Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.mft
File: OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.mft (raw, json)
Hash identifier: PVDAX5KwpRMIdvtoB+K4dsqO7Zfy1tAFLg2Akc+3nzM=
Subject key identifier: 1F:72:3D:75:E4:67:97:6C:F4:9E:12:31:25:03:29:DF:B9:A2:FA:D1
Authority key identifier: 38:A1:9E:64:0D:E1:F4:52:A7:DC:4A:BE:78:6A:A5:81:34:29:27:B1
Certificate issuer: /CN=38a19e640de1f452a7dc4abe786aa581342927b1
Certificate serial: 0199FBEA84680E0F3AA665442221A157E74C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.mft
Manifest number: 0622
Signing time: Sun 19 Oct 2025 10:01:14 +0000
Manifest this update: Sun 19 Oct 2025 10:01:14 +0000
Manifest next update: Mon 20 Oct 2025 10:01:14 +0000
Files and hashes: 1: OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.crl (hash: +N93FCPXSRlL1+OwXwzEEOkTO/w4Rg/YQ6Q6MbsoFhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:84:68:0e:0f:3a:a6:65:44:22:21:a1:57:e7:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a19e640de1f452a7dc4abe786aa581342927b1
Validity
Not Before: Oct 19 10:01:14 2025 GMT
Not After : Oct 20 10:01:14 2025 GMT
Subject: CN=1f723d75e467976cf49e1231250329dfb9a2fad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:da:5c:03:46:86:d4:6c:e3:be:e4:06:7f:4d:
47:42:65:19:e0:ec:07:74:c9:56:7b:cb:86:2d:5b:
21:64:6e:b7:df:2e:21:7e:0d:9b:07:86:70:a9:ce:
50:3e:fa:cb:7d:16:c2:fc:cd:7d:c3:5d:d6:5f:2d:
a8:df:bf:66:9c:ac:5c:58:d0:54:cd:a6:6c:3b:a6:
33:22:50:2a:73:b6:dd:76:ae:24:ef:6f:7b:68:bb:
12:c3:aa:4a:83:f2:56:f3:e9:f3:ce:3b:a3:36:b5:
76:e3:a4:26:3a:3c:af:e4:16:ad:be:bc:c5:ad:92:
c6:d3:70:27:d4:93:ab:fd:97:90:55:bf:89:47:4d:
0a:01:df:7d:b5:87:57:1d:91:4f:a1:a5:6e:a5:38:
94:d3:7b:8a:cd:6a:6a:83:a6:e9:d0:8b:e1:bf:a4:
b7:dc:5b:3c:bd:c9:90:9a:ec:5e:9d:64:15:4f:08:
d6:37:9f:fe:29:59:35:a9:5d:45:97:51:91:04:04:
aa:f7:41:e4:46:6d:84:4f:c3:5a:e4:0f:cd:cb:4f:
f9:ac:78:21:14:26:48:2f:82:10:9c:f0:06:5c:ca:
62:ef:1a:8d:bb:54:82:13:1d:b7:ac:76:1b:90:83:
41:1e:ed:6e:04:97:5b:83:4a:2a:1b:3c:9d:7a:c1:
e0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:72:3D:75:E4:67:97:6C:F4:9E:12:31:25:03:29:DF:B9:A2:FA:D1
X509v3 Authority Key Identifier:
keyid:38:A1:9E:64:0D:E1:F4:52:A7:DC:4A:BE:78:6A:A5:81:34:29:27:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:13:a2:1d:94:20:84:7d:41:04:00:46:cd:66:2e:7e:18:11:
8d:9a:df:9e:74:93:17:24:ab:9a:06:3a:39:59:bf:0e:b8:2c:
97:bb:1a:35:c2:cc:1b:a7:90:58:7e:18:46:0d:3a:21:60:c8:
59:a9:5c:31:0f:76:43:5f:de:07:e0:5b:e2:d8:e7:e7:5c:4f:
8b:7b:be:97:bb:d7:49:65:6e:4a:91:d7:7f:22:52:54:93:42:
dd:0c:b4:89:46:11:c9:a4:a1:f5:f6:48:8a:1b:e2:4c:15:60:
cf:41:73:37:81:21:ca:f7:b3:66:d8:e1:34:44:a0:6d:0c:b9:
ba:97:6c:1c:95:d3:00:69:31:cf:02:04:32:49:41:d2:af:61:
72:f2:34:76:ef:c7:8b:68:77:47:6e:d8:68:1b:34:51:32:70:
23:4d:bc:b7:ee:f1:8a:04:c3:b8:07:0c:6d:7b:c8:94:3f:57:
e6:a0:e9:98:75:07:ea:39:1a:23:4e:cf:9f:3f:74:22:75:94:
65:ba:66:36:f8:01:58:4d:e8:88:96:d4:6e:2b:66:d3:ac:78:
f6:21:ad:07:8d:ba:e1:39:f5:f7:f1:61:04:9a:01:6e:e3:ec:
ff:7c:af:3c:23:29:6c:d1:9e:65:7a:11:db:d0:8b:13:12:69:
43:3a:88:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:08 2025 by rpki-client