Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json)
Hash identifier: NZCUz/iWqH4FfFWFxpqpzikpkUhNS+oAmI3JV9JP+ak=
Subject key identifier: 60:BC:7F:6E:20:7D:4F:36:CD:38:84:33:8D:75:1F:25:80:06:C3:7B
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 01992F35F2481A03655945AFDF513C12A1C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
Manifest number: 167C
Signing time: Tue 09 Sep 2025 16:01:28 +0000
Manifest this update: Tue 09 Sep 2025 16:01:28 +0000
Manifest next update: Wed 10 Sep 2025 16:01:28 +0000
Files and hashes: 1: 5r0GrYVoAysKJDuHDPTj-1MVWCQ.roa (hash: XAzmjxdrpIx5mLyehPHseK/+jaakSPTIZ07v9R3ktfQ=)
2: 7gpUO99SfoacmIWvz5o-z3ESpPc.roa (hash: jBBU4x8HtuG0AJgjijT3pv++S+IgCjRtCv3AjftIABQ=)
3: JOJ9b2WkEIXJpzQl9CDXk_CHY94.roa (hash: SAmYAd0xvQRGMk1x62ICIfIVJyfWTunRcVeOhZ1E3l0=)
4: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: Nk95oFsgSR+ZrTSdvc1cFXETGrb9qT3rqmwoE6399cE=)
5: _MMbboen6fjGZxdl1sjrAWa0F6o.roa (hash: lasMNF+CDNUkmhfnkFUMcQ2+Q/sn4RwC142SJaDCsYo=)
6: qTT5EzYYejgHx_-gozkgtiyWSxE.roa (hash: WcMM5EKO8L7zVDvgOOXzTCPHLyfkpMtxpa7CTFKHemk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 15:12:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:35:f2:48:1a:03:65:59:45:af:df:51:3c:12:a1:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: Sep 9 16:01:28 2025 GMT
Not After : Sep 10 16:01:28 2025 GMT
Subject: CN=60bc7f6e207d4f36cd3884338d751f258006c37b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:d2:f9:96:1c:7a:49:5f:eb:8e:cd:2c:82:
09:dc:32:9c:1c:94:4d:9c:73:2f:08:f6:60:66:40:
c0:7e:28:fe:05:fc:1f:2a:b3:10:a8:7f:1b:3b:80:
31:da:ab:8c:f2:6f:76:d0:16:c3:57:67:69:a9:17:
e5:b9:09:2d:22:3d:6f:4c:5c:41:4c:57:a1:15:61:
4a:04:2a:07:61:de:61:4b:95:ac:92:0d:6b:d1:a8:
9f:e9:59:2f:c1:94:fa:03:56:b4:a6:f8:fe:c3:a2:
cc:39:c7:59:7f:31:1e:02:29:03:6a:10:78:3e:e3:
c2:5c:8e:a8:50:45:7c:e2:e2:de:c1:af:cb:28:b9:
f2:65:9e:30:f0:65:30:62:50:3f:5f:e2:16:a9:6a:
3d:8a:43:9e:c5:f2:ae:28:03:cf:89:d6:c2:40:54:
43:03:01:64:a9:e7:e6:ff:52:0c:5f:87:7d:11:f6:
8d:30:e2:95:fb:c0:d3:50:fc:a7:d0:7c:71:64:1e:
2b:8c:d0:84:cc:ad:82:85:51:5c:c1:d6:78:7c:f1:
ef:22:bc:20:81:2a:2e:8e:1e:57:22:5a:d5:01:ee:
25:a4:f7:83:fd:53:47:1d:b5:8f:69:03:04:06:fd:
6d:8e:fb:94:8e:f8:4a:e7:07:a9:c2:d7:95:d5:5d:
c1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BC:7F:6E:20:7D:4F:36:CD:38:84:33:8D:75:1F:25:80:06:C3:7B
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:f2:7d:09:4b:fc:bc:26:2b:e1:7a:69:1c:0a:31:3b:21:4c:
b3:b8:0e:ce:94:9b:61:45:14:c2:cf:a9:0d:fd:91:19:70:6e:
1f:63:a2:4d:eb:dc:c1:c4:fb:22:0a:b7:84:4b:50:ec:d7:bc:
be:cf:e1:51:6e:d0:63:64:0d:4b:a1:cb:95:19:55:9b:8d:d4:
6e:36:72:98:b7:e9:62:28:d0:4f:fc:58:89:2a:bd:3c:ed:8c:
b7:d9:e2:1c:4f:00:1b:90:32:9f:21:06:87:79:8d:1c:a0:b7:
73:2c:41:32:14:21:12:52:b4:db:91:57:23:91:b9:2d:95:72:
8c:7e:60:4a:38:a5:4b:e9:b4:20:f0:33:8d:4f:f4:75:2a:06:
1e:a1:8b:16:d9:eb:1f:73:4c:30:81:6c:5d:d9:44:ef:ba:a7:
04:c2:6f:6b:ac:1f:94:ab:ca:bf:ac:9a:fe:ef:23:b8:c9:bf:
73:f3:26:ee:ed:8a:4a:a8:97:1d:ef:a1:06:d8:de:6c:1b:e0:
a7:2f:90:41:dd:83:ea:8b:e7:5c:cb:91:9e:56:d3:95:b1:7a:
35:bf:f0:ca:56:80:c4:f5:7f:bd:7a:35:a4:9a:20:b2:37:7f:
16:29:6c:dc:99:4a:20:d1:78:5b:bc:8c:22:b8:6a:8e:65:96:
f9:07:c7:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 18:20:54 2025 by rpki-client