Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: APgPr7TaRUe/Zx/TY5t7s95HaShm2922gAC4zAJdUpo=
Subject key identifier: 61:29:45:72:DE:00:EA:E9:8D:D0:00:3E:73:F6:4C:37:D6:83:08:D5
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 0198D5BC06836C3358F95ABF49E0980082A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 15DB
Signing time: Sat 23 Aug 2025 07:02:06 +0000
Manifest this update: Sat 23 Aug 2025 07:02:06 +0000
Manifest next update: Sun 24 Aug 2025 07:02:06 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: H6rX7wOlDqlaOfqT6m9XoIATwpb1U5Ac0wo6Q3oEX8M=)
2: oU-Dh2GrIk6DJo0B3ckZobCZQLg.roa (hash: 3M/n9wvPmKU+uLTP2MTaGav/2cb5GDciUi4YXKv/+G0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:06:83:6c:33:58:f9:5a:bf:49:e0:98:00:82:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: Aug 23 07:02:06 2025 GMT
Not After : Aug 24 07:02:06 2025 GMT
Subject: CN=61294572de00eae98dd0003e73f64c37d68308d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bc:4c:b0:56:0c:19:99:68:8c:0c:a7:d5:92:
18:2e:65:62:5c:9d:59:96:0a:dc:e4:ee:f6:d9:26:
32:ab:22:f0:ca:93:2b:0d:cc:2f:7e:83:b3:e9:d6:
b9:ad:fa:a0:2e:2f:3b:1b:b7:95:ab:c3:b6:97:df:
36:de:6a:c5:5d:d1:1c:ab:39:3f:c2:ad:5f:c8:c3:
f3:f8:80:37:af:2b:b0:78:7f:0a:73:dc:bd:61:f8:
a6:81:18:b8:6e:00:bf:a8:09:4b:3a:06:3c:5b:af:
cb:f3:40:9c:a5:3a:6f:3e:28:e8:68:bf:8b:e3:05:
4b:92:0a:ee:d8:61:cc:03:85:b9:cb:7f:6b:5a:43:
71:11:a2:0c:25:57:93:b8:37:19:d9:18:35:e9:02:
d6:1c:20:eb:64:f0:17:77:61:1f:e3:26:cc:4c:33:
22:cf:a2:99:13:f9:25:3c:25:20:73:75:b7:6b:dc:
4b:55:39:64:5e:10:0b:68:a9:2f:de:47:92:bd:4d:
98:d9:26:50:0f:3a:8d:d8:b7:c0:6b:af:a7:37:c3:
01:c7:85:91:e7:43:8b:3f:0b:84:44:13:96:c3:eb:
80:29:0c:60:8b:20:7a:3a:41:58:45:31:77:3a:5b:
6c:7a:e1:9a:55:f2:9e:4b:93:eb:0d:a1:0b:79:fb:
36:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:29:45:72:DE:00:EA:E9:8D:D0:00:3E:73:F6:4C:37:D6:83:08:D5
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:1c:b2:12:71:b2:bb:2c:3d:2f:03:92:34:cb:64:56:f8:d9:
75:9d:a5:25:42:a7:86:eb:e8:a2:a5:e9:a1:ff:51:dc:4e:85:
f1:19:ee:96:d7:01:90:f1:63:10:fd:5f:35:ee:3b:09:fa:2b:
e9:db:55:46:92:45:88:b5:4a:2e:0d:59:1a:fa:98:a6:2a:7b:
de:fe:c6:f7:3d:31:c6:f5:98:fc:5f:81:53:18:e5:74:3e:fa:
3c:48:cb:f2:3e:cc:fa:be:04:d0:6e:fe:37:67:6e:7c:e7:38:
5b:d1:d7:cd:0d:0f:08:3a:42:43:05:61:c1:c6:15:2b:ec:db:
cd:53:09:92:d9:ce:09:1c:fd:39:66:23:1d:e3:8c:a4:4f:8c:
5b:36:17:22:bb:ff:fc:1d:d8:c6:e1:39:d0:90:53:fa:ba:b7:
96:50:9c:d7:05:a3:82:e6:61:e4:f8:6c:5e:b6:3f:e6:1c:52:
74:1a:5d:6f:e7:f6:b2:b5:d5:a8:5a:3e:f1:6a:71:e0:dc:38:
88:7d:62:70:85:77:dd:0a:44:3b:a9:79:0c:bd:5b:fa:0d:de:
54:db:69:5a:b2:b0:34:c8:a8:d8:ba:fc:f5:4b:fc:e1:1d:89:
7a:b3:ee:b8:ff:76:28:34:d6:48:8d:c8:dd:d3:32:c3:28:8e:
1c:fe:75:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:37:38 2025 by rpki-client