Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: culVVTYh21sQAmH+r2r6XltvQfQ32kwhxpk8gfj2Vak=
Subject key identifier: 8C:A6:1C:F6:84:55:64:14:95:59:C6:75:0B:21:98:29:2F:8F:C0:C3
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 0197470C46B8FE0E9B410A59BD8033EEEBB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0C61
Signing time: Fri 06 Jun 2025 21:01:16 +0000
Manifest this update: Fri 06 Jun 2025 21:01:16 +0000
Manifest next update: Sat 07 Jun 2025 21:01:16 +0000
Files and hashes: 1: 0wAgKVyytNbhNR-_RR1IsIpFFy0.roa (hash: hGr01I8nbqs/LJEbN09Cfzd/lbJVo6JwWOtLmEfD1wA=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: ndwU85j9Zv52O8ej4jEtzxEibikMZGy9yCWabfokG84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0c:46:b8:fe:0e:9b:41:0a:59:bd:80:33:ee:eb:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Jun 6 21:01:16 2025 GMT
Not After : Jun 7 21:01:16 2025 GMT
Subject: CN=8ca61cf6845564149559c6750b2198292f8fc0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:47:e0:f0:06:9a:46:3c:be:75:93:27:c5:a0:
ed:4b:fa:b5:85:31:3f:fc:8d:50:80:1e:a9:c6:84:
88:02:fb:b8:d9:24:c0:2e:b7:bb:c2:89:be:8d:a6:
d7:b4:64:3b:83:db:ab:21:91:94:ab:18:98:64:55:
71:5e:79:c7:04:27:1c:f4:84:74:6d:a2:fc:b2:bf:
02:f1:ca:8d:4b:44:6f:6b:34:4d:d9:c4:a0:70:47:
0c:b4:f1:b8:87:5d:02:e7:8b:cf:0c:c0:60:8a:72:
2f:c9:92:5c:e9:6c:28:a3:28:ec:09:bf:ad:31:15:
72:ad:52:bc:b5:00:5f:66:6c:32:0a:f2:08:dd:b9:
55:43:fb:a9:0a:4d:dc:1b:40:88:29:e0:8d:0f:5f:
a0:af:06:c2:e1:53:24:cb:04:3c:fd:23:60:d4:68:
7c:5b:a7:35:36:63:69:ee:0e:8e:05:90:c1:c9:b4:
e3:ba:b8:14:07:89:e9:a8:04:fe:7d:a4:d4:88:ca:
70:af:78:1c:73:2a:bc:87:d1:b0:79:64:11:84:45:
00:a7:80:f4:c7:b1:e1:1c:f2:7d:9d:5e:9b:8c:69:
87:23:11:e5:34:86:bc:37:e0:ff:41:a5:d4:5d:d5:
3a:6e:b4:1c:84:7c:c0:17:d7:30:25:ec:e3:a0:3b:
89:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A6:1C:F6:84:55:64:14:95:59:C6:75:0B:21:98:29:2F:8F:C0:C3
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:13:c8:f4:90:11:19:1f:c0:b8:a0:12:dd:cb:34:ce:56:1f:
d6:29:23:ab:8d:c7:7f:e7:c6:29:1b:b1:25:9a:e8:8f:a5:42:
9e:2e:cd:69:a6:47:3a:4a:6e:f4:03:0a:ec:6d:48:6c:f0:0a:
a1:b8:a2:93:12:02:d3:4a:bf:47:d8:4a:6e:4d:5a:e2:7a:23:
60:db:1b:b4:bf:14:68:f2:82:21:f3:9c:c9:e7:97:39:51:b9:
02:bd:f5:6b:70:db:62:2f:4c:36:93:60:1c:d1:b4:74:66:b8:
f3:77:8e:e1:6d:0b:ae:36:e1:8a:b6:e1:35:4c:2e:53:b9:ac:
4f:5b:55:84:5b:dd:41:f9:8a:a5:eb:03:0c:7c:f8:9e:fd:29:
fe:0b:71:3e:d7:c4:11:ae:52:60:36:7b:47:a4:f5:8a:18:2c:
7c:55:fe:4c:6e:0f:11:83:e1:d0:cd:43:be:ad:66:22:08:b6:
97:7e:cd:23:1b:d5:ec:51:b8:4d:75:1c:d5:ba:fb:02:44:94:
fa:86:2b:3f:9d:5c:a9:72:0e:1d:7d:2a:79:4f:91:ed:e6:9a:
cc:08:6d:b8:cd:58:f7:5b:c4:1c:e9:77:62:56:b1:31:e0:28:
4e:cb:8d:63:ab:6c:b7:f3:e9:dd:48:1f:31:7a:52:fa:60:e5:
9b:2a:6b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:16:16 2025 by rpki-client