Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
File: oktI7cejJdfxrg8lfA4oNRcbya4.mft (raw, json)
Hash identifier: HKUWizqCy7VTH/J3eNKzxZRxVoMtCU+Q2wHA4BaZiKY=
Subject key identifier: C0:CE:D8:EC:E0:D8:B0:56:36:F4:B6:9B:26:D8:6B:7C:87:B8:8B:CA
Authority key identifier: A2:4B:48:ED:C7:A3:25:D7:F1:AE:0F:25:7C:0E:28:35:17:1B:C9:AE
Certificate issuer: /CN=a24b48edc7a325d7f1ae0f257c0e2835171bc9ae
Certificate serial: 0197801FAF092E577409561C3D7182B23446
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
Manifest number: 15A1
Signing time: Tue 17 Jun 2025 23:00:49 +0000
Manifest this update: Tue 17 Jun 2025 23:00:49 +0000
Manifest next update: Wed 18 Jun 2025 23:00:49 +0000
Files and hashes: 1: B0JGrIFbhcfZ9k0gLZbKOC7BRts.roa (hash: uan7Xlr3tx5QNJHwIPILAsu/3eaM2Ksrcs3oBa0JKWg=)
2: B6qJHXpeC3IEJy34_URs46RdWiA.roa (hash: toHD5hhCltD6s8AbgpGot0TJcoWUl/7kkl/+KkMGZ/I=)
3: X5BI_4m66OA1gTOSPBNCsDRd-Pw.roa (hash: 3oZT1fDyGLqNouLkyRSol/W9I5a1RPKZknAigOCTTYM=)
4: oktI7cejJdfxrg8lfA4oNRcbya4.crl (hash: ksTei1bBPWqoeLEWHaCxJbDoBpyGVBi6Y1QMExTG2g8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:80:1f:af:09:2e:57:74:09:56:1c:3d:71:82:b2:34:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24b48edc7a325d7f1ae0f257c0e2835171bc9ae
Validity
Not Before: Jun 17 23:00:49 2025 GMT
Not After : Jun 18 23:00:49 2025 GMT
Subject: CN=c0ced8ece0d8b05636f4b69b26d86b7c87b88bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:97:73:52:bb:77:4a:15:67:b0:47:b7:1a:1c:
e3:e1:1e:db:9f:05:e9:7d:38:dd:3f:03:8f:96:f6:
e2:23:35:f0:60:a7:5c:3b:74:e9:f4:e6:82:38:64:
cf:95:f2:e5:e6:01:c9:46:2b:2e:d3:e7:8e:1f:07:
05:ce:bb:d7:5c:6d:08:af:8e:b9:73:81:50:df:44:
2e:45:2a:09:60:1a:de:dd:30:ea:39:f2:e8:39:ef:
22:cf:16:47:ef:28:d4:c8:1d:84:86:44:b5:32:32:
d2:92:37:a0:6a:5d:51:20:ff:28:7e:cb:9b:25:97:
64:7a:50:7f:b9:90:6c:c2:87:e5:0f:86:04:44:fc:
ba:a7:ee:32:ae:88:d4:c2:00:ff:cd:88:e4:c4:ed:
8f:96:d2:cd:79:34:9f:ef:de:4d:f3:bc:a8:40:1c:
a6:5e:a4:02:f3:98:f5:3f:3f:19:c1:bd:0d:73:a2:
ef:08:1d:5d:e4:0e:e6:c3:16:5c:69:bb:11:18:85:
24:22:ab:85:c7:3b:63:86:96:d8:e1:c1:d9:8e:a3:
f5:3d:c4:29:b8:cc:e5:15:11:ec:fa:7b:8b:08:3b:
9e:e4:6b:5e:d5:85:9b:2e:25:be:57:d3:f1:b3:bc:
ff:c6:ca:df:ef:a2:e0:f9:18:62:24:7e:f6:51:45:
34:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:CE:D8:EC:E0:D8:B0:56:36:F4:B6:9B:26:D8:6B:7C:87:B8:8B:CA
X509v3 Authority Key Identifier:
keyid:A2:4B:48:ED:C7:A3:25:D7:F1:AE:0F:25:7C:0E:28:35:17:1B:C9:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:46:9e:5a:b7:94:ac:87:cf:f6:d2:dc:8f:70:b6:0a:7e:92:
ff:96:ea:82:3a:f7:ac:95:76:f9:92:0f:40:24:ae:6f:43:ff:
0e:b5:e1:fa:4c:7f:30:0d:14:4a:4a:ee:06:06:d7:18:cc:01:
f3:8e:a5:41:1c:96:5b:ac:ed:3b:c6:0a:cf:b5:69:57:84:45:
50:50:22:0e:c8:31:a9:4e:ec:f4:30:38:61:b8:f0:02:c3:e6:
89:bf:f9:e9:11:5e:b9:40:df:97:e4:b3:15:19:c3:c4:c7:c4:
2a:b5:c9:e1:b3:97:10:7c:86:aa:47:d9:6a:05:6d:e5:aa:90:
b6:dd:47:89:66:b2:46:d2:ad:fd:a9:cd:bb:21:89:d8:0c:fd:
cf:0f:e5:37:1d:70:b9:82:22:f1:ab:22:7b:e1:b9:a5:61:82:
77:a9:f3:8a:1c:28:98:88:6b:6e:69:8f:54:be:eb:01:eb:8d:
0a:e1:ff:ee:77:12:8e:df:43:ab:df:57:b1:47:be:5a:5b:c9:
1c:2d:07:9c:6b:05:0a:0c:ea:99:24:4e:25:85:8d:a4:36:c9:
89:51:8b:c3:aa:ef:3f:46:40:5c:42:e2:98:84:6b:02:06:08:
0a:c4:38:cd:dc:98:1e:97:be:45:a1:b6:7e:a5:f6:a5:05:49:
be:9b:f3:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 08:02:54 2025 by rpki-client