Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: 6/R0UNsJ3l6kjYo8OUleXyMx+OtPg6ZttenR0V19qf8=
Subject key identifier: 6B:F4:DB:E6:33:22:00:F9:5C:41:59:72:51:B9:8E:B9:D6:94:82:D3
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 0197496875344055A6B0D0CEA5BC14BE4605
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 1528
Signing time: Sat 07 Jun 2025 08:01:11 +0000
Manifest this update: Sat 07 Jun 2025 08:01:11 +0000
Manifest next update: Sun 08 Jun 2025 08:01:11 +0000
Files and hashes: 1: KBxZJWrk1-bZEdk3S7yVEPMKVtM.roa (hash: BpbYbbHeyy+1nQHRcRldIZ4LwMax+kHyBfVOH0ykZeU=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: I/gqrEc4+vowC3QeyEdpLuVEJmDZnf0Tb2ZRVoyRSXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:75:34:40:55:a6:b0:d0:ce:a5:bc:14:be:46:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Jun 7 08:01:11 2025 GMT
Not After : Jun 8 08:01:11 2025 GMT
Subject: CN=6bf4dbe6332200f95c41597251b98eb9d69482d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:32:f5:7a:26:24:41:c5:c7:a1:fa:dd:d7:8a:
5c:e9:5e:ef:4d:8f:9c:67:98:07:57:b9:83:e6:75:
88:70:c9:95:21:ef:20:ff:7c:a2:d0:4e:28:8f:98:
7f:bf:0a:23:ed:4c:7b:24:2d:bb:6b:2c:bf:46:58:
7a:5e:70:1d:e6:b3:eb:e6:4d:d9:06:15:45:be:f0:
a3:22:4c:ae:8a:fa:94:4c:4f:68:c1:3e:0b:53:a0:
26:35:b1:a1:34:f1:c0:60:d6:f2:f8:f8:6d:46:5b:
45:74:b9:29:db:b0:e0:c0:69:49:77:d8:dc:80:5b:
72:5b:2c:d0:02:7f:1a:a9:10:32:94:8d:dc:50:9d:
4e:b3:c6:a7:c6:b8:78:4e:dc:c8:32:c4:9e:28:ea:
3d:0f:4b:a2:0f:1b:00:cc:13:8e:35:a8:60:8f:5f:
68:ac:47:95:2a:ef:83:5d:b7:06:10:cc:0b:6e:be:
9c:02:15:d7:5a:bd:90:30:c7:8a:da:29:e1:ee:35:
46:11:84:46:75:fb:08:52:50:c5:0a:a7:b5:cc:94:
2e:1c:fe:82:d3:73:be:63:50:4b:8c:5e:6c:bc:1b:
0c:78:0f:58:c5:f9:d2:5d:5a:46:59:d4:f9:a3:bb:
65:b4:1a:e1:ef:15:0a:f0:d6:bb:76:cf:00:fe:be:
d1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F4:DB:E6:33:22:00:F9:5C:41:59:72:51:B9:8E:B9:D6:94:82:D3
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:dc:4e:e0:06:5b:f0:4c:81:21:ca:35:25:ca:3c:b5:50:1f:
3c:d9:30:bd:33:18:f4:b8:26:a7:d5:52:c9:e9:11:ff:a0:2d:
c1:fc:43:63:b6:17:c6:95:60:c3:9e:bf:32:5c:9d:c7:e2:bb:
52:d9:8a:8d:4c:d7:29:46:c7:45:d7:f6:b1:4d:86:6b:40:f0:
71:ac:af:2e:af:b7:a8:21:5b:0a:14:36:b4:6b:18:e1:cc:8d:
f3:69:a0:6d:e1:be:4a:ea:eb:79:0a:34:d0:b3:22:01:08:32:
15:02:bf:65:8c:e3:8b:95:af:fd:87:58:dd:ab:31:5b:1e:bf:
91:aa:ae:c5:93:b5:55:60:b6:cf:2a:a6:58:83:f8:4e:a1:05:
d5:fc:0a:ae:44:da:5c:64:6b:50:cb:aa:5c:8c:71:0f:a5:18:
38:d8:7c:83:2f:08:b9:37:7d:98:c7:b4:b0:e9:0f:4b:b7:6e:
bc:2c:0a:b3:f9:69:68:55:a7:87:76:00:67:94:9b:0b:20:67:
4d:3b:1e:9b:ef:2e:61:a4:41:e0:75:d1:f4:a8:32:7f:38:ff:
1c:a6:fc:5b:63:07:6a:fb:6d:17:96:b1:98:f3:73:48:e9:17:
e1:82:e4:9c:a5:d9:6a:e7:4c:9c:6b:24:0d:0b:76:fa:ab:b0:
15:04:c3:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:00:16 2025 by rpki-client