Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: PFxg4Y8SA7rRhIh+aSFL3kRw2rjXpDURUbRu9q1kqg4=
Subject key identifier: 51:66:35:F7:A7:83:B2:78:D8:BD:5F:76:6C:FA:EA:0D:DE:6E:68:F7
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 019874509C13F5CA2FF64EA50064078D51A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0CFD
Signing time: Mon 04 Aug 2025 09:01:36 +0000
Manifest this update: Mon 04 Aug 2025 09:01:36 +0000
Manifest next update: Tue 05 Aug 2025 09:01:36 +0000
Files and hashes: 1: 0wAgKVyytNbhNR-_RR1IsIpFFy0.roa (hash: hGr01I8nbqs/LJEbN09Cfzd/lbJVo6JwWOtLmEfD1wA=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: Z3cPlYWErW0xySHudNFi27pn6oEAUu5mAu7LX9LAwEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:9c:13:f5:ca:2f:f6:4e:a5:00:64:07:8d:51:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Aug 4 09:01:36 2025 GMT
Not After : Aug 5 09:01:36 2025 GMT
Subject: CN=516635f7a783b278d8bd5f766cfaea0dde6e68f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:45:f9:78:37:cc:ab:99:b5:8a:d8:16:fb:5f:
30:1e:b8:b2:b9:77:6c:a7:bf:4d:ed:85:f9:87:f5:
07:df:48:0f:40:92:8f:b0:38:20:f3:d9:7b:74:49:
69:d5:00:29:ea:3a:04:8e:9f:6f:49:d9:cd:55:f9:
b3:01:41:63:cd:47:7f:b9:ee:68:e3:60:24:9b:92:
08:72:1a:ba:b4:b5:d4:55:20:2a:7b:52:7c:91:05:
e7:8d:bf:be:f6:37:ff:53:62:dc:13:14:5f:e6:ea:
98:92:11:f2:29:09:e9:46:b3:0a:d7:06:59:f0:d4:
b6:16:67:d2:4c:39:cd:6e:a2:9d:b2:a1:96:fc:89:
fd:79:5f:71:cd:68:77:cf:d5:b2:e3:5b:c6:1d:17:
c7:49:3b:00:29:90:f5:c8:e2:f3:9e:8f:46:6d:9a:
c8:f9:9e:3b:92:6b:23:37:34:13:04:96:88:c4:d7:
bd:5a:25:12:4b:6b:38:68:d0:14:74:f2:ff:a9:4f:
ca:cd:ff:41:69:d1:ce:1e:c4:f3:74:de:5b:8c:53:
08:dc:06:6c:c3:24:d7:2c:11:86:43:81:67:bf:8e:
90:0c:b8:3e:2d:ea:cf:56:db:53:fb:6d:1e:8f:98:
13:56:35:1f:29:ae:01:36:94:15:c1:11:97:43:2b:
d2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:66:35:F7:A7:83:B2:78:D8:BD:5F:76:6C:FA:EA:0D:DE:6E:68:F7
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:51:de:10:13:7a:1c:c9:a2:e4:31:e3:06:6b:01:c8:a4:18:
43:4f:25:67:5a:67:ed:69:0c:3b:db:a3:d0:6c:b5:85:4a:7a:
13:3e:ef:2c:56:67:c9:8a:c8:6e:e9:5d:6b:4f:9b:eb:3e:f6:
25:6f:14:9c:86:52:6f:cd:08:54:04:30:94:c3:bd:3b:b3:0e:
8c:ff:32:0e:85:70:62:f5:13:0a:17:1d:c5:09:fa:d8:83:84:
46:22:45:f2:61:ce:f3:07:e3:aa:e1:45:be:14:d9:b1:e9:0d:
7a:3f:ae:22:0c:0b:b4:85:9e:dd:3c:ef:e8:1f:1b:2d:82:f1:
0a:fe:bb:89:c7:22:54:d4:3d:08:cc:64:bd:fb:95:dc:8f:23:
f3:2a:cc:69:30:45:86:19:03:a9:f7:23:84:10:2f:e3:28:58:
f0:23:5c:38:3c:97:ba:ed:30:8a:e5:96:f1:e3:c8:77:03:ed:
f8:a4:90:b2:8f:0b:71:d3:5f:64:6a:b6:40:f2:65:30:6b:6c:
87:4a:2c:8e:9f:3b:93:a8:40:4d:6e:aa:8f:a8:c0:56:61:1f:
09:68:25:66:63:1d:63:fc:e9:9a:ee:f4:ce:ea:65:83:3e:8b:
41:f8:45:fc:d9:b1:15:de:bd:38:7d:22:98:ec:5f:9d:61:3e:
ed:c4:22:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:08:37 2025 by rpki-client