Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.mft
File: OkGxVaq20SKf00jqoD0PeQPxJno.mft (raw, json)
Hash identifier: P2H+P/S1hp1jxaSX3EUaXavVY9esKyGtHFt4vZObAVY=
Subject key identifier: 9B:56:FB:F2:13:CD:2C:F1:36:FF:39:A2:F6:F5:0E:7F:A7:44:A2:BA
Authority key identifier: 3A:41:B1:55:AA:B6:D1:22:9F:D3:48:EA:A0:3D:0F:79:03:F1:26:7A
Certificate issuer: /CN=3a41b155aab6d1229fd348eaa03d0f7903f1267a
Certificate serial: 0198D4A7C3F63F46040624C1A20AB49EA562
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkGxVaq20SKf00jqoD0PeQPxJno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.mft
Manifest number: 1150
Signing time: Sat 23 Aug 2025 02:00:21 +0000
Manifest this update: Sat 23 Aug 2025 02:00:21 +0000
Manifest next update: Sun 24 Aug 2025 02:00:21 +0000
Files and hashes: 1: DUYlFbh6FULGzgdthf_PMDp6hOU.roa (hash: JR7UbEi2bM6dLHHY3xrq1gui3NHbn1GkWRWkFGTRYw0=)
2: OkGxVaq20SKf00jqoD0PeQPxJno.crl (hash: sAtv2olFLFWBsJfPPg9oUtFIgJTZCyj6LSpthsVjlqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkGxVaq20SKf00jqoD0PeQPxJno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:c3:f6:3f:46:04:06:24:c1:a2:0a:b4:9e:a5:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a41b155aab6d1229fd348eaa03d0f7903f1267a
Validity
Not Before: Aug 23 02:00:21 2025 GMT
Not After : Aug 24 02:00:21 2025 GMT
Subject: CN=9b56fbf213cd2cf136ff39a2f6f50e7fa744a2ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c6:cc:8b:c7:ba:4d:de:5a:d4:e0:5e:1c:b4:
ff:8f:ab:59:0b:98:0c:cd:ac:90:4e:fe:36:d4:27:
33:7b:73:a7:0c:7b:e4:90:65:4b:1a:ad:5c:73:c9:
ef:67:20:fc:71:41:10:d9:95:c1:a5:ce:73:59:8a:
8b:f7:13:bc:c0:21:e4:ec:5c:e9:87:c0:9a:f1:22:
bf:93:95:32:d1:c4:ba:34:fc:50:3f:4d:42:49:c1:
0e:de:23:34:76:d7:85:75:85:00:c8:a5:fe:92:3c:
e0:97:02:37:f6:f4:bd:e3:e7:76:b5:20:6d:72:7e:
df:25:6b:30:99:b3:3e:32:aa:df:aa:a1:60:f0:29:
d5:20:73:b7:db:7c:d7:d3:45:dd:b6:c0:50:a8:a3:
b0:62:a5:6e:d8:97:a2:10:35:b2:34:f6:97:42:bb:
da:03:a0:df:a3:0c:f7:4f:ed:20:49:e5:a6:05:cd:
5c:b5:ae:4e:f2:5d:9d:6b:0d:6e:58:4c:e1:08:7a:
68:89:0b:27:c0:8c:e3:8e:e8:16:55:7e:60:41:57:
9a:2a:88:55:9c:d2:07:0e:21:29:76:d8:51:09:d9:
9d:0e:42:0d:39:c4:57:ae:05:00:01:ed:75:20:15:
a1:a2:2b:35:5e:bb:bf:9c:bc:c0:b0:6f:4e:8b:58:
33:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:56:FB:F2:13:CD:2C:F1:36:FF:39:A2:F6:F5:0E:7F:A7:44:A2:BA
X509v3 Authority Key Identifier:
keyid:3A:41:B1:55:AA:B6:D1:22:9F:D3:48:EA:A0:3D:0F:79:03:F1:26:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkGxVaq20SKf00jqoD0PeQPxJno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:a7:1d:6a:ae:4b:7d:54:1d:79:cf:c3:e2:2d:c2:24:ac:b8:
d7:71:79:9e:60:68:b7:d7:67:24:e2:97:8a:3a:50:5b:ec:97:
93:43:f8:d5:e6:7a:54:44:c4:e8:23:e1:11:fe:1d:77:5e:45:
2c:2b:20:f7:dc:8f:64:29:69:47:00:aa:61:ee:42:a6:7b:0e:
d3:6b:82:3b:fd:2e:4c:4a:8f:86:7e:9e:e8:72:20:f7:d2:35:
80:50:5e:9b:d7:7a:f1:60:17:fc:68:bf:e5:8e:b0:c6:b0:de:
da:20:f9:5f:c5:85:4a:0d:f4:70:59:03:96:4a:c6:48:65:08:
e7:73:e7:c4:40:f6:2b:30:0e:36:11:69:6f:68:da:64:a4:82:
d3:62:cf:64:fe:07:49:9b:5c:9f:26:d5:d5:12:b6:0a:6d:f6:
06:31:97:fc:13:21:0a:a9:6a:06:55:27:02:85:27:fa:fc:f3:
f0:ce:27:db:75:94:51:20:e1:7a:9e:20:69:72:ae:af:d3:ab:
35:f5:33:c5:9c:2a:af:cc:92:bd:db:9a:11:75:a1:8a:ed:6c:
a1:dd:e1:01:68:bf:93:b0:99:01:ad:ba:52:ab:7e:d2:ea:dd:
b4:1e:bb:69:30:68:c4:84:52:d8:93:59:f1:d8:e6:c5:62:dd:
79:bb:56:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:34:29 2025 by rpki-client