Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
File: OklF5GdkAp0lgdggwzc_pEWFVTk.mft (raw, json)
Hash identifier: A5czz0WCPvAuAsw5l4oJNu6FQF6MG8IJjxOdPzqXiTo=
Subject key identifier: EB:BA:04:D5:BC:58:A0:5F:AA:82:20:75:33:1D:5F:D4:A3:E9:99:25
Authority key identifier: 3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39
Certificate issuer: /CN=3a4945e46764029d2581d820c3373fa445855539
Certificate serial: 0197B74530C1B134133292BE38A22ADAE79C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
Manifest number: 15BC
Signing time: Sat 28 Jun 2025 16:00:54 +0000
Manifest this update: Sat 28 Jun 2025 16:00:54 +0000
Manifest next update: Sun 29 Jun 2025 16:00:54 +0000
Files and hashes: 1: 6dFmm5sRY32IWZd8jLU8_s5imvY.roa (hash: udPQ8wWzpwcAiDjrHHyq/uTqqzcEbt4FowH3Qt/QIEM=)
2: LHDFKCfWLJp2mBfByLfhuS_iDkY.roa (hash: hhocfI4M747eSln+lUvkyI8Ag+8FG16kwPY8wAbPOQk=)
3: OklF5GdkAp0lgdggwzc_pEWFVTk.crl (hash: J973NL/5uLsEtIq1SHOT98vgiA9gnKgsvBwldspDGJA=)
4: hE4J7-nVjBP1I1amWriRZQbCRjQ.roa (hash: t96fk3QnxrV27k+4LVx0l6UARkEoivZQZo9G+qQHzNc=)
5: tVLlOiV7SvnosXMuOA6u9tK4RqI.roa (hash: /FYDglX8ng94EWH9NM8VS2sIZeZUQbmdZE0FSeyFXmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:30:c1:b1:34:13:32:92:be:38:a2:2a:da:e7:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a4945e46764029d2581d820c3373fa445855539
Validity
Not Before: Jun 28 16:00:54 2025 GMT
Not After : Jun 29 16:00:54 2025 GMT
Subject: CN=ebba04d5bc58a05faa822075331d5fd4a3e99925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:45:3c:9a:49:0b:3a:9a:b5:c0:35:f8:7f:9e:
6d:3e:18:88:22:91:d2:14:b4:20:22:41:c6:6c:9c:
15:c1:b0:63:1d:8d:4b:98:1e:32:09:c6:6d:7e:a1:
da:ef:75:05:63:d1:97:ac:fd:44:8a:54:c7:4a:54:
65:34:36:19:a9:5c:b8:cf:b3:ba:21:52:72:10:6d:
f5:3f:ae:58:7e:b5:59:aa:37:a8:44:ef:94:ca:69:
d1:49:83:44:49:a2:0d:9c:60:19:ab:b5:b5:db:6f:
cf:cf:56:a5:b5:f0:c4:ff:0b:bd:e0:0d:7d:08:fb:
f3:21:f3:95:56:4b:46:94:a2:40:21:75:c6:47:d9:
1c:ef:4a:3e:02:aa:a8:b8:40:06:80:93:20:1f:eb:
02:78:16:f2:91:88:48:27:ac:45:6e:d4:18:e0:2e:
41:ee:0e:20:32:cd:6e:bc:86:91:b6:8e:d1:1b:9e:
68:da:94:c2:44:71:d2:5d:9b:e5:16:b8:0f:38:93:
1d:d3:86:5c:72:14:7b:fe:d7:09:c1:58:9f:40:52:
8c:7f:d0:d3:74:e0:d6:c6:6c:db:72:1e:94:04:9d:
35:9b:c9:3b:22:48:6a:36:0c:94:61:54:9f:f2:b0:
89:de:02:b1:63:b5:7e:bc:6d:33:06:e4:6d:3a:96:
19:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:BA:04:D5:BC:58:A0:5F:AA:82:20:75:33:1D:5F:D4:A3:E9:99:25
X509v3 Authority Key Identifier:
keyid:3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:73:42:d4:42:b3:d2:84:25:df:98:fc:e9:13:25:b3:16:a8:
9f:50:6a:7e:aa:13:5d:d4:ff:d4:a0:5d:2a:10:80:eb:37:62:
0f:15:11:ca:95:15:2d:cf:09:97:15:ca:e0:fa:50:d4:ad:9d:
44:3c:80:3a:93:98:c3:95:e5:55:06:18:cb:ec:6d:5c:71:69:
e0:4c:93:d8:cc:b7:03:dc:11:9f:ce:a1:3b:9a:46:c3:04:dc:
fc:1c:e2:5a:bf:10:f9:96:ea:9c:57:b9:81:fb:f9:b0:9b:15:
f4:63:79:e8:3b:a6:cd:f6:1d:00:f8:eb:13:c0:94:4b:47:52:
af:e5:32:9b:67:79:e7:d4:02:78:ef:37:0a:52:0d:f6:6e:1d:
b6:65:a8:e4:56:6b:5e:7c:40:c3:93:56:7f:0b:e5:d5:6a:57:
47:25:13:0e:90:4b:59:08:cc:a8:fc:18:99:b2:dd:8f:21:61:
b9:bd:26:d4:b1:86:b0:55:c6:37:a9:fc:a6:d4:68:37:be:41:
42:08:5d:fd:14:a1:58:b0:a9:46:ee:16:7d:94:2a:92:b6:8d:
96:be:09:af:a7:eb:de:b6:09:3e:91:c7:d7:93:37:3d:d4:30:
bf:11:20:ae:92:69:c8:3c:dc:54:73:c4:3b:71:fb:f4:0b:77:
d1:4d:f5:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:59:55 2025 by rpki-client