Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.mft
File: OKDIgmwYvNUTqqflIIH_n9N5Gfs.mft (raw, json)
Hash identifier: O8edE+fdQb31bTq52mouVKqHrEA6K26ySvVZBf2aDMQ=
Subject key identifier: F8:6C:E3:9D:94:CF:0A:B2:A3:07:61:EB:B3:13:A3:72:B4:5A:30:25
Authority key identifier: 38:A0:C8:82:6C:18:BC:D5:13:AA:A7:E5:20:81:FF:9F:D3:79:19:FB
Certificate issuer: /CN=38a0c8826c18bcd513aaa7e52081ff9fd37919fb
Certificate serial: 01976BBD541C2911E55D815518B9E6FB4F9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKDIgmwYvNUTqqflIIH_n9N5Gfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.mft
Manifest number: 14F4
Signing time: Sat 14 Jun 2025 00:00:59 +0000
Manifest this update: Sat 14 Jun 2025 00:00:59 +0000
Manifest next update: Sun 15 Jun 2025 00:00:59 +0000
Files and hashes: 1: KBKNSo54C-UjedwUMFB9xB41sio.roa (hash: EOnhGNtgG2NlhPSt6QkJfBoHbT869foRrNlEhdeoqqA=)
2: OKDIgmwYvNUTqqflIIH_n9N5Gfs.crl (hash: V5TTG8uSmpPoSkiAm+lhPk4eTYTXOxHddIekMY/Vdpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKDIgmwYvNUTqqflIIH_n9N5Gfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:54:1c:29:11:e5:5d:81:55:18:b9:e6:fb:4f:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a0c8826c18bcd513aaa7e52081ff9fd37919fb
Validity
Not Before: Jun 14 00:00:59 2025 GMT
Not After : Jun 15 00:00:59 2025 GMT
Subject: CN=f86ce39d94cf0ab2a30761ebb313a372b45a3025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4c:c5:43:6f:e6:73:d8:65:ca:18:be:c2:b7:
b1:aa:90:23:38:5e:1c:1e:ca:2a:30:a2:52:41:3c:
b2:b6:9e:bb:f3:eb:3e:61:20:45:1e:bb:fe:39:aa:
9c:62:7f:ee:3d:9f:33:ea:d5:68:74:14:96:b3:0b:
26:24:74:b8:b7:8d:65:fd:46:d9:a1:79:23:59:e3:
04:4a:09:c7:93:68:9d:24:98:fc:d3:17:0b:e0:39:
ff:92:07:09:3b:3d:22:ee:ab:86:35:11:e6:eb:3d:
4f:da:fd:e4:5b:fa:14:db:05:01:af:61:10:22:75:
20:c3:b1:74:12:c5:45:8c:28:97:78:2a:70:9f:2d:
a9:56:97:8f:8a:ba:4f:76:49:43:3f:b3:4b:a9:ff:
ec:2d:10:39:8d:a2:6d:40:e6:f3:45:cc:b3:db:0a:
34:62:67:3e:87:2f:b6:5c:4a:72:ed:2e:de:4f:95:
27:0b:09:e2:9d:ef:fc:b4:0f:69:fe:7a:6a:db:73:
b4:d4:1b:19:35:e2:88:e8:44:ab:a8:e9:72:2f:e7:
45:fa:a0:5e:b4:ef:8d:8d:40:a0:da:bd:cb:c7:a0:
7c:88:0f:5c:dc:e0:4a:0b:5b:ce:99:74:81:f6:b1:
42:e1:1a:c4:49:9e:df:97:55:58:ea:11:9d:05:f1:
96:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:6C:E3:9D:94:CF:0A:B2:A3:07:61:EB:B3:13:A3:72:B4:5A:30:25
X509v3 Authority Key Identifier:
keyid:38:A0:C8:82:6C:18:BC:D5:13:AA:A7:E5:20:81:FF:9F:D3:79:19:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKDIgmwYvNUTqqflIIH_n9N5Gfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:ff:3f:f9:1c:c8:b2:a2:2e:b0:4e:6c:7f:46:a3:e3:48:f2:
1e:69:b4:50:3f:b3:78:31:65:eb:80:5d:85:45:09:5e:85:0d:
53:0a:b7:6a:94:cc:db:ec:33:ff:d4:5e:51:c0:08:db:7c:f6:
f7:29:94:50:e8:17:7a:02:33:6e:dd:2a:c5:d1:6c:cc:2e:ef:
97:13:fe:07:b5:93:a1:70:0b:cc:50:33:be:05:96:01:16:67:
e2:1d:0a:c1:e8:83:0b:d5:a1:60:fc:f8:c8:34:98:21:2a:33:
dd:2d:21:5e:f5:18:9b:9a:ea:80:04:a0:71:fc:3e:c1:38:61:
c7:9a:0f:ae:c5:05:b3:e9:24:f8:34:55:d3:bc:04:47:5e:85:
c0:bb:3e:8f:15:45:d5:11:f0:19:9b:6f:0c:b4:10:59:50:9b:
fc:03:00:c3:75:8a:aa:3a:86:43:37:6e:a0:44:f8:67:2e:94:
7e:4e:c3:2a:2b:f5:9c:88:2a:7d:90:2d:96:f3:b0:06:7a:05:
fb:e9:00:9f:85:36:ba:87:4e:83:34:31:99:f6:60:52:77:af:
85:2b:ea:bb:34:45:7d:ff:6f:57:bb:b5:9f:73:cc:7e:89:fd:
b6:30:07:c7:0f:22:5f:8a:45:60:9c:9d:1f:e0:d3:47:e3:33:
b8:c6:c3:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:50:44 2025 by rpki-client