Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json)
Hash identifier: wL8XoRj48OYKkKd1enjCQug6owwrNVinB3w/FHEDlGs=
Subject key identifier: 23:C2:BC:83:70:F1:A8:98:D5:20:8E:58:96:27:57:10:61:AC:38:D1
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 0198D4725C4F815C46332A959F57C8543A8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 01:02:01 +0000
Manifest this update: Sat 23 Aug 2025 01:02:01 +0000
Manifest next update: Sun 24 Aug 2025 01:02:01 +0000
Files and hashes: 1: 5r0GrYVoAysKJDuHDPTj-1MVWCQ.roa (hash: XAzmjxdrpIx5mLyehPHseK/+jaakSPTIZ07v9R3ktfQ=)
2: 7gpUO99SfoacmIWvz5o-z3ESpPc.roa (hash: jBBU4x8HtuG0AJgjijT3pv++S+IgCjRtCv3AjftIABQ=)
3: JOJ9b2WkEIXJpzQl9CDXk_CHY94.roa (hash: SAmYAd0xvQRGMk1x62ICIfIVJyfWTunRcVeOhZ1E3l0=)
4: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: i9I1S5eysSnaX6OxfpOFabR/ZFi0Et4hHstTRllOQqI=)
5: _MMbboen6fjGZxdl1sjrAWa0F6o.roa (hash: lasMNF+CDNUkmhfnkFUMcQ2+Q/sn4RwC142SJaDCsYo=)
6: qTT5EzYYejgHx_-gozkgtiyWSxE.roa (hash: WcMM5EKO8L7zVDvgOOXzTCPHLyfkpMtxpa7CTFKHemk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:5c:4f:81:5c:46:33:2a:95:9f:57:c8:54:3a:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: Aug 23 01:02:01 2025 GMT
Not After : Aug 24 01:02:01 2025 GMT
Subject: CN=23c2bc8370f1a898d5208e589627571061ac38d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c7:0e:ff:f0:3b:2c:6b:d7:6f:dd:b0:68:7c:
a2:79:f9:80:6c:49:55:79:5d:9c:cf:18:e8:99:87:
fd:a1:d1:d2:48:c2:48:fe:05:f3:cd:02:f1:94:8a:
68:70:d8:39:81:21:0b:0b:c9:2a:95:62:03:f8:7f:
8a:5e:6b:bb:08:b9:41:c9:a5:5b:9b:07:56:37:47:
25:a1:e4:2f:8e:1a:c4:de:bd:b3:23:e0:31:aa:71:
7e:ba:af:42:ee:62:3f:bf:d7:4b:b5:ce:43:27:9d:
8a:bc:d4:41:83:06:9e:03:c7:a9:20:f2:e9:b1:4a:
e5:2f:63:4e:fd:ee:f7:dd:05:cb:7f:41:9a:32:65:
78:2c:4a:5c:30:ed:99:75:f1:56:da:51:de:68:25:
84:8b:a9:4d:71:fd:c5:27:65:7f:b7:1a:51:30:d4:
2a:2c:f5:e2:92:35:54:c4:d0:15:e7:b2:ad:82:e1:
60:00:55:c6:42:dd:91:b6:63:cd:b4:2e:36:b0:2b:
2e:50:55:c9:02:44:fa:03:61:20:dd:d1:65:13:48:
80:7b:2e:0b:ee:ee:c3:ca:d5:b1:6c:0f:1e:28:0a:
d4:d5:aa:33:45:27:ea:a3:cd:c6:8b:8f:0e:02:0c:
f4:02:56:35:c4:19:b7:73:b3:15:57:ea:9b:fd:3f:
9e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C2:BC:83:70:F1:A8:98:D5:20:8E:58:96:27:57:10:61:AC:38:D1
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:d0:3a:79:aa:41:2b:51:65:41:eb:69:90:b3:18:f8:e2:bb:
51:5d:43:63:cb:2d:ba:42:3d:86:14:ce:64:63:47:79:ba:23:
08:82:87:cf:7f:3b:f2:7e:57:8a:bc:a0:ed:af:45:27:5b:96:
0c:86:69:83:42:77:d5:d6:24:97:c8:0a:29:c7:b6:24:24:fd:
03:ae:65:d6:8b:af:a9:99:6d:21:a1:a6:03:57:c4:ff:8f:7b:
11:b1:e3:64:e6:f1:2e:69:c6:26:2f:2c:a8:dd:a6:99:2c:2f:
2a:a8:6e:d5:e2:00:97:2e:22:e6:dd:5d:21:1b:61:8f:73:48:
af:0a:48:c5:7e:e7:2b:ad:e2:53:1c:da:d2:55:7b:71:e8:b2:
91:4f:1d:fb:9c:96:18:85:a1:5a:26:c6:4e:cb:60:56:32:12:
21:fa:e5:1f:c2:ce:b2:5c:8d:e3:db:05:b6:57:d6:bb:53:32:
23:dc:3e:ed:23:bc:c1:3b:d0:38:58:a6:44:07:5b:f8:7f:dd:
4a:8c:8a:18:72:0b:32:fc:3b:da:5a:2e:f2:2a:c8:ba:26:e1:
02:2f:e2:b9:5e:51:ed:5a:c3:25:3d:b6:46:d0:4a:5d:e3:c8:
7b:f3:d3:03:0b:12:53:b4:e9:13:42:4c:79:e8:5f:e3:be:4f:
d5:fe:a7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:33 2025 by rpki-client