Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
File: oktI7cejJdfxrg8lfA4oNRcbya4.mft (raw, json)
Hash identifier: KtM5ITFlKoxMceMlq6ZOd0IZ+XDfRdK1X9pFKuctKqA=
Subject key identifier: AE:D3:C1:70:6E:40:60:D8:CB:A1:C7:0A:48:E5:0D:93:AF:FA:79:FE
Authority key identifier: A2:4B:48:ED:C7:A3:25:D7:F1:AE:0F:25:7C:0E:28:35:17:1B:C9:AE
Certificate issuer: /CN=a24b48edc7a325d7f1ae0f257c0e2835171bc9ae
Certificate serial: 01989448A4752E95746B561FBA71FDA91539
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
Manifest number: 1630
Signing time: Sun 10 Aug 2025 14:00:45 +0000
Manifest this update: Sun 10 Aug 2025 14:00:45 +0000
Manifest next update: Mon 11 Aug 2025 14:00:45 +0000
Files and hashes: 1: B0JGrIFbhcfZ9k0gLZbKOC7BRts.roa (hash: uan7Xlr3tx5QNJHwIPILAsu/3eaM2Ksrcs3oBa0JKWg=)
2: B6qJHXpeC3IEJy34_URs46RdWiA.roa (hash: toHD5hhCltD6s8AbgpGot0TJcoWUl/7kkl/+KkMGZ/I=)
3: X5BI_4m66OA1gTOSPBNCsDRd-Pw.roa (hash: 3oZT1fDyGLqNouLkyRSol/W9I5a1RPKZknAigOCTTYM=)
4: oktI7cejJdfxrg8lfA4oNRcbya4.crl (hash: CcYRhT3D1lQkVwg7zXLsMq1afepKBvlvA5dW8vP7CUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 14:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:48:a4:75:2e:95:74:6b:56:1f:ba:71:fd:a9:15:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24b48edc7a325d7f1ae0f257c0e2835171bc9ae
Validity
Not Before: Aug 10 14:00:45 2025 GMT
Not After : Aug 11 14:00:45 2025 GMT
Subject: CN=aed3c1706e4060d8cba1c70a48e50d93affa79fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:69:a2:05:7a:9a:78:9d:09:2f:e3:ea:56:64:
eb:57:d5:c7:ef:5f:f2:eb:80:a2:26:a5:7b:32:97:
3a:91:24:3a:31:79:cd:bd:4c:20:ac:0b:5f:8c:f4:
b4:92:7b:de:24:07:9a:23:8f:28:a2:2c:cd:e6:52:
69:ca:c3:41:d4:06:33:f6:a8:6b:ce:0e:38:3e:39:
18:8a:0b:c5:8e:e0:fa:07:6e:54:de:7a:7d:12:cc:
2d:c2:15:4e:59:f2:b9:dd:ac:a7:3b:75:c9:a4:80:
c9:20:69:ed:01:be:11:3a:db:6c:2c:35:3f:b7:07:
7f:09:f2:ff:e0:81:5a:c9:eb:9c:0e:a5:b3:83:97:
c6:d7:32:db:0b:84:46:11:87:20:5e:87:f4:5a:d2:
af:5e:35:5f:14:b7:00:3e:ef:28:17:96:68:6d:66:
71:45:8b:e9:49:72:a3:7f:45:4b:d9:08:63:72:84:
b0:64:d8:a9:0a:36:06:88:3c:fb:fc:1f:30:e3:9a:
d8:68:2e:db:cb:42:17:ff:65:d2:f1:7b:44:be:4c:
e5:32:07:bb:eb:49:af:06:09:85:d6:f7:66:d6:54:
71:13:ee:1a:6c:3d:21:40:a7:75:35:40:c0:0b:72:
b4:7b:57:dc:00:0d:d9:ca:1a:92:c4:0f:e2:6a:05:
46:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D3:C1:70:6E:40:60:D8:CB:A1:C7:0A:48:E5:0D:93:AF:FA:79:FE
X509v3 Authority Key Identifier:
keyid:A2:4B:48:ED:C7:A3:25:D7:F1:AE:0F:25:7C:0E:28:35:17:1B:C9:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:5f:9b:d7:5c:e5:fd:80:a7:0f:32:85:20:fd:8f:cb:92:5c:
06:93:e9:26:44:83:c6:e9:80:81:4a:44:84:d9:b8:ae:e4:bc:
22:f8:86:9f:f3:2e:97:07:68:42:1a:68:60:a9:b5:36:63:2c:
ae:84:d4:99:84:04:48:bb:70:76:65:1c:db:88:f8:18:95:38:
20:38:7f:53:ea:b2:a4:2a:ac:96:44:8b:8c:b1:8d:02:1e:d9:
76:0a:b4:6a:f3:13:fb:78:d9:5c:2b:ff:4e:49:31:56:dd:ae:
1f:1a:0e:60:d8:bb:57:fa:e3:02:19:d9:3a:a9:60:f3:21:c0:
e8:bf:13:54:1d:a1:45:ac:7a:1b:73:fd:4e:67:1d:0a:05:84:
b3:78:db:70:7b:71:7d:cf:40:eb:33:1d:39:ad:0c:1d:f4:ea:
84:54:af:c7:4c:fc:95:87:13:a2:32:fc:b7:5a:cd:29:88:02:
a1:d5:63:c7:18:31:23:7c:d8:9a:3c:75:2b:13:93:f5:b5:02:
51:ae:30:9f:2d:69:9f:f6:7a:74:1f:05:9a:38:eb:5a:a4:e9:
b8:74:fb:ef:90:af:ae:a5:f0:d1:ea:82:89:8d:f3:66:6c:41:
a4:b2:1a:0f:24:01:25:35:1a:5a:ec:a2:95:df:fd:67:34:f0:
64:b4:cc:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 19:51:32 2025 by rpki-client