Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: FCOF2WEStr8/jIFNPD6N+Eclp/dEWXkgchRZooefGmU=
Subject key identifier: C3:51:7F:1D:FD:F5:14:2E:00:38:2F:B1:4D:98:0E:11:6B:35:91:5F
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 0198D54DFFCE307DC894ECAD37D389BFA6C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 15F5
Signing time: Sat 23 Aug 2025 05:01:55 +0000
Manifest this update: Sat 23 Aug 2025 05:01:55 +0000
Manifest next update: Sun 24 Aug 2025 05:01:55 +0000
Files and hashes: 1: KBxZJWrk1-bZEdk3S7yVEPMKVtM.roa (hash: BpbYbbHeyy+1nQHRcRldIZ4LwMax+kHyBfVOH0ykZeU=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: CZG8KuLR7BiQq6/DLEgUsT2ZwIQoKDUUc0yPjut/b70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:ff:ce:30:7d:c8:94:ec:ad:37:d3:89:bf:a6:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Aug 23 05:01:55 2025 GMT
Not After : Aug 24 05:01:55 2025 GMT
Subject: CN=c3517f1dfdf5142e00382fb14d980e116b35915f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:dd:f0:24:1b:69:53:c4:39:eb:b9:e1:81:f3:
43:38:00:a2:21:8a:fe:e9:53:92:9e:d0:5d:7b:e0:
3c:5e:25:f7:7a:78:47:ad:7f:4a:ad:14:81:21:13:
89:81:e3:bf:81:eb:fc:9f:74:29:42:9d:27:93:af:
64:61:a9:03:7d:4f:bd:97:26:1c:ba:1c:59:fe:37:
57:7d:77:4a:66:b4:5a:67:ae:b7:20:11:89:71:96:
57:8d:af:03:1b:29:09:48:fb:55:85:60:3c:4e:dc:
35:d5:2c:e4:3b:d2:c3:44:72:a4:71:86:5b:e4:23:
91:6b:0e:fd:8b:36:43:84:c5:76:0d:e7:b4:19:5e:
66:e6:9e:b7:7c:94:17:1d:d1:e6:7a:8d:a6:86:49:
5d:3f:8f:f6:6b:8f:39:6a:39:5b:02:87:db:a5:a0:
dd:d2:0d:ab:c6:a4:d7:ec:76:2c:e6:2c:e5:16:1e:
cc:4c:ba:2d:8d:3e:5f:04:73:18:ed:fc:4f:ff:25:
2d:08:11:4f:89:85:e9:0a:0b:6f:56:24:c6:27:41:
cb:1d:c6:28:4c:58:ab:28:c5:50:91:e9:f5:e5:16:
4d:27:ca:3d:d1:7d:ec:09:5c:41:3a:3d:35:51:65:
79:f1:a0:19:81:2d:a0:12:ef:ee:de:95:19:f8:06:
c8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:51:7F:1D:FD:F5:14:2E:00:38:2F:B1:4D:98:0E:11:6B:35:91:5F
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:94:bb:a9:66:2d:c6:41:d9:a4:1b:b8:99:19:88:01:ce:4b:
9b:86:40:ab:f5:ca:6b:92:20:2f:c8:ae:e8:d0:93:46:ec:88:
ce:d0:d8:5f:2a:f2:58:5b:45:05:02:db:96:75:ea:5c:ae:75:
fe:f5:ff:f8:83:96:fe:5b:ab:66:8e:f6:71:6e:47:bc:c0:63:
67:f1:25:e4:b8:d3:71:1d:ac:fa:bb:3d:bb:a3:18:73:db:52:
02:7e:d5:e7:a7:c2:64:82:2d:5f:f8:bf:d0:c0:6a:fb:4f:4e:
b5:ea:8f:9c:49:81:32:42:bb:ff:be:9f:9e:c7:a4:cb:ce:91:
e1:8a:5b:22:79:d6:e1:c4:ba:00:af:9b:77:26:5f:4c:2f:ed:
c8:e4:0e:05:0a:10:98:35:dc:9f:4d:af:05:ea:fa:aa:8d:ea:
24:fb:14:a6:8c:ad:b0:34:6f:a2:c5:58:b5:16:0e:1f:84:25:
01:d9:2b:d7:45:e9:62:90:f2:1d:50:59:20:ea:96:63:f8:f2:
2b:d4:eb:e9:a2:a1:7c:39:b2:c4:11:44:e4:a1:cb:90:5d:fc:
6a:7d:b5:a3:1b:f8:45:d6:d1:e0:d9:c7:21:32:41:3f:bd:a1:
ec:bd:40:a9:32:e0:40:e0:bc:85:09:e9:54:39:81:2b:55:99:
d4:3e:54:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:32:56 2025 by rpki-client