Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: +rSyQ/CMOW1Vz3Zc4MXLNxKUY0kgu4oqVWkHfLaRRrI=
Subject key identifier: A7:5D:1F:B4:96:90:B0:0B:65:3C:A3:E2:CE:8B:3F:9B:AA:3B:DF:6A
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 0197B77C944361317913FE4C386FA928A192
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 1561
Signing time: Sat 28 Jun 2025 17:01:24 +0000
Manifest this update: Sat 28 Jun 2025 17:01:24 +0000
Manifest next update: Sun 29 Jun 2025 17:01:24 +0000
Files and hashes: 1: KBxZJWrk1-bZEdk3S7yVEPMKVtM.roa (hash: BpbYbbHeyy+1nQHRcRldIZ4LwMax+kHyBfVOH0ykZeU=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: mIAMwHk0nkRXedWnUpXVxrdAms/9jjQFuuYkPVcerPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:94:43:61:31:79:13:fe:4c:38:6f:a9:28:a1:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Jun 28 17:01:24 2025 GMT
Not After : Jun 29 17:01:24 2025 GMT
Subject: CN=a75d1fb49690b00b653ca3e2ce8b3f9baa3bdf6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6c:65:0c:32:a6:97:f3:16:e3:bd:b8:d4:7c:
70:75:f2:7c:a8:d1:6a:4f:5e:83:48:19:29:cf:21:
16:37:bb:d4:51:7f:c2:df:dd:10:b5:45:bd:8c:3a:
67:f2:6e:47:b7:71:f1:2a:1c:6d:63:25:7b:bc:b7:
a2:ba:40:ac:f2:91:f3:70:5a:83:ee:10:8c:0f:6b:
b0:51:eb:4a:8f:50:3a:9b:f2:93:87:51:dd:1d:93:
64:eb:c8:59:a9:87:df:da:55:36:47:ab:0d:dd:4d:
3e:1d:c6:bc:be:e4:2a:ce:d2:a9:b5:69:57:59:0a:
ff:82:da:06:14:30:d4:17:13:1c:7f:4b:5f:6d:05:
58:20:92:b3:1e:8a:98:3f:07:16:07:93:29:b8:2d:
18:58:cd:0c:26:30:1a:d7:92:15:14:25:02:af:cd:
3d:23:08:98:de:5f:b5:74:dd:db:8c:b4:ab:14:9c:
d5:bb:e2:8e:c4:be:ed:fb:84:cb:a1:d8:7b:6f:0c:
be:25:70:54:69:0b:a2:f4:3b:d4:d0:32:cf:92:90:
9d:26:91:65:51:5e:bf:88:8d:76:3a:94:63:8a:ab:
a3:2d:30:80:e6:d6:2f:e7:65:51:02:b4:b6:86:2d:
4e:b5:b1:86:fb:e4:35:65:3a:98:4f:79:fd:e8:6f:
b3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:5D:1F:B4:96:90:B0:0B:65:3C:A3:E2:CE:8B:3F:9B:AA:3B:DF:6A
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:19:2a:ba:1f:d8:5a:84:7a:83:cf:01:18:71:36:e2:0b:ba:
f4:a5:fa:70:24:b0:76:46:0d:71:92:42:7c:5d:f8:03:f6:88:
47:f1:55:e7:7f:12:a4:c8:89:c8:7e:6e:fe:ab:bf:f9:56:c7:
f3:dd:92:df:3a:08:6c:14:d2:ee:aa:d4:61:9f:3f:08:9a:bc:
17:9c:2a:ab:13:87:59:22:a5:8c:a5:e1:16:4f:87:4d:a5:2e:
1f:74:eb:c8:6d:5b:6e:38:f3:f5:3d:ff:1d:05:25:76:f8:e1:
bc:45:f5:74:81:c9:e5:29:ed:2a:e2:32:58:df:39:ab:3a:09:
9c:e4:9b:6e:7e:28:63:c5:2b:4c:0c:60:77:1a:ab:87:42:77:
c4:a4:b5:43:7d:55:21:3c:7f:ca:db:0a:66:af:a2:a2:89:67:
0e:bf:42:25:b1:e9:ea:30:a6:2f:f5:14:09:f4:b1:d6:c8:4e:
b8:15:ff:7f:35:e4:32:31:cd:97:c7:0a:25:72:6e:6a:54:0a:
9f:8a:5e:6b:fb:88:db:9a:9b:7c:3a:bb:a0:68:27:1d:35:39:
99:45:42:1d:63:5a:40:4a:fa:49:5d:05:22:5b:8a:45:08:8d:
20:2a:24:56:19:92:bf:4d:67:e3:4c:5a:92:b5:86:29:66:b1:
b8:f2:33:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:37:13 2025 by rpki-client