Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: 5G54cRrvJUCXm5sbZJ4qAE1pjqLYvGBClvPeVpXLpFo=
Subject key identifier: EB:9D:49:0A:CD:CC:F5:0A:4E:4D:4B:05:A0:15:F1:E2:25:81:1B:23
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 01988430ECE9C1CDB328E6B7036F0F10595A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 15CB
Signing time: Thu 07 Aug 2025 11:00:55 +0000
Manifest this update: Thu 07 Aug 2025 11:00:55 +0000
Manifest next update: Fri 08 Aug 2025 11:00:55 +0000
Files and hashes: 1: KBxZJWrk1-bZEdk3S7yVEPMKVtM.roa (hash: BpbYbbHeyy+1nQHRcRldIZ4LwMax+kHyBfVOH0ykZeU=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: aJOeQKNpOsJYRT0o/5JwSOfmIMmgEmnSeJL+Mvm6ZrQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:84:30:ec:e9:c1:cd:b3:28:e6:b7:03:6f:0f:10:59:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Aug 7 11:00:55 2025 GMT
Not After : Aug 8 11:00:55 2025 GMT
Subject: CN=eb9d490acdccf50a4e4d4b05a015f1e225811b23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cd:cd:2d:1f:62:7c:0d:3d:a2:c5:e3:6a:04:
c2:a0:8d:99:69:8f:9a:97:58:85:42:ff:ab:c6:23:
e5:49:1d:ca:fc:e0:9f:93:0a:0d:5f:92:5e:0e:d9:
96:62:1a:c7:05:57:7a:06:4e:ba:40:7f:60:79:e8:
63:24:19:ec:2b:31:3b:03:ed:8a:2b:e4:4d:e1:89:
cd:a6:d7:d2:bf:61:d7:07:db:cd:b5:8c:7f:64:03:
2e:e7:fe:2c:dd:d7:b6:44:7e:37:fd:23:80:31:d6:
1b:51:cd:f1:37:67:19:b1:6f:fd:c9:13:92:45:da:
80:fb:dc:1c:19:a1:4c:92:cd:4a:0f:c6:8c:15:fe:
00:e1:d4:08:15:bb:a2:80:fa:9e:17:65:67:49:d5:
a7:a2:b5:1b:34:26:f4:1e:85:42:06:fb:ec:65:2d:
a7:9d:7e:ee:a9:c5:cc:f0:34:c4:f3:85:f9:3b:5a:
d9:16:86:1c:6f:51:be:e9:13:17:37:03:23:88:1a:
af:20:8a:1c:6b:7e:de:dc:d7:05:ce:1a:39:cd:2c:
4b:a4:fc:f3:3c:f9:f5:79:69:0a:60:15:81:b4:e5:
ed:12:e8:a9:20:7b:43:33:5e:7b:a1:0d:a7:54:eb:
27:c9:fa:18:ba:0e:0d:be:ad:ff:52:5b:1c:fd:6e:
8d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:9D:49:0A:CD:CC:F5:0A:4E:4D:4B:05:A0:15:F1:E2:25:81:1B:23
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:1a:5c:4b:e2:d6:a2:ac:f4:87:81:1a:c3:21:99:d2:01:1a:
04:0f:64:d3:3f:19:58:a6:06:9e:ff:d9:26:59:43:c2:5c:1b:
5e:d9:2f:a9:0d:d6:15:d4:36:7a:cf:db:51:66:92:8c:5a:d8:
52:b3:c6:79:46:d7:7b:f0:7e:6e:48:2c:01:fa:dc:db:65:45:
e4:e0:b3:d7:5f:d8:0c:18:94:6d:8f:34:01:30:f4:a0:dd:a8:
27:d8:14:f0:c4:5c:49:79:70:a9:bd:65:21:ac:3b:ca:e5:c3:
88:e4:9f:f2:dd:e7:d2:6c:c9:08:71:26:99:a1:49:88:33:df:
3d:a1:e5:07:2f:4e:76:0e:4e:4d:1a:f6:09:e4:67:39:6c:6d:
e0:af:cf:9d:4a:5d:13:f6:c1:cd:24:e6:66:6a:92:81:54:c3:
b2:0c:b3:5d:79:0f:a8:dc:44:be:58:0b:c9:ba:87:6c:95:70:
a0:b8:2d:56:70:56:55:00:46:76:c6:40:d4:5c:ae:4d:d4:ac:
83:60:09:eb:78:95:39:9e:65:be:29:a9:b0:11:ee:c3:d0:9d:
e8:ed:a5:82:88:0a:69:84:e4:5c:a8:da:85:78:b3:4e:72:a0:
6f:b6:94:ac:30:c1:f8:3f:6b:d6:52:29:96:84:ed:d4:43:18:
fe:40:cd:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 17:25:35 2025 by rpki-client