Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: v54A8DdXwjnJdvHVniYp5lRAMDuERTTWDVb2jK8oTYw=
Subject key identifier: 98:F2:B2:E1:45:72:43:F1:74:F0:5B:EC:D4:E1:80:FF:CD:F8:49:40
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 0197518F9AA5D1C600D7C61CD6168B1041B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 1512
Signing time: Sun 08 Jun 2025 22:00:55 +0000
Manifest this update: Sun 08 Jun 2025 22:00:55 +0000
Manifest next update: Mon 09 Jun 2025 22:00:55 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: gzbHsjFxJqsARwbA2vVJHrksBEbQjbGo77IQuADD4a4=)
2: oU-Dh2GrIk6DJo0B3ckZobCZQLg.roa (hash: 3M/n9wvPmKU+uLTP2MTaGav/2cb5GDciUi4YXKv/+G0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:8f:9a:a5:d1:c6:00:d7:c6:1c:d6:16:8b:10:41:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: Jun 8 22:00:55 2025 GMT
Not After : Jun 9 22:00:55 2025 GMT
Subject: CN=98f2b2e1457243f174f05becd4e180ffcdf84940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d8:29:01:1f:42:74:59:92:5e:57:d5:68:bb:
c3:41:f1:71:a9:7e:b4:9d:fa:5b:e1:c9:39:b8:7f:
d9:79:c9:72:d7:cd:19:3a:e2:14:6e:4d:e2:0a:eb:
03:5a:10:27:e2:04:82:af:e6:a4:d1:58:ab:7e:5c:
7f:f6:21:39:38:a4:1d:ac:7a:13:bb:e6:c7:67:06:
00:a9:38:3f:51:51:87:2e:58:53:1d:61:26:47:2f:
df:a0:53:d7:11:ae:8c:31:fd:4d:de:b4:0d:b6:cf:
59:5b:49:02:5b:d8:ed:9b:ab:a6:c1:fc:8d:52:84:
f7:24:0d:4d:76:ea:04:0a:57:f7:8b:84:af:cb:f8:
b7:36:e3:21:a4:cc:26:b8:aa:85:4b:52:85:c2:0c:
40:54:bd:b4:90:59:1d:b9:4b:55:75:d7:7f:7c:1d:
d9:a8:e4:09:60:58:a9:f1:cc:ad:28:81:b4:34:8d:
e4:1f:8e:f6:b5:d3:7b:ce:f4:e8:9f:0f:80:7a:fe:
47:5d:b4:b5:52:db:de:9f:26:f3:4f:d6:0b:5b:11:
ba:18:9c:0e:21:80:c8:56:7d:2c:29:0f:88:6b:6f:
87:41:7e:d3:74:20:6b:2c:59:ba:7b:ad:ba:54:33:
1d:1d:18:1e:a3:86:d3:c2:a1:9c:b2:f7:a5:ab:7c:
76:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F2:B2:E1:45:72:43:F1:74:F0:5B:EC:D4:E1:80:FF:CD:F8:49:40
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:2a:85:31:2e:d5:e4:f4:4f:94:8c:7a:0f:69:1c:26:5e:20:
6c:ad:93:e6:ca:0b:bd:bb:24:56:ff:89:22:cf:17:2d:d0:39:
37:93:69:56:50:c5:d3:66:05:b2:04:b5:3b:86:2a:69:3d:ec:
19:60:de:4e:28:cc:82:6a:c5:78:ca:5d:3f:d9:16:fd:7a:92:
d8:6b:a0:d4:3b:13:e9:a6:9a:cc:da:28:34:41:89:bf:02:cd:
2e:6c:e4:17:db:16:c3:87:89:fc:4f:72:a0:a2:d7:40:c3:4c:
67:1f:ba:88:dc:6e:56:a9:4d:33:81:15:41:41:80:85:ba:6b:
d0:dc:3a:49:da:48:a9:65:d7:34:8c:59:c7:1e:b6:8a:ab:df:
a5:a6:fc:7a:ea:69:23:ca:fb:77:89:9d:f5:a5:67:15:7e:fb:
12:44:aa:b9:93:3d:a5:12:99:12:79:e3:da:95:87:ed:d4:68:
52:74:69:e0:89:5d:39:85:61:e9:c0:96:56:96:73:80:45:b1:
01:42:73:ee:e6:8a:82:ea:82:46:90:37:e9:df:d3:d1:83:d1:
b6:cd:13:0e:a6:b4:83:e4:9c:43:50:d3:1f:ee:42:1a:e0:bf:
19:8d:d3:a7:02:cd:a8:b5:70:83:c5:e9:88:a0:6c:15:10:bc:
e1:a4:ee:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdRj5ql0cYA18Yc1haLEEG0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDhlMDMzZGViNjRhYzQyNDNjNzJjZTg5OWQ1MzgyMmRm
Njk5NmQwHhcNMjUwNjA4MjIwMDU1WhcNMjUwNjA5MjIwMDU1WjAzMTEwLwYDVQQD
Eyg5OGYyYjJlMTQ1NzI0M2YxNzRmMDViZWNkNGUxODBmZmNkZjg0OTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAitgpAR9CdFmSXlfVaLvDQfFxqX60
nfpb4ck5uH/Zecly180ZOuIUbk3iCusDWhAn4gSCr+ak0Virflx/9iE5OKQdrHoT
u+bHZwYAqTg/UVGHLlhTHWEmRy/foFPXEa6MMf1N3rQNts9ZW0kCW9jtm6umwfyN
UoT3JA1NduoEClf3i4Svy/i3NuMhpMwmuKqFS1KFwgxAVL20kFkduUtVddd/fB3Z
qOQJYFip8cytKIG0NI3kH472tdN7zvTonw+Aev5HXbS1UtvenybzT9YLWxG6GJwO
IYDIVn0sKQ+Ia2+HQX7TdCBrLFm6e626VDMdHRgeo4bTwqGcsvelq3x25wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJjysuFFckPxdPBb7NThgP/N+ElAMB8GA1UdIwQY
MBaAFDpI4DPetkrEJDxyzomdU4It9pltMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEt
YzUzMjFkYzllNjRiLzEvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEtYzUzMjFkYzllNjRi
LzEvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaCqFMS7V
5PRPlIx6D2kcJl4gbK2T5soLvbskVv+JIs8XLdA5N5NpVlDF02YFsgS1O4YqaT3s
GWDeTijMgmrFeMpdP9kW/XqS2Gug1DsT6aaazNooNEGJvwLNLmzkF9sWw4eJ/E9y
oKLXQMNMZx+6iNxuVqlNM4EVQUGAhbpr0Nw6SdpIqWXXNIxZxx62iqvfpab8eupp
I8r7d4md9aVnFX77EkSquZM9pRKZEnnj2pWH7dRoUnRp4IldOYVh6cCWVpZzgEWx
AUJz7uaKguqCRpA36d/T0YPRts0TDqa0g+ScQ1DTH+5CGuC/GY3TpwLNqLVwg8Xp
iKBsFRC84aTuqw==
-----END CERTIFICATE-----
Generated at Mon Jun 9 06:49:37 2025 by rpki-client