Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
File: OklF5GdkAp0lgdggwzc_pEWFVTk.mft (raw, json)
Hash identifier: K5Z/Uc9nTQqzg8/WQ6mpd1KePgY+hAjQgZSqPOyXtUA=
Subject key identifier: 7D:67:AD:69:F6:28:07:CF:B1:B4:6B:AB:35:7E:A9:35:B8:9B:6F:6D
Authority key identifier: 3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39
Certificate issuer: /CN=3a4945e46764029d2581d820c3373fa445855539
Certificate serial: 0198D705CB8742B3CD6FE1504C1C360D8729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
Manifest number: 1651
Signing time: Sat 23 Aug 2025 13:02:17 +0000
Manifest this update: Sat 23 Aug 2025 13:02:17 +0000
Manifest next update: Sun 24 Aug 2025 13:02:17 +0000
Files and hashes: 1: 6dFmm5sRY32IWZd8jLU8_s5imvY.roa (hash: udPQ8wWzpwcAiDjrHHyq/uTqqzcEbt4FowH3Qt/QIEM=)
2: LHDFKCfWLJp2mBfByLfhuS_iDkY.roa (hash: hhocfI4M747eSln+lUvkyI8Ag+8FG16kwPY8wAbPOQk=)
3: OklF5GdkAp0lgdggwzc_pEWFVTk.crl (hash: LAua4DUBvRuhljH0/f2xJ/iuobkAOD0vEt4AVogGyTU=)
4: hE4J7-nVjBP1I1amWriRZQbCRjQ.roa (hash: t96fk3QnxrV27k+4LVx0l6UARkEoivZQZo9G+qQHzNc=)
5: tVLlOiV7SvnosXMuOA6u9tK4RqI.roa (hash: /FYDglX8ng94EWH9NM8VS2sIZeZUQbmdZE0FSeyFXmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:cb:87:42:b3:cd:6f:e1:50:4c:1c:36:0d:87:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a4945e46764029d2581d820c3373fa445855539
Validity
Not Before: Aug 23 13:02:17 2025 GMT
Not After : Aug 24 13:02:17 2025 GMT
Subject: CN=7d67ad69f62807cfb1b46bab357ea935b89b6f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e5:bb:72:e6:17:6b:e9:f2:fa:f4:4f:44:fb:
f7:16:b7:78:2f:09:66:87:c1:f2:5d:0e:05:d2:a2:
34:8b:b4:26:48:59:0d:74:b4:8f:be:c3:de:e8:8e:
e9:7f:16:1e:08:c8:e5:fc:78:c9:39:70:58:0e:d3:
bb:e5:19:ec:59:f6:7b:19:3f:f5:f9:b3:e4:04:96:
34:41:55:91:59:a8:44:0f:dd:76:96:bb:8a:9c:e8:
6a:f9:51:a3:1e:7b:b2:1a:56:ce:08:fc:c4:c1:4c:
44:27:6e:70:57:d0:f1:44:d0:bd:eb:9d:4a:5a:4f:
d0:a0:85:1c:9f:6e:fa:84:ce:a1:df:52:bb:15:ef:
05:e9:ea:46:06:f2:cf:77:b1:09:a0:9d:58:40:ff:
0c:67:e5:3f:75:27:5a:33:84:a7:c4:9d:80:86:af:
14:d5:78:9d:45:b6:dd:be:84:95:33:dd:36:66:46:
7e:71:55:00:66:a7:e2:52:cb:35:9c:c3:5e:a0:26:
c2:b1:44:2e:69:c6:de:ae:76:87:63:e2:76:74:bc:
c5:aa:00:39:71:3c:67:07:67:a4:9f:1f:6c:82:61:
f6:77:90:11:d2:ba:76:a5:bb:55:f5:fb:8f:a0:ad:
8f:28:9b:0b:ce:1d:21:72:a9:00:72:a2:eb:7e:27:
24:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:67:AD:69:F6:28:07:CF:B1:B4:6B:AB:35:7E:A9:35:B8:9B:6F:6D
X509v3 Authority Key Identifier:
keyid:3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:fe:81:04:8b:5f:07:91:bb:87:7b:31:f7:11:94:e2:55:7a:
62:06:1d:0b:01:63:4c:37:d6:55:43:8b:86:4c:58:20:7a:85:
44:a3:76:77:4a:8a:00:d6:a9:90:2d:bf:bb:ff:99:56:43:c7:
0c:6b:19:de:16:09:8d:1d:af:f9:33:1f:d7:d0:70:1b:75:1f:
40:ed:a7:b1:9c:d7:7e:a1:f0:e5:55:dd:0d:7b:7a:f5:a9:ae:
35:00:d8:06:3d:4b:29:fb:df:94:b8:71:24:56:c8:f8:5f:ee:
19:bf:5a:e1:ad:90:93:c7:96:ea:29:65:f0:a4:c2:16:e8:a8:
d9:24:43:1c:14:1c:50:fd:d0:86:a1:f0:32:52:c0:c9:75:4c:
9a:de:95:b6:6a:e8:e8:5b:2b:35:8c:f5:43:7a:da:d3:e5:83:
e9:97:c9:22:14:cb:48:35:19:d6:57:0e:61:74:af:24:3e:fe:
42:2f:25:43:0d:b4:5f:49:5e:d5:37:de:db:de:87:c0:de:54:
3b:5a:9e:ae:e3:b2:0a:35:60:4c:b2:ec:8c:87:6a:f8:8e:62:
f9:06:45:e6:93:73:ec:42:ff:3a:b6:96:94:78:22:3f:c2:8c:
9c:82:83:57:b9:e7:10:56:f1:ea:fa:8c:b3:8f:21:bc:19:87:
2d:af:b0:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBcuHQrPNb+FQTBw2DYcpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDk0NWU0Njc2NDAyOWQyNTgxZDgyMGMzMzczZmE0NDU4
NTU1MzkwHhcNMjUwODIzMTMwMjE3WhcNMjUwODI0MTMwMjE3WjAzMTEwLwYDVQQD
Eyg3ZDY3YWQ2OWY2MjgwN2NmYjFiNDZiYWIzNTdlYTkzNWI4OWI2ZjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruW7cuYXa+ny+vRPRPv3Frd4Lwlm
h8HyXQ4F0qI0i7QmSFkNdLSPvsPe6I7pfxYeCMjl/HjJOXBYDtO75RnsWfZ7GT/1
+bPkBJY0QVWRWahED912lruKnOhq+VGjHnuyGlbOCPzEwUxEJ25wV9DxRNC9651K
Wk/QoIUcn276hM6h31K7Fe8F6epGBvLPd7EJoJ1YQP8MZ+U/dSdaM4SnxJ2Ahq8U
1XidRbbdvoSVM902ZkZ+cVUAZqfiUss1nMNeoCbCsUQuacbernaHY+J2dLzFqgA5
cTxnB2eknx9sgmH2d5AR0rp2pbtV9fuPoK2PKJsLzh0hcqkAcqLrfick6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1nrWn2KAfPsbRrqzV+qTW4m29tMB8GA1UdIwQY
MBaAFDpJReRnZAKdJYHYIMM3P6RFhVU5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1Njgt
MzM2YWM5NDU2NDY0LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1NjgtMzM2YWM5NDU2NDY0
LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm/6BBItf
B5G7h3sx9xGU4lV6YgYdCwFjTDfWVUOLhkxYIHqFRKN2d0qKANapkC2/u/+ZVkPH
DGsZ3hYJjR2v+TMf19BwG3UfQO2nsZzXfqHw5VXdDXt69amuNQDYBj1LKfvflLhx
JFbI+F/uGb9a4a2Qk8eW6ill8KTCFuio2SRDHBQcUP3QhqHwMlLAyXVMmt6Vtmro
6FsrNYz1Q3ra0+WD6ZfJIhTLSDUZ1lcOYXSvJD7+Qi8lQw20X0le1Tfe296HwN5U
O1qeruOyCjVgTLLsjIdq+I5i+QZF5pNz7EL/OraWlHgiP8KMnIKDV7nnEFbx6vqM
s48hvBmHLa+wAA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 21:56:43 2025 by rpki-client