Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json)
Hash identifier: bP3+8oMqhLw+TbrosBLFTiY/B6rx2YBsVKGa2poxuDo=
Subject key identifier: 5F:A6:FF:E3:0C:A4:1F:1E:1A:A0:16:FC:CF:04:50:B9:0A:C9:F5:C0
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 0197485521AD6E6CC3CDC7A81B17F8B29D16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 03:00:28 +0000
Manifest this update: Sat 07 Jun 2025 03:00:28 +0000
Manifest next update: Sun 08 Jun 2025 03:00:28 +0000
Files and hashes: 1: 5r0GrYVoAysKJDuHDPTj-1MVWCQ.roa (hash: XAzmjxdrpIx5mLyehPHseK/+jaakSPTIZ07v9R3ktfQ=)
2: 7gpUO99SfoacmIWvz5o-z3ESpPc.roa (hash: jBBU4x8HtuG0AJgjijT3pv++S+IgCjRtCv3AjftIABQ=)
3: JOJ9b2WkEIXJpzQl9CDXk_CHY94.roa (hash: SAmYAd0xvQRGMk1x62ICIfIVJyfWTunRcVeOhZ1E3l0=)
4: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: P2VLLhXjM5prWBzGbPVTrsH0Ax2k5IkrHWt0IyRe7vo=)
5: _MMbboen6fjGZxdl1sjrAWa0F6o.roa (hash: lasMNF+CDNUkmhfnkFUMcQ2+Q/sn4RwC142SJaDCsYo=)
6: qTT5EzYYejgHx_-gozkgtiyWSxE.roa (hash: WcMM5EKO8L7zVDvgOOXzTCPHLyfkpMtxpa7CTFKHemk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:21:ad:6e:6c:c3:cd:c7:a8:1b:17:f8:b2:9d:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: Jun 7 03:00:28 2025 GMT
Not After : Jun 8 03:00:28 2025 GMT
Subject: CN=5fa6ffe30ca41f1e1aa016fccf0450b90ac9f5c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:82:a6:3f:51:82:3f:ab:e3:90:50:93:4f:cf:
a2:9b:f7:67:e3:90:e1:2f:03:8f:8d:df:df:df:3b:
e1:40:cb:26:17:d3:c0:82:86:93:28:5a:37:1f:fb:
b2:d1:62:1c:82:f6:e2:d3:50:40:0e:91:02:d9:e8:
92:98:02:fa:c4:0a:68:df:8c:1f:df:eb:2b:ac:4e:
eb:0e:37:f6:a5:97:9c:6d:66:10:69:88:48:52:83:
d6:ad:31:eb:08:00:53:df:70:1e:41:18:22:41:66:
44:e4:d2:9c:c0:93:99:08:09:cf:3b:46:e2:82:a2:
80:e4:3b:1d:d2:ab:42:6f:f5:e4:d7:76:75:bd:56:
7e:32:62:e8:b6:c7:45:db:03:38:e5:d0:dd:dd:44:
0b:39:7d:41:4d:d5:e5:6f:b9:4c:3d:2c:52:d7:c7:
25:ae:85:e0:b0:12:b7:1f:0c:8f:a6:62:a4:a4:0f:
93:30:23:50:8d:f2:69:29:b0:21:a9:f4:d6:67:61:
7c:4e:f8:46:ac:12:97:28:e3:a4:75:13:84:f3:5a:
c8:72:30:ae:79:43:93:13:48:48:f7:46:e1:b9:49:
a1:4f:d1:1c:9f:c0:ee:7f:c4:99:22:03:67:e3:89:
39:2e:05:6b:7e:3c:ae:78:ae:32:1e:af:1d:f1:80:
b0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A6:FF:E3:0C:A4:1F:1E:1A:A0:16:FC:CF:04:50:B9:0A:C9:F5:C0
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:6b:e1:c4:da:f4:36:32:7d:c8:8c:fe:06:b1:3d:2b:ca:90:
b5:fc:a2:82:08:2a:7b:9e:2d:35:cf:28:6a:96:72:93:1d:38:
72:3e:1e:00:49:90:2c:d7:67:fd:95:ee:40:9d:ac:96:14:d1:
0a:5c:39:8e:82:00:af:3b:c6:7d:5f:38:e3:7b:eb:fc:8e:da:
3e:fd:16:b3:f5:f5:7d:18:62:7d:cc:ca:a7:81:15:1d:b8:f2:
7e:30:78:da:98:b7:0e:44:44:95:bb:3e:7b:1c:29:fd:1f:9c:
27:20:78:c4:d7:54:f0:05:28:f8:50:98:a0:3c:e7:c7:f6:a0:
9a:6a:0f:1d:07:cf:fb:b6:49:a8:d3:6e:ba:a4:3c:f3:e1:3e:
cf:4e:2a:46:46:01:49:cf:8d:f5:96:19:a3:17:f1:37:fe:91:
64:4c:a2:97:30:96:12:8d:94:57:dc:1c:2c:05:4e:b6:f7:c0:
3c:0a:ec:d4:8d:4f:e3:5d:f1:73:56:d1:24:f9:ac:cc:ca:0f:
28:b9:e3:79:56:e7:be:bb:18:c1:3b:7a:fc:ad:92:9c:3d:39:
ef:27:85:8c:f8:d8:30:43:da:e2:ca:89:99:98:9f:53:7e:9a:
b0:13:6a:0b:d9:dc:57:af:77:7a:c8:1c:d8:bc:ce:e1:6c:c8:
f7:3b:10:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:58:27 2025 by rpki-client