Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: EGG5hjdmh2dXgo5x7FFmAuvRXAiASZQMPMPARC1irLc=
Subject key identifier: B5:ED:C4:1A:C5:25:D1:1D:62:1B:AC:E7:61:33:9E:30:ED:96:22:DE
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 01964DEC8C84CB21EEBB8057BBA7D7C5CACF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0BE0
Signing time: Sat 19 Apr 2025 12:01:09 +0000
Manifest this update: Sat 19 Apr 2025 12:01:09 +0000
Manifest next update: Sun 20 Apr 2025 12:01:09 +0000
Files and hashes: 1: 0wAgKVyytNbhNR-_RR1IsIpFFy0.roa (hash: hGr01I8nbqs/LJEbN09Cfzd/lbJVo6JwWOtLmEfD1wA=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: BVirf1g6R+qynvCbBrWGUsmZY+wg5sF4lzlZhnLcuZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:8c:84:cb:21:ee:bb:80:57:bb:a7:d7:c5:ca:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Apr 19 12:01:09 2025 GMT
Not After : Apr 20 12:01:09 2025 GMT
Subject: CN=b5edc41ac525d11d621bace761339e30ed9622de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:97:4f:95:90:b2:81:86:8f:e6:ec:df:23:41:
bb:ec:36:0f:32:8d:84:bd:ff:34:25:52:e6:6c:cd:
c5:33:7c:06:93:93:79:8d:55:a5:e9:f9:1e:03:7a:
9b:40:94:cd:31:3e:db:9e:63:96:3e:2d:8c:9c:52:
df:3d:74:eb:aa:57:6c:4b:29:4a:7a:3a:2a:a2:04:
d8:46:1b:da:a2:4b:9e:78:cb:10:6b:17:48:a2:63:
19:d0:74:87:a5:f8:23:e5:2f:5b:13:01:9f:39:06:
a5:45:ab:99:69:c2:8f:a9:da:c9:cf:44:f7:1a:2d:
b1:e9:a9:1f:a7:55:8b:b2:8e:ec:b7:b6:26:f7:68:
22:3e:f3:dd:8a:9d:9f:80:0b:2b:5f:77:ab:45:ee:
c6:67:a2:d8:30:6e:10:28:b1:55:7b:3a:25:e3:9d:
18:54:45:7c:f6:72:d4:88:ae:9d:c8:28:c8:7b:03:
fe:ba:5c:e3:51:24:2a:36:28:a3:c3:a4:62:0d:5f:
6b:09:a5:21:dc:d2:4e:e8:62:af:fb:63:dc:97:f6:
44:44:2d:7f:53:58:36:86:5a:2d:60:0f:c5:58:ba:
b8:00:15:77:eb:33:2c:60:9b:63:3f:90:19:f5:78:
a3:1a:fe:00:57:84:04:af:7d:cf:41:47:a4:4f:19:
a8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:ED:C4:1A:C5:25:D1:1D:62:1B:AC:E7:61:33:9E:30:ED:96:22:DE
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:d9:13:e8:69:7d:f5:b4:ea:d8:a3:50:33:b6:88:ce:6b:65:
0f:51:09:87:21:0e:0f:fa:09:07:bc:64:9f:b5:df:d4:2c:b4:
2a:31:47:27:c1:b4:c5:cb:43:38:c5:bd:8d:a1:ac:91:91:0c:
14:df:03:f0:ae:58:34:2a:5e:e6:71:52:aa:81:62:8d:29:20:
8d:0d:90:f2:82:7c:53:b4:74:df:1d:ab:17:26:2d:05:9d:38:
25:76:12:fa:9c:a9:7c:ab:f3:4b:fd:af:ee:47:f4:8a:b4:15:
29:37:ac:0e:47:91:80:4e:65:b1:08:d9:5c:24:37:1b:4f:4d:
18:e3:f5:a4:8e:af:fe:5b:c6:f7:c7:ef:f9:fc:08:7f:9d:40:
d8:58:e9:32:f1:79:71:f8:3e:53:44:2d:82:ca:ef:9a:a6:e7:
89:7e:12:d6:64:be:88:c9:20:ca:4f:5f:a9:7a:01:cf:34:8e:
1f:3c:0e:c8:44:b8:0b:14:97:31:db:04:cf:aa:76:2a:cb:e9:
ff:21:31:f2:54:16:3d:31:a2:a4:f2:c9:97:99:e3:d2:83:3f:
6c:23:90:25:3a:e4:96:2a:84:56:53:01:2b:61:a4:e6:4d:94:
05:be:2e:e0:34:60:dd:ba:ad:65:e6:48:fe:a5:ec:ef:e6:db:
44:7a:31:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:24:24 2025 by rpki-client