Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
File: 1OKXHl2BaclArwINsCe-2tiZFZA.mft (raw, json)
Hash identifier: bskH7yeOAgTt5c2K5Vmp7Jwh5tyGREPZcMcbHQ9wFZ0=
Subject key identifier: F8:67:64:15:F3:12:34:F8:92:E2:65:85:A4:F5:88:3B:4D:2F:4A:CB
Authority key identifier: D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
Certificate issuer: /CN=d4e2971e5d8169c940af020db027bedad8991590
Certificate serial: 019872983227AD9E079D93831E2EF1D1B2C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
Manifest number: 161A
Signing time: Mon 04 Aug 2025 01:00:33 +0000
Manifest this update: Mon 04 Aug 2025 01:00:33 +0000
Manifest next update: Tue 05 Aug 2025 01:00:33 +0000
Files and hashes: 1: 1OKXHl2BaclArwINsCe-2tiZFZA.crl (hash: BfKleQaa5fEc9fplm1+dxhRDtX4aONntO6PJqwNhw+Y=)
2: JSqJ02JsxZMyq1FZ1Ds1WnAXfzM.roa (hash: FrjQUqzgc9bbbA26gpxWpuyB85Zjnu+GzKv9yBO8vww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:32:27:ad:9e:07:9d:93:83:1e:2e:f1:d1:b2:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2971e5d8169c940af020db027bedad8991590
Validity
Not Before: Aug 4 01:00:33 2025 GMT
Not After : Aug 5 01:00:33 2025 GMT
Subject: CN=f8676415f31234f892e26585a4f5883b4d2f4acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e6:09:3c:b3:17:ab:44:db:3c:96:5f:44:0b:
78:04:b5:c7:73:99:ac:40:36:fe:a2:8d:83:56:21:
dd:55:39:21:bb:48:fc:29:90:a3:df:e0:b4:ac:0b:
f8:f8:4d:49:7f:ad:13:a4:52:62:71:26:86:3e:fa:
b5:31:9c:b7:94:90:bf:41:36:07:f2:76:13:1a:c0:
e6:b0:a3:bf:b8:1c:f5:d0:1a:05:d6:d1:5e:24:4e:
77:67:48:10:f3:84:64:06:27:8e:62:58:24:ec:21:
e2:97:f5:73:51:e5:97:c8:50:32:ba:1d:dd:83:69:
de:e3:f2:55:74:75:40:7b:ac:85:f8:29:90:36:22:
0a:09:35:ef:2a:21:74:69:9d:34:f4:df:95:b4:af:
71:2c:3a:fd:4e:6f:9a:38:0c:89:cc:1e:7e:b3:52:
bc:7a:e4:5d:4f:e5:6c:48:48:43:7f:52:9e:24:4c:
08:12:3e:ee:00:15:fe:c4:3b:01:a4:a6:be:f9:70:
87:5e:77:31:cb:e4:2b:b4:ab:12:17:3e:70:d2:f2:
00:6a:42:f4:7e:81:99:30:91:0e:db:a7:79:fa:25:
85:10:58:72:5f:ee:76:86:ba:ff:a9:d3:81:84:15:
91:cf:06:0f:bd:f4:aa:06:90:8b:a2:4b:0d:5d:a2:
f1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:67:64:15:F3:12:34:F8:92:E2:65:85:A4:F5:88:3B:4D:2F:4A:CB
X509v3 Authority Key Identifier:
keyid:D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:2f:c7:0e:6a:37:66:b9:62:75:3e:0d:a7:28:21:d0:14:e0:
21:6c:a6:5f:2f:48:64:13:40:76:3d:3d:25:c3:72:55:e0:17:
eb:4a:7c:3e:83:4e:f7:57:e7:9f:df:96:13:66:8d:1b:52:a1:
12:c4:1b:af:08:e6:77:e1:4e:75:03:00:7d:5a:00:00:7c:c8:
d8:06:2c:37:e6:0e:bf:f9:c2:1f:69:1a:e9:27:db:42:4d:a1:
40:29:d2:9d:95:ac:53:83:55:7f:c0:0d:02:9a:a5:a9:c3:49:
49:8a:aa:64:fd:52:1c:3b:88:ce:a9:ca:ff:65:83:1b:7c:f5:
cc:2b:96:7d:e7:9b:a8:5d:b2:b6:e0:e0:a9:0b:c9:b0:38:e0:
c5:60:f7:18:e3:88:86:51:53:df:2d:9f:8b:89:3b:4b:a3:ec:
8f:5a:9c:56:a5:c8:1f:3a:12:bc:9e:44:10:bb:ea:c7:28:fa:
3c:aa:34:67:48:5b:33:44:a7:b5:23:be:17:50:8d:84:8b:7c:
f0:89:10:c1:da:a7:13:01:a2:0b:4f:b3:c5:32:ab:61:f4:b1:
a5:ea:84:0c:34:57:35:eb:7a:23:52:d3:09:b9:c1:d3:f0:72:
ee:4e:9d:b9:7a:3e:e3:37:fb:14:cd:b4:0f:af:d7:d3:4f:5c:
52:93:ab:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:08:27 2025 by rpki-client