Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: +/9J3XbbyTs4ocC74rMMN+oifdHN7pis+Tfduq5v6AM=
Subject key identifier: 06:AA:EF:61:98:88:2C:7A:0F:FD:A7:ED:1A:15:60:81:66:02:0D:5D
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 0199FAD7BACF6088D2545658239C00F93D28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 168D
Signing time: Sun 19 Oct 2025 05:01:06 +0000
Manifest this update: Sun 19 Oct 2025 05:01:06 +0000
Manifest next update: Mon 20 Oct 2025 05:01:06 +0000
Files and hashes: 1: KBxZJWrk1-bZEdk3S7yVEPMKVtM.roa (hash: BpbYbbHeyy+1nQHRcRldIZ4LwMax+kHyBfVOH0ykZeU=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: 5pXVaUc8ljjSAi+keJm136rezLo1VlyfPKlvYHS6D+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:ba:cf:60:88:d2:54:56:58:23:9c:00:f9:3d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Oct 19 05:01:06 2025 GMT
Not After : Oct 20 05:01:06 2025 GMT
Subject: CN=06aaef6198882c7a0ffda7ed1a15608166020d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:45:ce:41:43:66:ce:98:c7:59:23:aa:1b:3c:
4e:69:7d:4c:60:15:0e:4b:1e:f6:95:e2:b9:83:92:
e6:a3:82:2e:dd:e1:46:c8:2d:ba:73:9c:e5:5e:9d:
b1:8b:43:45:79:1f:8b:c4:eb:53:dc:0d:72:a3:ee:
ce:60:89:f3:8c:5e:4c:75:28:d4:41:1c:e3:af:6d:
96:07:a7:a9:87:4f:82:d8:6f:6a:9a:d9:6b:37:fd:
c4:ed:6a:61:84:d5:52:b9:fa:26:64:03:dc:bf:72:
76:aa:33:08:de:68:f3:3c:92:e8:18:ce:bc:8d:a7:
af:4a:c5:2f:38:d7:79:2d:0b:b2:75:5b:fa:21:4d:
6f:69:19:a4:32:b0:36:83:44:2a:29:a1:53:80:27:
0e:57:31:98:66:11:9e:6a:8a:58:ed:11:94:a0:91:
89:2e:cb:33:71:4d:e3:6e:0e:bb:96:90:70:86:39:
50:be:d4:77:79:48:0f:bb:ec:df:55:7c:e0:88:c4:
ee:dd:8d:31:ca:b2:2d:a7:99:af:eb:46:ba:bf:62:
e3:6b:94:48:7c:78:35:ac:c3:61:10:6d:04:6e:a5:
14:18:3e:62:45:c9:88:ee:91:39:99:a8:df:69:5e:
a2:ac:50:6b:40:06:3a:b6:75:69:0b:e4:9a:e3:0e:
be:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:AA:EF:61:98:88:2C:7A:0F:FD:A7:ED:1A:15:60:81:66:02:0D:5D
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:1a:d9:00:ae:09:e2:b4:09:7d:ce:f2:c3:1e:ed:8f:0b:75:
5a:05:b9:6e:9d:49:e3:97:68:fe:8d:a3:d3:ea:38:48:6b:65:
d7:5f:60:c7:27:a5:85:01:9a:d0:ba:f5:4f:c1:11:25:12:d0:
78:a3:e4:bb:39:bd:5e:18:3c:3b:0d:c6:89:81:6d:8b:db:d1:
8c:f1:3a:e6:de:20:93:78:35:07:70:38:c4:08:60:f3:1f:a9:
11:3e:84:4d:58:9f:1a:ec:99:1c:0f:e4:66:6a:64:2c:3d:34:
f3:b7:2c:7a:d2:1b:46:1a:d4:96:93:5f:23:b4:d5:a5:f8:bf:
45:a3:e9:85:55:6b:ca:71:c0:2d:3e:cb:2e:6e:e6:d0:01:19:
f9:eb:b7:fc:7b:19:fd:de:3e:5c:25:f3:a2:73:bd:af:87:ad:
c3:83:d2:fc:b7:cc:c4:78:a9:df:ee:a4:ea:36:a7:cb:42:96:
4f:8a:7d:cb:02:63:b3:3e:4f:30:8c:a2:3b:6d:32:e4:0e:0f:
15:94:fb:6c:65:cf:45:fd:8d:2f:6c:9b:4e:1c:1f:44:61:8b:
a7:d4:cf:b4:37:aa:71:0f:4a:69:4f:fa:08:cb:b9:a9:ef:11:
a0:b2:d1:27:e6:f3:1a:f2:99:2e:83:d2:d6:42:8a:c1:22:11:
bf:76:f3:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:28 2025 by rpki-client