Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
File: r2Okes26jsHNhdTXnzazW2mOX4k.mft (raw, json)
Hash identifier: Mnfi2LEGRCPCCjym9VYHaV69G+rOXzLbdoU4AnESbE4=
Subject key identifier: 64:24:C7:90:A7:C2:64:B8:B8:09:C9:B6:4B:16:15:5A:BD:AE:67:B6
Authority key identifier: AF:63:A4:7A:CD:BA:8E:C1:CD:85:D4:D7:9F:36:B3:5B:69:8E:5F:89
Certificate issuer: /CN=af63a47acdba8ec1cd85d4d79f36b35b698e5f89
Certificate serial: 0199228D1FCD54042637E922CF1516103759
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 05:01:37 +0000
Manifest this update: Sun 07 Sep 2025 05:01:37 +0000
Manifest next update: Mon 08 Sep 2025 05:01:37 +0000
Files and hashes: 1: YXk4VQ9w2ydeFfWUpTPAL38DI14.roa (hash: 63k2DxSPaDP/x2Jl3oeCNKnb4PXDg6/RYTgk7tLrZPw=)
2: r2Okes26jsHNhdTXnzazW2mOX4k.crl (hash: 7IXmKVDHYxchNFKjanTM+d2ur0HkMjKaZp1LiUyjvDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:1f:cd:54:04:26:37:e9:22:cf:15:16:10:37:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af63a47acdba8ec1cd85d4d79f36b35b698e5f89
Validity
Not Before: Sep 7 05:01:37 2025 GMT
Not After : Sep 8 05:01:37 2025 GMT
Subject: CN=6424c790a7c264b8b809c9b64b16155abdae67b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:68:72:1a:00:b4:1c:ca:2a:bf:2c:da:99:8e:
bc:2e:02:2b:41:d5:cf:13:15:27:af:16:42:2a:ff:
63:8d:43:eb:b9:3d:ea:de:10:e6:71:a7:29:e6:90:
ba:7a:69:98:75:ca:b1:f6:fe:a3:56:54:85:18:b1:
d6:ad:6d:8b:c9:19:5a:d1:53:77:2e:15:57:c8:2a:
9e:4a:75:fd:95:1f:14:eb:07:ba:68:6f:28:92:e1:
98:2d:96:ca:e3:0d:7d:b8:fa:6a:10:95:62:3e:ed:
03:da:5e:2b:bb:6e:46:ce:f2:b1:76:16:05:5d:db:
eb:9f:76:3a:02:83:e2:b8:87:ef:1c:f8:c9:fe:93:
5f:0d:51:86:68:89:39:2d:09:95:2a:a1:b1:06:5a:
4b:b2:c6:5a:4c:7e:f7:c3:50:4f:5b:10:2a:71:a7:
10:6c:35:77:da:9f:98:5b:fe:71:30:e3:df:1a:80:
85:3f:86:27:f9:04:dd:91:cd:92:8c:d2:ff:3a:24:
7a:36:1a:9b:ca:df:8f:10:bc:68:4d:59:30:06:8f:
29:7b:83:4f:4d:fd:57:0a:75:9e:2b:05:5c:96:b8:
98:4e:d6:1b:37:07:ad:83:0d:39:70:41:5f:90:81:
76:ca:e6:24:11:5c:bc:96:16:e9:4c:e4:28:f1:70:
8f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:24:C7:90:A7:C2:64:B8:B8:09:C9:B6:4B:16:15:5A:BD:AE:67:B6
X509v3 Authority Key Identifier:
keyid:AF:63:A4:7A:CD:BA:8E:C1:CD:85:D4:D7:9F:36:B3:5B:69:8E:5F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:60:b9:48:42:a8:e9:17:e3:af:2a:04:6a:06:d9:ea:5f:a2:
e2:a1:aa:cc:e1:e5:a7:d9:5d:21:ef:7f:f3:a0:c9:ec:e8:ad:
28:21:7e:a3:9d:44:f8:c9:c0:61:b0:8e:ef:d6:1f:10:77:43:
bb:d5:9c:01:9e:ff:cd:47:04:82:13:64:31:6c:33:94:79:b1:
2e:7c:17:f9:c3:13:50:9c:8a:9d:2f:85:a6:94:e9:79:f5:5d:
4f:92:7d:04:e3:c6:19:61:4c:0d:cd:b8:35:98:87:29:b7:70:
f7:e5:9b:2a:fe:dc:d9:dd:57:40:81:f6:6f:64:e0:1b:a9:57:
6e:36:ad:a2:07:d9:42:af:8b:97:44:76:17:a5:df:6d:2f:c8:
52:55:1d:8a:8e:4d:3f:78:f3:25:ad:27:58:d3:fa:c9:c4:9f:
db:cf:bc:04:77:f0:82:df:62:9e:ed:b6:6a:f0:8d:de:68:f3:
27:eb:3b:bf:92:0c:79:3c:b6:32:85:99:03:2d:a7:a7:ac:b2:
2d:3f:05:18:a1:d4:3f:9d:1a:8f:72:dc:70:d8:3b:a5:15:2c:
70:c6:5e:db:66:5e:b0:9f:39:f9:b0:fe:a9:50:8f:3b:c7:42:
ba:92:5b:68:37:21:7c:f3:11:9d:a5:c3:54:4e:3d:ab:c7:d7:
b9:90:c1:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:18:47 2025 by rpki-client