Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
File: okz5AynEe6NDpmzWXTiDOjV7WVU.mft (raw, json)
Hash identifier: boYqxwmCNII1QjH6YjP73fklIgHvv0ddphb6Vy4rJpk=
Subject key identifier: B0:5F:FB:17:E0:01:F4:EE:59:B1:A9:92:DB:07:E2:6A:3F:EB:7C:BB
Authority key identifier: A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
Certificate issuer: /CN=a24cf90329c47ba343a66cd65d38833a357b5955
Certificate serial: 01958C292E9F0CC7304E419353A227336F25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
Manifest number: 1499
Signing time: Wed 12 Mar 2025 21:01:03 +0000
Manifest this update: Wed 12 Mar 2025 21:01:03 +0000
Manifest next update: Thu 13 Mar 2025 21:01:03 +0000
Files and hashes: 1: L_hJzZcxwJZunjzxLQL-YVG1jT0.roa (hash: /H7f2gZdXTvhI8V5NwcetnxeXbpLznW3EXechuUQFz0=)
2: RwOt6V2v9wJzu17DXTZnu1cti-k.roa (hash: pKpNRVrX80xh9DAepdCWEqDAUnRd1u2Llc+QIfnWV/Q=)
3: okz5AynEe6NDpmzWXTiDOjV7WVU.crl (hash: BBuEDL6z9Wcjg4TGIOS/KaxVADViHtcHLE5KO/vGB4Y=)
4: tDQAlIS1RkP7Hll5jY6GwoLQRHA.roa (hash: ZBp1qrqjsUhmRr1QqJR4LsXUqiXorK/xdRoQ9NS8bh8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:2e:9f:0c:c7:30:4e:41:93:53:a2:27:33:6f:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24cf90329c47ba343a66cd65d38833a357b5955
Validity
Not Before: Mar 12 21:01:03 2025 GMT
Not After : Mar 13 21:01:03 2025 GMT
Subject: CN=b05ffb17e001f4ee59b1a992db07e26a3feb7cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d5:a2:56:41:bd:58:a7:94:ba:17:bc:0f:1b:
94:30:91:d2:26:2e:7a:b8:7e:99:8c:53:8b:18:52:
cb:2b:25:9d:8e:e9:80:57:5f:67:9f:79:06:c6:0c:
b5:7f:a4:6d:b1:db:fb:7c:e9:10:64:fd:51:4f:09:
29:94:b6:0a:0c:af:b9:a2:ef:ea:3e:2c:7f:73:50:
e6:0f:60:d7:77:bc:b1:fc:e0:52:2b:60:ff:73:86:
a0:08:1d:c5:54:86:60:26:15:4e:24:16:58:a1:32:
b8:3c:5a:30:b8:4b:9a:1b:2a:12:32:86:af:4a:79:
48:20:48:b0:10:70:82:b6:0a:c6:b6:d5:1f:25:84:
0a:d1:0f:88:08:6a:85:1e:39:ad:dc:96:80:90:84:
6a:cc:95:c5:df:5b:2a:37:bd:99:16:b8:22:3a:c6:
51:ed:49:79:09:55:14:bf:ba:5e:f7:60:13:56:de:
31:e1:41:af:33:16:46:eb:e5:cc:cc:50:6c:df:02:
bc:da:a1:3c:01:69:95:29:3f:36:31:f9:b9:32:96:
f1:fa:df:88:e8:bc:d6:43:5d:ea:de:0d:8f:80:10:
ed:44:bc:28:54:62:44:bc:e7:72:6f:fa:8e:61:c3:
7c:6b:bd:8b:94:95:a0:87:8c:f8:1c:81:25:86:c7:
b3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5F:FB:17:E0:01:F4:EE:59:B1:A9:92:DB:07:E2:6A:3F:EB:7C:BB
X509v3 Authority Key Identifier:
keyid:A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ba:a1:92:91:cc:33:df:fd:1e:58:6d:71:16:2b:2b:9f:55:
02:50:4b:d9:d2:ca:dd:4c:92:34:6e:3b:4d:da:66:ca:23:42:
2a:f8:73:35:8c:da:1d:13:1b:96:8f:f8:83:91:6b:a8:5b:22:
2b:b1:24:73:55:85:43:c3:21:18:a3:91:c9:4a:90:8d:c8:1f:
6e:7b:0c:e6:72:47:6a:32:67:c2:1e:7d:08:6b:ff:0a:3e:d8:
f3:b7:d4:3e:1d:f3:4a:59:aa:59:ef:d6:72:46:9b:df:c4:a5:
5c:6c:38:b8:3b:f8:95:2d:de:7f:29:51:a3:e8:12:c2:eb:6c:
0c:43:05:86:a0:e6:6b:1f:ff:66:cb:48:74:7a:e1:8e:8c:44:
88:09:1b:9a:ef:42:f8:d1:2a:f0:44:3c:8e:2d:95:fc:4d:06:
3e:70:98:4c:e0:48:ca:e5:ee:ce:6e:14:a0:45:da:43:55:67:
16:e9:ec:d8:ed:75:1e:0a:a1:0a:37:54:13:1a:a4:a2:70:b0:
f2:b6:e0:3e:d7:57:0a:ac:ba:d9:a9:c8:cd:54:39:79:27:fb:
b3:e4:92:11:a6:36:24:72:76:da:d1:4b:a5:88:db:71:bb:3c:
4b:80:e7:5b:cc:ad:91:d1:51:ac:d7:45:d7:43:9d:79:99:40:
df:48:57:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:57:57 2025 by rpki-client