Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json)
Hash identifier: 4UP6f3L+ur1mOtsHfoQrOAPiSJDygz6m4cRJeWmEmJE=
Subject key identifier: BD:B1:0C:ED:78:53:E0:A8:A5:F9:58:E9:FC:D1:FB:C0:65:05:39:24
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 0197B6A21AA6F471C65150347DDD13534B5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
Manifest number: 15B9
Signing time: Sat 28 Jun 2025 13:02:46 +0000
Manifest this update: Sat 28 Jun 2025 13:02:46 +0000
Manifest next update: Sun 29 Jun 2025 13:02:46 +0000
Files and hashes: 1: 5r0GrYVoAysKJDuHDPTj-1MVWCQ.roa (hash: XAzmjxdrpIx5mLyehPHseK/+jaakSPTIZ07v9R3ktfQ=)
2: 7gpUO99SfoacmIWvz5o-z3ESpPc.roa (hash: jBBU4x8HtuG0AJgjijT3pv++S+IgCjRtCv3AjftIABQ=)
3: JOJ9b2WkEIXJpzQl9CDXk_CHY94.roa (hash: SAmYAd0xvQRGMk1x62ICIfIVJyfWTunRcVeOhZ1E3l0=)
4: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: BHc8BYhGzz/qwAiFmZp1o4O4lJe3juJh4lcIZrFB0Tw=)
5: _MMbboen6fjGZxdl1sjrAWa0F6o.roa (hash: lasMNF+CDNUkmhfnkFUMcQ2+Q/sn4RwC142SJaDCsYo=)
6: qTT5EzYYejgHx_-gozkgtiyWSxE.roa (hash: WcMM5EKO8L7zVDvgOOXzTCPHLyfkpMtxpa7CTFKHemk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:1a:a6:f4:71:c6:51:50:34:7d:dd:13:53:4b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: Jun 28 13:02:46 2025 GMT
Not After : Jun 29 13:02:46 2025 GMT
Subject: CN=bdb10ced7853e0a8a5f958e9fcd1fbc065053924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:61:c5:4b:ba:ec:4a:44:fb:89:5f:6e:18:e7:
e9:8b:f8:cd:75:da:97:4d:5c:38:8d:c0:ce:1e:3d:
85:60:e5:3c:ee:90:01:b2:ea:67:80:bb:96:38:c2:
8e:c1:29:e1:c0:8e:7f:77:31:97:20:50:6d:01:48:
78:0d:95:c4:66:91:fb:b7:09:68:9a:56:9a:0d:5e:
55:f0:e2:9d:ee:e8:3a:70:24:6b:db:d4:6f:c0:fb:
4b:38:83:06:a5:ef:73:98:de:76:1b:91:33:ea:5b:
0d:3f:7d:e3:fe:6a:ba:c5:88:85:3c:7d:e0:2c:9f:
ab:f5:51:e3:cc:13:d2:47:c3:3c:22:b8:4d:2a:81:
32:52:da:d3:0c:b5:c0:47:46:40:ec:1d:40:9c:68:
8e:4e:23:75:f4:b2:a7:d4:2f:bd:1c:39:01:89:26:
69:25:65:e4:07:10:3e:ef:26:b6:8d:4a:66:f1:36:
6f:f5:92:a6:26:c0:c9:6a:57:fb:b5:3a:fa:a6:34:
54:2c:60:35:76:32:b6:c1:0d:01:4d:a1:b7:14:a5:
85:ab:26:52:ea:7e:15:7b:dd:57:ef:80:d6:8a:11:
91:ae:3a:7d:18:9a:db:2f:6c:94:a8:a8:c8:96:27:
07:e6:73:d3:9d:a3:7c:d4:76:5b:58:5f:9b:cc:a1:
d7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B1:0C:ED:78:53:E0:A8:A5:F9:58:E9:FC:D1:FB:C0:65:05:39:24
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:f4:c5:61:4d:05:11:b4:82:34:b9:3c:47:88:8b:e7:36:86:
09:d0:21:2d:56:b8:b6:36:aa:70:c5:03:6d:21:e1:22:e9:a9:
dd:5a:47:86:a8:d5:9d:43:90:88:42:f6:70:fc:aa:8d:34:43:
21:81:05:7c:a7:d1:fd:be:21:b6:41:26:ee:3c:22:7f:10:c2:
a0:1f:b0:55:a6:97:31:f7:44:f7:d7:17:51:e4:fc:3e:76:04:
4a:fa:f0:e4:12:79:3b:24:65:1b:88:a0:93:88:14:2b:ef:5c:
87:ea:02:e3:c3:90:aa:8b:11:ee:47:77:f8:57:ee:71:e2:aa:
cb:a8:ad:a9:0d:b4:a1:83:27:4b:28:4c:18:d6:48:55:54:0d:
56:3d:58:79:b4:30:4f:4d:ee:39:8a:86:73:90:bb:7e:60:a5:
5b:e2:34:85:38:13:90:e3:04:3e:09:2f:5e:41:64:d0:7c:0a:
72:a8:83:b0:5b:67:b1:9f:1f:a5:5a:53:d6:fc:95:62:9d:5e:
31:9c:0c:76:01:fc:ff:c5:01:6b:6b:bc:4b:3c:b9:f1:ce:8c:
6b:0f:e4:df:b9:b5:29:85:ca:c2:dc:16:c0:2b:45:3a:75:0b:
f3:d0:c5:0d:09:e3:7d:be:58:3f:79:d9:91:5e:d4:45:5e:97:
e0:49:bf:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:35:44 2025 by rpki-client