Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: PqtxIBP0Eyq/IvyeGpxBOgUX1g9SKxpa0ZfzrKDhDFQ=
Subject key identifier: AD:1B:18:8A:5F:0E:F7:13:1D:E2:2A:4B:4C:14:36:A9:3F:F7:66:FB
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 0199FC587405E8D2BEE06027595CBA23B9D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0DC8
Signing time: Sun 19 Oct 2025 12:01:19 +0000
Manifest this update: Sun 19 Oct 2025 12:01:19 +0000
Manifest next update: Mon 20 Oct 2025 12:01:19 +0000
Files and hashes: 1: 0wAgKVyytNbhNR-_RR1IsIpFFy0.roa (hash: hGr01I8nbqs/LJEbN09Cfzd/lbJVo6JwWOtLmEfD1wA=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: QZYOpwknohMDIwMh44azguLe/VKFV9RaVytqM1L/JRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:74:05:e8:d2:be:e0:60:27:59:5c:ba:23:b9:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Oct 19 12:01:19 2025 GMT
Not After : Oct 20 12:01:19 2025 GMT
Subject: CN=ad1b188a5f0ef7131de22a4b4c1436a93ff766fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6a:91:49:cb:c3:41:a6:4c:a1:dc:a1:57:fc:
4f:9a:c2:a8:2a:b7:16:90:16:de:20:d9:6b:89:46:
03:9e:cf:e4:96:42:f8:18:ed:b8:b4:b5:13:6f:ad:
33:7a:2b:c6:ba:f7:7c:db:dc:50:dd:7a:89:34:8c:
9b:75:0f:10:8b:7e:0c:6c:7d:81:be:7e:a9:c5:39:
2e:be:80:3f:d7:f6:17:b1:65:59:22:e7:ce:fb:89:
4d:49:91:0b:a9:40:6e:4e:cd:a1:09:c5:38:1a:79:
aa:8d:c0:d2:2f:76:31:5a:b0:c0:d7:16:85:54:c4:
06:a1:ff:75:6d:76:5c:55:8c:a1:9d:11:47:4e:28:
46:ba:4e:54:6c:99:56:ff:eb:07:57:c8:66:20:33:
4f:65:06:47:c1:d9:81:7f:af:57:ad:14:0e:a7:10:
10:2e:de:0d:d1:d6:6e:58:52:cd:a6:b5:2b:80:e9:
94:e4:33:92:10:a4:cf:4d:ea:2c:d8:7e:cc:cb:72:
12:c2:e9:3c:0a:7e:d7:61:7a:78:93:87:78:bd:fa:
8c:98:e4:d3:fc:4c:c0:0b:2d:e9:6d:12:44:db:0e:
8f:19:92:c8:83:37:cd:c4:74:92:33:84:ed:02:40:
24:13:e2:4f:cd:69:a9:9b:26:62:af:18:df:90:b2:
71:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1B:18:8A:5F:0E:F7:13:1D:E2:2A:4B:4C:14:36:A9:3F:F7:66:FB
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:f9:71:13:a6:21:12:46:d9:54:3d:45:61:28:18:a0:e2:2d:
cf:6c:14:e1:2b:f9:cd:09:bd:62:7e:9d:52:5a:4e:c4:06:49:
87:d7:6a:b1:bc:95:7c:5e:54:7c:cb:56:2a:5a:25:0b:b1:e7:
ef:d5:a5:a4:d4:d3:c9:13:7e:17:0e:f2:c3:93:89:13:19:9c:
f9:7d:e5:68:18:bd:2e:6a:d9:62:a0:54:32:c4:38:bb:c6:5c:
22:56:10:91:45:4e:45:c8:bb:de:62:85:4c:9f:1d:a3:c6:3c:
35:27:99:22:b9:43:6c:98:4d:9b:67:c2:d6:03:0f:61:49:95:
d3:b6:32:2e:56:c7:97:8a:c7:5a:f5:67:61:34:8e:bb:ce:79:
31:2a:e2:b4:1a:eb:47:ee:50:a7:28:ea:db:a9:6e:12:a4:ad:
a6:ae:1b:a8:e1:79:bb:d5:17:ff:b8:01:56:f8:4d:6a:58:6a:
d7:7b:22:aa:79:30:e2:d9:26:40:65:3a:f2:24:d5:f5:c6:f4:
c7:c2:c4:70:33:0c:00:04:20:e8:35:c8:77:57:d5:64:1a:c5:
c4:05:04:f4:6b:db:98:a3:9a:d0:b9:29:01:58:1d:49:f8:ba:
cb:14:43:c6:34:73:69:92:6c:9c:fd:ba:61:0c:c2:9f:a4:33:
c7:04:d6:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WHQF6NK+4GAnWVy6I7nQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDBmZjE1NGM0NTM5NDNhMGIwMmFhNjUwMjFjOWMyNjQ5
NDdjMmIwHhcNMjUxMDE5MTIwMTE5WhcNMjUxMDIwMTIwMTE5WjAzMTEwLwYDVQQD
EyhhZDFiMTg4YTVmMGVmNzEzMWRlMjJhNGI0YzE0MzZhOTNmZjc2NmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWqRScvDQaZModyhV/xPmsKoKrcW
kBbeINlriUYDns/klkL4GO24tLUTb60zeivGuvd829xQ3XqJNIybdQ8Qi34MbH2B
vn6pxTkuvoA/1/YXsWVZIufO+4lNSZELqUBuTs2hCcU4GnmqjcDSL3YxWrDA1xaF
VMQGof91bXZcVYyhnRFHTihGuk5UbJlW/+sHV8hmIDNPZQZHwdmBf69XrRQOpxAQ
Lt4N0dZuWFLNprUrgOmU5DOSEKTPTeos2H7My3ISwuk8Cn7XYXp4k4d4vfqMmOTT
/EzACy3pbRJE2w6PGZLIgzfNxHSSM4TtAkAkE+JPzWmpmyZirxjfkLJxnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK0bGIpfDvcTHeIqS0wUNqk/92b7MB8GA1UdIwQY
MBaAFDpA/xVMRTlDoLAqplAhycJklHwrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQt
ODJiYjBiYjExZTNlLzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQtODJiYjBiYjExZTNl
LzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFvlxE6Yh
EkbZVD1FYSgYoOItz2wU4Sv5zQm9Yn6dUlpOxAZJh9dqsbyVfF5UfMtWKlolC7Hn
79WlpNTTyRN+Fw7yw5OJExmc+X3laBi9LmrZYqBUMsQ4u8ZcIlYQkUVORci73mKF
TJ8do8Y8NSeZIrlDbJhNm2fC1gMPYUmV07YyLlbHl4rHWvVnYTSOu855MSritBrr
R+5Qpyjq26luEqStpq4bqOF5u9UX/7gBVvhNalhq13siqnkw4tkmQGU68iTV9cb0
x8LEcDMMAAQg6DXId1fVZBrFxAUE9GvbmKOa0LkpAVgdSfi6yxRDxjRzaZJsnP26
YQzCn6QzxwTWBg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:43 2025 by rpki-client