Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: EuAl/ZNmbIay3QFG5aBsuYd9loVM4jBVTrPhRNBnvSA=
Subject key identifier: 98:32:13:D3:57:38:F4:DB:B5:16:54:4F:9A:95:FC:5A:BA:7A:CF:30
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 019934929FAAA59185151A5443F3E299E894
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 167B
Signing time: Wed 10 Sep 2025 17:00:48 +0000
Manifest this update: Wed 10 Sep 2025 17:00:48 +0000
Manifest next update: Thu 11 Sep 2025 17:00:48 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: KujUbPDdTxe49ZOEIyP6F5DKQWHUnlhk+12ioh0TZN8=)
2: WAQz-NVz1tPP197fB-7kdlHEMDo.roa (hash: EfunuE83nVqoEWqBwZZf7jU1FPr/i4YaWTLI4hd6d6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:92:9f:aa:a5:91:85:15:1a:54:43:f3:e2:99:e8:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Sep 10 17:00:48 2025 GMT
Not After : Sep 11 17:00:48 2025 GMT
Subject: CN=983213d35738f4dbb516544f9a95fc5aba7acf30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b7:92:fc:db:6f:22:66:a7:8d:a1:f1:8b:eb:
f4:c6:49:ff:4e:91:3f:9d:dc:24:37:80:96:7c:79:
8e:da:e9:28:95:9e:cc:95:8e:32:ec:63:76:16:0c:
ea:3f:a3:92:ee:62:79:a9:c1:2d:d6:69:51:35:42:
4b:06:9d:00:31:f0:b2:1a:7b:51:53:99:cc:28:a4:
f4:85:48:84:e8:ec:2a:42:c0:2d:05:50:56:e9:26:
fd:86:75:f5:a0:32:a7:4f:96:80:cc:9e:d9:67:49:
e3:b7:4e:21:58:8c:50:6f:9f:cb:b4:ef:09:a0:34:
a2:e5:34:9e:f2:c3:27:6c:19:fb:aa:5c:86:79:28:
b5:ea:04:a6:47:ca:cb:27:30:37:65:a9:14:2d:47:
64:96:51:8b:a5:ea:fb:29:fd:f9:9d:f5:7f:c0:1e:
f0:57:3a:f0:46:d6:de:86:8c:cd:d7:17:5f:cd:8e:
93:37:d1:0a:f3:dc:6a:da:aa:b7:0a:cd:79:02:4e:
2d:f1:6b:47:09:08:57:4e:b5:fe:f5:29:17:98:18:
be:c2:33:68:67:9e:09:20:d1:6e:f5:12:10:5c:d4:
7d:94:c4:71:2e:42:99:2b:f0:c4:91:fc:04:f6:e0:
ef:15:b2:15:b4:31:26:f6:65:71:71:66:00:68:a9:
47:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:32:13:D3:57:38:F4:DB:B5:16:54:4F:9A:95:FC:5A:BA:7A:CF:30
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:08:38:28:07:5c:1f:39:9b:27:c3:7d:34:b1:b7:ce:b7:0c:
61:0a:0e:e8:f6:a5:d2:39:3c:f5:7e:1d:40:4d:1b:c2:2c:4c:
36:16:ef:7e:4e:32:c3:3e:41:f4:9d:a6:19:96:40:c5:c3:03:
21:81:f5:cf:88:53:48:6e:b9:56:8f:19:34:3e:b9:3d:2d:7d:
b4:26:8f:89:12:e8:fd:c5:1d:31:df:0a:44:3b:fc:31:62:e2:
8f:8e:fc:4b:c3:11:6a:d7:59:cc:6b:f8:b7:8e:bb:40:74:be:
10:6b:8a:81:48:e5:d7:68:85:00:f1:cb:76:af:80:05:be:59:
a0:5d:e6:96:7b:05:b2:6f:60:e6:1f:9e:df:0d:e8:24:76:ab:
7b:fb:ea:c7:a7:38:10:97:36:72:32:74:a6:28:b1:fe:a8:52:
7b:a9:b0:d7:b4:f9:bb:ad:59:fc:1e:d3:2d:f0:bd:ba:4a:4f:
64:46:fe:aa:51:7d:2f:c5:61:db:f5:19:d6:0b:2b:43:ce:64:
e4:c1:a1:ff:38:e0:01:de:9e:8f:52:c8:6d:a3:d2:55:1a:b4:
5c:03:07:6c:88:cd:61:57:e6:f8:8b:b6:1d:07:67:de:f9:03:
7a:3c:d3:48:dd:01:59:81:22:cd:a0:19:c8:c1:fe:be:b3:9e:
e5:b4:c7:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 23:59:59 2025 by rpki-client