Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: Dvs2+QJY348b7lpIBj4JDz9xxxcS5TuOZifw5BcZ4h8=
Subject key identifier: 0E:18:C6:A2:7B:65:C9:16:2A:CC:68:1A:16:18:60:0C:89:9C:0C:D2
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 01951135088124E730A740C3255D67D22A0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0B3C
Signing time: Mon 17 Feb 2025 00:00:42 +0000
Manifest this update: Mon 17 Feb 2025 00:00:42 +0000
Manifest next update: Tue 18 Feb 2025 00:00:42 +0000
Files and hashes: 1: 0wAgKVyytNbhNR-_RR1IsIpFFy0.roa (hash: hGr01I8nbqs/LJEbN09Cfzd/lbJVo6JwWOtLmEfD1wA=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: K5vjEy1/XvbnddZT88uJYmgIkfJED5LVFVoWrpN/mXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:08:81:24:e7:30:a7:40:c3:25:5d:67:d2:2a:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Feb 17 00:00:42 2025 GMT
Not After : Feb 18 00:00:42 2025 GMT
Subject: CN=0e18c6a27b65c9162acc681a1618600c899c0cd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1a:a9:61:0e:71:7d:c2:a2:97:6d:f5:37:2a:
49:8a:82:0e:8e:15:bb:a0:22:9a:cf:f8:8d:22:14:
91:d8:88:8d:21:09:25:63:4a:ba:93:86:9a:99:47:
a7:48:9e:b9:ce:a4:a0:96:ed:7f:1e:3e:26:67:bc:
6c:b7:97:7c:fa:df:b1:21:dd:45:c5:f1:94:92:19:
2b:fa:83:a8:34:ff:e0:45:7b:ce:26:2c:16:3d:ca:
ce:a7:4c:c2:d9:57:a4:8a:85:b0:bb:4b:c7:8d:28:
70:dc:e3:52:7e:1a:3a:24:bb:08:8a:31:ba:58:d9:
45:e6:64:62:4b:8b:c2:d6:7a:ca:71:94:4a:24:b9:
fe:2e:61:20:77:c2:cd:43:9e:45:34:7c:9d:cf:32:
67:0f:d5:a1:c2:e3:71:bc:3e:ab:7c:62:5f:31:ea:
e8:41:6d:38:cd:81:4d:bb:66:01:79:35:70:5f:0e:
a2:58:1c:0e:0f:7c:ee:30:34:26:f1:e9:e8:81:df:
01:fd:a6:63:8f:d9:3b:1c:f1:3e:30:fc:2d:37:7f:
6e:b6:16:50:ac:82:34:32:4f:ae:7c:db:4e:84:68:
c1:4e:84:5c:d6:74:98:b5:01:61:bd:7a:12:6d:0e:
8f:d4:ee:6c:79:76:bb:bd:d2:bd:8e:8e:ec:71:c7:
4b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:18:C6:A2:7B:65:C9:16:2A:CC:68:1A:16:18:60:0C:89:9C:0C:D2
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:e6:da:c0:96:92:80:42:0d:86:52:03:c1:79:2e:4a:1d:04:
ab:cf:e6:bd:42:69:b7:12:b8:58:d1:ed:ae:b5:00:a2:b3:fc:
1d:64:ef:89:8b:d6:7b:5d:68:c8:72:7b:96:ad:3d:a9:0e:9c:
a4:ce:5e:a0:84:63:a4:72:6f:21:bc:83:32:cc:84:44:5c:ec:
67:52:51:aa:ee:dc:b5:64:b9:9d:95:25:3e:2a:e2:79:24:d0:
4e:40:b6:a7:76:97:67:03:41:80:03:3c:41:30:a2:df:05:6b:
48:a9:82:93:e7:df:c8:cc:2d:32:93:dc:13:e9:b1:41:ad:e5:
f7:78:93:c9:eb:fe:53:72:9f:aa:88:a4:2c:ba:ea:d6:1e:6b:
ab:69:06:9f:45:22:76:06:45:9c:e9:bb:f6:a3:c8:f8:2c:72:
16:5d:01:7e:1e:da:c5:6b:b5:b1:7e:c4:59:15:d6:49:5b:6c:
f1:ce:47:b2:bd:ad:5c:c8:c8:9c:1f:aa:96:ba:73:2d:00:d7:
15:a0:1b:44:98:fd:11:a5:2c:9f:66:08:3b:65:c7:75:f3:e2:
d7:19:65:4a:49:9b:92:3a:ea:74:94:9f:a9:28:3b:30:d6:28:
4f:6d:67:81:13:0c:52:f9:3a:5d:71:b2:f7:6e:f5:7d:53:cc:
d2:0f:13:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNQiBJOcwp0DDJV1n0ioNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDBmZjE1NGM0NTM5NDNhMGIwMmFhNjUwMjFjOWMyNjQ5
NDdjMmIwHhcNMjUwMjE3MDAwMDQyWhcNMjUwMjE4MDAwMDQyWjAzMTEwLwYDVQQD
EygwZTE4YzZhMjdiNjVjOTE2MmFjYzY4MWExNjE4NjAwYzg5OWMwY2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRqpYQ5xfcKil231NypJioIOjhW7
oCKaz/iNIhSR2IiNIQklY0q6k4aamUenSJ65zqSglu1/Hj4mZ7xst5d8+t+xId1F
xfGUkhkr+oOoNP/gRXvOJiwWPcrOp0zC2VekioWwu0vHjShw3ONSfho6JLsIijG6
WNlF5mRiS4vC1nrKcZRKJLn+LmEgd8LNQ55FNHydzzJnD9WhwuNxvD6rfGJfMero
QW04zYFNu2YBeTVwXw6iWBwOD3zuMDQm8enogd8B/aZjj9k7HPE+MPwtN39uthZQ
rII0Mk+ufNtOhGjBToRc1nSYtQFhvXoSbQ6P1O5seXa7vdK9jo7sccdLsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA4YxqJ7ZckWKsxoGhYYYAyJnAzSMB8GA1UdIwQY
MBaAFDpA/xVMRTlDoLAqplAhycJklHwrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQt
ODJiYjBiYjExZTNlLzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQtODJiYjBiYjExZTNl
LzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeubawJaS
gEINhlIDwXkuSh0Eq8/mvUJptxK4WNHtrrUAorP8HWTviYvWe11oyHJ7lq09qQ6c
pM5eoIRjpHJvIbyDMsyERFzsZ1JRqu7ctWS5nZUlPirieSTQTkC2p3aXZwNBgAM8
QTCi3wVrSKmCk+ffyMwtMpPcE+mxQa3l93iTyev+U3KfqoikLLrq1h5rq2kGn0Ui
dgZFnOm79qPI+CxyFl0Bfh7axWu1sX7EWRXWSVts8c5Hsr2tXMjInB+qlrpzLQDX
FaAbRJj9EaUsn2YIO2XHdfPi1xllSkmbkjrqdJSfqSg7MNYoT21ngRMMUvk6XXGy
9271fVPM0g8Tsw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:31 2025 by rpki-client