka9EhBs6c.roa (hash: BgC9FPq25CFFYRb5W+esR5XkAJuLVqKyZBOpB4qwDEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:2f:f6:80:00:cf:c6:2b:dd:a7:e3:3d:a6:29:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Aug 23 04:00:57 2025 GMT
Not After : Aug 24 04:00:57 2025 GMT
Subject: CN=fb0e0327b4bc906ea7a0dd56994dd5c9d85170a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:75:8b:ff:43:28:8f:60:73:12:f8:3e:f4:80:
31:c0:c3:7f:81:d9:40:8c:f7:0e:17:22:b3:f0:ed:
ea:06:98:03:80:bc:d8:41:83:ba:e9:3c:74:b0:ee:
ce:66:ef:6a:c8:9d:0c:12:74:6a:6b:b2:66:2b:0e:
2e:6b:9e:db:9f:21:f6:07:0c:e0:20:63:9b:3f:fe:
69:e8:16:8e:ab:d5:3a:b8:16:e6:60:67:40:ec:e7:
65:eb:72:91:37:a5:6a:c8:65:c9:a2:2e:c4:5c:a3:
95:ae:c6:90:b6:c5:f3:6f:f3:0a:df:e7:a4:a7:92:
e7:23:c9:ab:c7:79:47:ad:83:a9:af:92:9b:26:0b:
2a:97:90:82:6e:a9:a3:58:a5:59:27:46:99:dc:cd:
45:df:c2:61:00:13:c8:f7:6c:23:9e:e8:ef:69:ff:
a6:bf:49:de:df:09:a6:4e:ea:d2:5d:64:e4:4b:b5:
22:8a:c8:e3:e4:0e:6a:6b:f8:e7:79:90:7e:84:88:
25:3d:c2:a4:97:c0:82:aa:f1:7a:7d:14:80:6d:f0:
ce:b8:c3:03:bb:88:ff:1d:4d:de:f6:bf:dd:f2:b7:
b8:05:5e:fc:cc:2a:9e:45:84:a6:95:c7:2e:81:3a:
3d:7b:08:30:d5:8d:a6:df:fb:d9:b1:5c:53:f8:7b:
d7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:0E:03:27:B4:BC:90:6E:A7:A0:DD:56:99:4D:D5:C9:D8:51:70:A6
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:df:0b:e8:cb:b7:a1:99:4f:84:02:aa:88:d3:cd:12:55:79:
2f:72:54:6b:0a:2a:b6:ab:55:0a:f1:99:ab:51:a8:8d:88:1d:
c3:54:4e:db:2f:e8:51:87:0f:24:3f:84:df:af:b2:58:49:39:
c9:71:df:62:3e:fa:a7:31:cd:77:57:17:b6:fa:9d:5c:2c:9f:
72:d6:1e:9e:11:b0:c6:21:d6:db:58:35:65:b2:b9:ef:b5:b6:
d3:54:e8:6d:88:af:61:ca:dc:e0:e3:80:0c:f0:3d:72:8f:8d:
a5:2b:6e:7a:df:33:fb:1d:ee:d6:2a:82:f6:e4:58:48:da:08:
91:fd:54:45:66:60:66:f0:80:14:89:ab:24:be:a0:ef:59:7d:
1a:34:f6:2b:7b:ad:01:b7:70:33:a9:7d:97:42:d0:4f:41:a4:
3e:4b:7b:7e:ae:8c:42:f4:2c:45:27:12:d4:36:b9:4a:a1:40:
c1:af:47:f7:0d:be:2c:64:58:41:fb:f2:57:13:f9:53:2d:9e:
45:6e:51:82:86:36:64:ae:8a:18:d2:33:a0:ae:4d:44:e2:c5:
34:e0:7a:9d:9f:9a:56:d8:dc:42:f4:e4:c3:74:13:37:24:fd:
01:dc:34:28:04:3d:d2:33:da:09:0f:bb:29:f8:09:b9:99:b1:
8e:c3:25:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFi/2gADPxivdp+M9pimeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MzZkYWYwMzc1NmJhZjgzYmE0ZjM4ZGJlNWQ2OGNiOWJh
Y2VmZjkwHhcNMjUwODIzMDQwMDU3WhcNMjUwODI0MDQwMDU3WjAzMTEwLwYDVQQD
EyhmYjBlMDMyN2I0YmM5MDZlYTdhMGRkNTY5OTRkZDVjOWQ4NTE3MGE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnWL/0Moj2BzEvg+9IAxwMN/gdlA
jPcOFyKz8O3qBpgDgLzYQYO66Tx0sO7OZu9qyJ0MEnRqa7JmKw4ua57bnyH2Bwzg
IGObP/5p6BaOq9U6uBbmYGdA7Odl63KRN6VqyGXJoi7EXKOVrsaQtsXzb/MK3+ek
p5LnI8mrx3lHrYOpr5KbJgsql5CCbqmjWKVZJ0aZ3M1F38JhABPI92wjnujvaf+m
v0ne3wmmTurSXWTkS7Uiisjj5A5qa/jneZB+hIglPcKkl8CCqvF6fRSAbfDOuMMD
u4j/HU3e9r/d8re4BV78zCqeRYSmlccugTo9ewgw1Y2m3/vZsVxT+HvXLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPsOAye0vJBup6DdVplN1cnYUXCmMB8GA1UdIwQY
MBaAFDk22vA3Vrr4O6Tzjb5daMubrO/5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2Mt
Zjk1ZjY2ZDYwNTVjLzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2MtZjk1ZjY2ZDYwNTVj
LzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADN8L6Mu3
oZlPhAKqiNPNElV5L3JUawoqtqtVCvGZq1GojYgdw1RO2y/oUYcPJD+E36+yWEk5
yXHfYj76pzHNd1cXtvqdXCyfctYenhGwxiHW21g1ZbK577W201TobYivYcrc4OOA
DPA9co+NpStuet8z+x3u1iqC9uRYSNoIkf1URWZgZvCAFImrJL6g71l9GjT2K3ut
AbdwM6l9l0LQT0GkPkt7fq6MQvQsRScS1Da5SqFAwa9H9w2+LGRYQfvyVxP5Uy2e
RW5RgoY2ZK6KGNIzoK5NROLFNOB6nZ+aVtjcQvTkw3QTNyT9Adw0KAQ90jPaCQ+7
KfgJuZmxjsMl1w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:12 2025 by rpki-client