Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json)
Hash identifier: pW3ccELyP6UhtPAOTBK5bkNjFtO4OHTUUp8VGh6VTfE=
Subject key identifier: 1D:C5:AA:91:96:14:D6:21:EA:CA:8C:94:46:8B:B1:E9:44:BD:92:44
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 01965123A01B4C907FB11DD3B214CAA5BD1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
Manifest number: 1500
Signing time: Sun 20 Apr 2025 03:00:11 +0000
Manifest this update: Sun 20 Apr 2025 03:00:11 +0000
Manifest next update: Mon 21 Apr 2025 03:00:11 +0000
Files and hashes: 1: 5r0GrYVoAysKJDuHDPTj-1MVWCQ.roa (hash: XAzmjxdrpIx5mLyehPHseK/+jaakSPTIZ07v9R3ktfQ=)
2: 7gpUO99SfoacmIWvz5o-z3ESpPc.roa (hash: jBBU4x8HtuG0AJgjijT3pv++S+IgCjRtCv3AjftIABQ=)
3: JOJ9b2WkEIXJpzQl9CDXk_CHY94.roa (hash: SAmYAd0xvQRGMk1x62ICIfIVJyfWTunRcVeOhZ1E3l0=)
4: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: Eb9psnoHM2v4Cn47clKdVNGa3LlwAWmO5Mgj6mzaysE=)
5: _MMbboen6fjGZxdl1sjrAWa0F6o.roa (hash: lasMNF+CDNUkmhfnkFUMcQ2+Q/sn4RwC142SJaDCsYo=)
6: qTT5EzYYejgHx_-gozkgtiyWSxE.roa (hash: WcMM5EKO8L7zVDvgOOXzTCPHLyfkpMtxpa7CTFKHemk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 03:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:23:a0:1b:4c:90:7f:b1:1d:d3:b2:14:ca:a5:bd:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: Apr 20 03:00:11 2025 GMT
Not After : Apr 21 03:00:11 2025 GMT
Subject: CN=1dc5aa919614d621eaca8c94468bb1e944bd9244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b1:ff:35:22:64:45:56:06:72:6c:9d:97:e1:
0a:4f:2d:da:f9:9f:b6:3e:75:e8:71:91:f9:ef:5f:
1d:0a:cd:df:4b:50:a7:d5:ae:de:87:09:a6:a7:b6:
70:1c:95:1c:56:24:25:b6:53:dd:84:1a:ac:12:55:
62:de:68:9b:7f:38:93:52:31:50:aa:fa:c4:84:39:
64:79:57:20:10:1f:c8:41:4e:92:6b:1f:75:46:28:
30:e2:6a:3e:2f:2c:15:4f:fc:27:a6:73:32:7d:cb:
db:fe:92:63:3f:ec:7a:8c:3f:e2:4c:61:50:71:3b:
9d:81:ce:1a:f0:9d:83:76:72:a5:a5:78:35:3c:dd:
09:79:d1:92:3a:72:59:21:6c:a2:78:2c:af:86:ca:
64:3d:de:51:f2:c3:c5:ce:73:42:8e:56:00:65:87:
4a:5e:13:3f:a1:d0:37:69:97:2d:0f:b4:7b:55:41:
ab:04:21:94:48:82:b1:4c:a0:4e:6b:d2:39:80:fe:
e9:f8:4a:b8:0d:1f:25:10:9f:37:15:4e:0a:3a:32:
bc:a2:3c:1d:5d:04:d2:a1:a0:f1:83:ea:f1:81:07:
2d:3a:26:bf:d9:c3:9c:0f:f4:b5:9a:47:94:df:d5:
b5:1b:6d:49:01:1e:f1:bf:f9:ac:8a:86:5d:1f:64:
a0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C5:AA:91:96:14:D6:21:EA:CA:8C:94:46:8B:B1:E9:44:BD:92:44
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:e0:de:03:03:d5:4a:a9:8a:78:f4:98:9b:1d:e0:94:cc:ee:
fc:29:80:07:35:0a:d9:be:f7:80:17:ca:26:cb:fa:96:d6:4f:
0a:39:8f:d2:67:dd:a7:5c:04:e8:49:33:d7:fa:89:4a:1f:90:
25:05:5c:80:3d:11:9a:e5:d6:2c:af:7a:7b:0e:f8:5b:e0:9a:
1b:46:9d:2c:f4:21:20:e3:3d:dc:b5:85:7b:07:d8:6a:64:7a:
32:9d:8f:70:83:67:a2:fd:58:a6:0c:da:45:cf:81:05:61:5d:
0c:9a:67:19:2f:c4:24:1e:0f:16:3e:02:e9:f8:ab:17:09:5d:
a2:6c:aa:30:7b:bf:a3:49:44:e4:f6:d8:7b:1d:fa:3d:b7:69:
62:e7:1b:8b:2c:20:13:e1:ca:5e:88:94:e6:74:1f:62:26:a8:
4c:d3:e5:db:d4:44:3f:ba:d3:59:27:12:b1:c1:8d:f7:67:dd:
09:24:e8:89:af:4c:fb:ad:40:02:4f:4b:4a:ad:8e:f3:a4:c5:
7a:fd:03:26:b6:70:0f:57:9a:ab:f8:80:1f:e3:59:95:ff:0b:
08:83:c5:30:2b:3d:53:8c:03:0f:1a:b2:99:f9:46:6b:44:87:
a1:24:ee:3f:d2:33:3b:f8:7b:b0:eb:27:3c:be:ef:2a:95:52:
0a:d1:4f:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:17:10 2025 by rpki-client