Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
File: okz5AynEe6NDpmzWXTiDOjV7WVU.mft (raw, json)
Hash identifier: 2H/y3DSSdnvSvv6s1xusJLAO2oMILnKKWCOftU8e4Ns=
Subject key identifier: C7:FF:A8:24:27:EA:32:2E:D1:0D:04:F7:5E:FC:63:20:49:62:04:65
Authority key identifier: A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
Certificate issuer: /CN=a24cf90329c47ba343a66cd65d38833a357b5955
Certificate serial: 0199616BFD30A8BD1D45EEA8FABA997DAAF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
Manifest number: 1695
Signing time: Fri 19 Sep 2025 10:01:31 +0000
Manifest this update: Fri 19 Sep 2025 10:01:31 +0000
Manifest next update: Sat 20 Sep 2025 10:01:31 +0000
Files and hashes: 1: L_hJzZcxwJZunjzxLQL-YVG1jT0.roa (hash: /H7f2gZdXTvhI8V5NwcetnxeXbpLznW3EXechuUQFz0=)
2: RwOt6V2v9wJzu17DXTZnu1cti-k.roa (hash: pKpNRVrX80xh9DAepdCWEqDAUnRd1u2Llc+QIfnWV/Q=)
3: okz5AynEe6NDpmzWXTiDOjV7WVU.crl (hash: 2lnMTXzXo3M+L4Edb6kcXRRsEE22FJXHAWbKGuSe3pw=)
4: tDQAlIS1RkP7Hll5jY6GwoLQRHA.roa (hash: ZBp1qrqjsUhmRr1QqJR4LsXUqiXorK/xdRoQ9NS8bh8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:61:6b:fd:30:a8:bd:1d:45:ee:a8:fa:ba:99:7d:aa:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24cf90329c47ba343a66cd65d38833a357b5955
Validity
Not Before: Sep 19 10:01:31 2025 GMT
Not After : Sep 20 10:01:31 2025 GMT
Subject: CN=c7ffa82427ea322ed10d04f75efc632049620465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8b:e0:d7:b2:27:fd:6e:cd:e0:85:29:03:9b:
d8:02:c8:d2:e6:06:8c:60:a6:8a:b1:dc:99:9f:2d:
18:0f:a9:af:7c:86:cf:79:cc:17:14:ce:f4:b7:2d:
6e:41:77:8b:0a:c1:a1:49:6f:22:01:77:2c:5c:22:
42:99:b7:c2:15:93:1e:42:0c:a2:3d:88:bf:fa:db:
23:44:60:e7:a8:1b:e3:a8:62:95:e9:2d:b9:d1:f8:
47:63:1a:d2:3b:d5:3c:eb:63:dd:36:dc:a6:8b:b3:
15:4e:73:27:56:c3:5a:a2:c6:0c:24:f1:79:0c:8a:
65:27:aa:38:f9:48:8d:49:e4:5c:6d:d2:2d:28:0e:
19:c0:67:e3:da:e5:b3:aa:f2:26:8d:f3:99:a8:6f:
21:eb:f5:37:1c:a1:c5:88:66:f6:93:f5:5d:85:f4:
c9:2d:ce:be:9c:e2:8a:e4:ee:bf:d2:6d:64:91:35:
47:8e:7a:8f:e3:ae:92:86:01:64:3b:0c:63:7d:66:
b8:b1:e0:43:c2:26:a4:4b:21:46:32:dc:f0:0d:98:
e6:15:7d:3c:78:d3:e5:cb:14:16:9f:90:db:cf:cb:
be:46:73:89:b2:38:b0:ae:6e:86:d1:95:12:31:77:
e8:2b:ab:72:35:3a:7e:50:3f:82:37:29:a5:bc:14:
6b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:FF:A8:24:27:EA:32:2E:D1:0D:04:F7:5E:FC:63:20:49:62:04:65
X509v3 Authority Key Identifier:
keyid:A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:d5:21:b7:32:ad:d9:c8:95:b4:f5:5c:c4:ca:af:01:7d:5e:
6c:ef:d8:e1:d8:62:c8:83:b4:7d:3f:7d:fd:62:29:d3:75:4e:
4a:07:c3:d5:29:c9:b1:a0:e9:40:61:69:3d:df:c6:01:42:8e:
80:3a:c5:f5:a5:56:6e:a6:fc:48:f4:7b:c4:fb:07:c2:b0:33:
11:8a:e9:84:c8:b2:2f:c3:3e:f5:1f:1d:6d:0b:d7:b5:a6:b2:
56:37:9b:0d:45:72:e5:c1:af:cf:8c:21:6f:6c:34:be:72:4c:
ee:ad:0b:f5:39:65:8e:f9:fc:83:b0:fd:92:90:ec:10:c6:1e:
23:ab:7f:ec:01:fe:35:9f:70:0d:e1:48:79:80:80:4c:08:f0:
f1:63:77:75:e6:fb:77:f0:fe:9d:f9:dd:07:23:78:77:35:f8:
5c:80:5d:81:a3:1e:e0:11:48:89:dc:36:21:9e:d7:df:24:7a:
c6:42:a0:c7:11:3b:e8:6b:22:90:e1:1d:44:69:bf:5c:81:02:
01:18:36:98:36:3a:b0:9b:43:32:4b:0f:bb:20:98:26:8a:ed:
45:27:ec:ee:08:4f:bb:c9:22:14:90:4b:6b:b1:1a:9e:32:d0:
13:7a:d7:4d:55:38:a7:97:f4:e9:58:6b:1b:b4:11:57:db:ff:
ec:04:fb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 12:32:28 2025 by rpki-client