Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: RjQEbIVZWijuf6odO4jHfNyKqphtu+2IruGUmEhuY1g=
Subject key identifier: 51:DD:65:1E:1C:1C:30:CA:64:97:7A:40:F0:C9:64:3C:E1:12:4B:52
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 01977007B8A5F3B1B6A1C33529B10A3F44FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 153C
Signing time: Sat 14 Jun 2025 20:00:43 +0000
Manifest this update: Sat 14 Jun 2025 20:00:43 +0000
Manifest next update: Sun 15 Jun 2025 20:00:43 +0000
Files and hashes: 1: KBxZJWrk1-bZEdk3S7yVEPMKVtM.roa (hash: BpbYbbHeyy+1nQHRcRldIZ4LwMax+kHyBfVOH0ykZeU=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: G8COzz8mtUQFW3JRd5q4FZv9aGBwC2h0l17WwUqpioc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:07:b8:a5:f3:b1:b6:a1:c3:35:29:b1:0a:3f:44:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Jun 14 20:00:43 2025 GMT
Not After : Jun 15 20:00:43 2025 GMT
Subject: CN=51dd651e1c1c30ca64977a40f0c9643ce1124b52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:94:9a:65:8d:f3:fd:0f:f7:43:0c:ae:77:b8:
65:d4:a5:87:69:25:fb:b4:11:06:52:b1:49:6f:5b:
1e:69:07:e1:00:c9:47:77:ff:22:09:7e:56:06:f3:
a4:ec:ff:7b:75:68:bd:ce:f1:0c:ea:0d:14:be:a5:
e1:da:7a:48:42:83:0f:dd:ee:e2:fa:f5:f6:62:0d:
93:f8:fa:9c:6b:20:04:05:1a:54:88:96:d7:e9:0e:
d1:56:f5:51:e3:49:51:73:32:f4:8b:c7:d8:af:c8:
63:12:aa:e5:89:c6:14:8c:6f:90:47:2a:c2:97:29:
27:dc:c3:91:bd:72:17:70:e2:3d:57:b0:da:fe:d6:
d4:6b:f8:ed:13:28:fa:1d:e8:98:71:2d:af:2b:c5:
ff:e4:7c:7c:76:21:27:33:00:d9:3c:bd:3e:93:79:
c3:5b:43:f7:69:e4:c8:0e:94:e5:73:3d:05:65:2b:
65:e9:da:bf:e1:34:26:68:bb:14:7d:a8:ef:7c:7d:
f3:e4:34:d8:dc:30:07:ef:1f:39:3b:27:d6:53:9e:
3c:77:ff:39:64:6c:80:0c:7f:c9:d0:00:41:e7:93:
dd:3c:af:8e:2c:58:02:0e:83:c6:9c:ea:4e:66:21:
28:b6:e3:78:e5:05:e4:89:a1:79:9c:24:1a:b5:4c:
34:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DD:65:1E:1C:1C:30:CA:64:97:7A:40:F0:C9:64:3C:E1:12:4B:52
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:75:a6:c3:66:58:d2:60:51:51:14:b1:55:1f:48:2f:34:41:
37:0f:75:a0:4d:03:10:8a:72:25:d2:a0:83:ed:a4:30:dc:85:
7b:af:3d:53:81:22:d7:21:16:4a:3c:5a:5a:82:9e:d6:bc:34:
ed:38:48:dc:72:55:41:d1:35:72:cf:0d:e0:bb:2f:53:48:57:
f6:80:19:a6:ec:b7:99:69:7c:be:bb:93:44:3e:6d:e0:7a:aa:
6c:90:f5:8e:af:48:94:65:e6:2b:50:bb:58:8f:42:a5:19:a9:
9f:69:41:df:4d:5e:33:b1:a7:8b:a1:bd:c8:18:b1:ef:d2:cb:
d6:1d:21:9f:9a:ce:5d:da:cc:32:43:0a:a8:b8:3a:bd:b8:fc:
05:99:e0:f6:40:65:68:74:fe:e9:4d:6e:44:01:b5:cb:3c:b5:
6c:32:98:ed:d1:c8:46:8a:15:24:64:0f:85:db:8c:44:b7:6c:
4c:ba:34:5e:af:5a:21:10:62:f5:8a:58:6f:f5:36:36:0f:6c:
af:78:fe:22:d3:37:c7:ed:99:85:ca:19:7f:8e:e1:03:96:bb:
c6:9d:08:16:47:3f:33:d2:ab:9e:04:48:28:62:82:85:c7:88:
e4:bc:b6:11:c8:a2:1c:6b:fa:31:04:2b:73:16:4d:f2:de:ee:
12:6f:ec:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:13:56 2025 by rpki-client