Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: U8/XGrJRXGOrWp1gXp0FrarU6yGG8U03QcYoNccV724=
Subject key identifier: B0:5F:C8:BE:6C:CD:25:35:FE:46:C0:38:18:9B:13:28:2F:77:AE:13
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 0196409E97210C34FAE792A9F948C07613A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 13DB
Signing time: Wed 16 Apr 2025 22:00:57 +0000
Manifest this update: Wed 16 Apr 2025 22:00:57 +0000
Manifest next update: Thu 17 Apr 2025 22:00:57 +0000
Files and hashes: 1: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: TnPrzsrnxSEijdpJRelbLJSiwpACEOGM12HDFDiWq1A=)
2: VIlea1HGjGCn_MVKwJV926-pJjE.roa (hash: A01QP610OFwth+XnetlpJQSsjmOQSdq9hALxJi5jMPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:9e:97:21:0c:34:fa:e7:92:a9:f9:48:c0:76:13:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Apr 16 22:00:57 2025 GMT
Not After : Apr 17 22:00:57 2025 GMT
Subject: CN=b05fc8be6ccd2535fe46c038189b13282f77ae13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:99:b3:db:39:52:8c:d8:db:71:d0:69:65:4c:
cc:14:79:cd:3f:55:9e:3f:e8:a2:62:cb:d4:cb:26:
fd:d0:57:7d:f4:00:39:9d:8a:87:7d:90:7b:ee:2b:
4f:93:83:06:35:eb:1d:c2:cc:ab:1d:6b:25:92:06:
01:71:cc:59:9c:44:37:61:1a:7c:35:2c:60:ef:c7:
b5:24:c6:5a:fe:7d:49:81:bb:b9:8f:68:9b:e0:bc:
fe:5f:94:d0:97:03:f9:4e:08:89:ac:83:22:06:63:
4f:0d:2c:97:28:5f:fc:d3:28:cb:a0:45:98:ad:df:
f6:30:8c:26:bd:e4:88:79:9c:ba:75:0e:9e:2f:67:
11:6a:dc:fc:94:de:c4:80:70:24:32:66:0a:28:99:
4c:60:ce:1e:93:9a:8c:33:e0:ca:97:25:1f:69:2c:
fc:6e:ad:75:2e:0b:97:16:0a:98:f0:4c:c6:1c:c2:
21:6d:de:ca:2d:eb:44:0e:b7:23:96:f9:38:bf:b5:
d5:36:39:8a:73:aa:44:b0:e6:5c:75:cb:e6:99:82:
b8:e7:53:1c:85:28:7c:9c:2c:f4:d8:f2:16:37:65:
3c:f9:aa:21:37:4a:30:53:a7:8f:4a:6f:af:27:30:
39:c4:db:7f:41:bf:88:cd:31:92:7f:84:b6:fd:ba:
5c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5F:C8:BE:6C:CD:25:35:FE:46:C0:38:18:9B:13:28:2F:77:AE:13
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:fa:3e:c1:62:29:8a:cd:3e:fe:53:9f:7b:8c:50:15:f2:c8:
8a:f1:f3:28:77:ad:2b:32:99:84:8b:ae:2e:4f:55:28:7b:bf:
11:c9:9b:53:d7:5e:4b:79:ce:e2:a4:8e:e1:a5:f2:a5:11:4a:
59:fa:24:ff:7d:d5:a6:cb:63:4d:42:cd:d3:02:c2:fe:47:02:
39:c1:8c:45:fc:cf:f3:90:85:3e:68:03:73:6c:30:fc:b4:44:
89:5f:8e:6a:69:04:44:29:8d:be:7a:e2:51:b8:fd:b6:fc:54:
cc:a5:b7:a7:96:7b:5e:0d:ad:1a:4e:16:6e:d1:e0:ee:e5:80:
d3:5c:0c:6d:fe:7b:22:ac:0f:32:3b:45:45:52:65:35:cf:67:
75:11:35:02:af:74:24:cb:cc:c7:9f:99:21:97:27:23:4d:e5:
d6:be:01:4c:b4:79:87:24:37:f3:1a:b9:f5:eb:9e:c9:72:a5:
80:d6:5c:c1:c7:a7:b7:f3:11:57:41:29:ce:0b:70:e7:bd:30:
66:d6:83:66:f7:52:1d:6a:33:ac:b8:5c:82:db:48:5c:a1:91:
81:33:68:cf:25:58:1a:49:f8:1b:1c:96:69:79:eb:a8:b8:3d:
d9:4a:2e:30:17:dd:b1:9e:28:e4:ce:36:a3:0a:79:b7:32:ca:
29:bd:51:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZAnpchDDT655Kp+UjAdhOhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NzI4ZTliZDM3Mzk5ZGY5ZmZhZTU4N2JkMDY4ODRiMzUw
YTY1YjcwHhcNMjUwNDE2MjIwMDU3WhcNMjUwNDE3MjIwMDU3WjAzMTEwLwYDVQQD
EyhiMDVmYzhiZTZjY2QyNTM1ZmU0NmMwMzgxODliMTMyODJmNzdhZTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJmz2zlSjNjbcdBpZUzMFHnNP1We
P+iiYsvUyyb90Fd99AA5nYqHfZB77itPk4MGNesdwsyrHWslkgYBccxZnEQ3YRp8
NSxg78e1JMZa/n1Jgbu5j2ib4Lz+X5TQlwP5TgiJrIMiBmNPDSyXKF/80yjLoEWY
rd/2MIwmveSIeZy6dQ6eL2cRatz8lN7EgHAkMmYKKJlMYM4ek5qMM+DKlyUfaSz8
bq11LguXFgqY8EzGHMIhbd7KLetEDrcjlvk4v7XVNjmKc6pEsOZcdcvmmYK451Mc
hSh8nCz02PIWN2U8+aohN0owU6ePSm+vJzA5xNt/Qb+IzTGSf4S2/bpc+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLBfyL5szSU1/kbAOBibEygvd64TMB8GA1UdIwQY
MBaAFDhyjpvTc5nfn/rlh70GiEs1CmW3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzIt
ZjhjZmEzM2Q2ODRlLzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzItZjhjZmEzM2Q2ODRl
LzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACfo+wWIp
is0+/lOfe4xQFfLIivHzKHetKzKZhIuuLk9VKHu/EcmbU9deS3nO4qSO4aXypRFK
Wfok/33VpstjTULN0wLC/kcCOcGMRfzP85CFPmgDc2ww/LREiV+OamkERCmNvnri
Ubj9tvxUzKW3p5Z7Xg2tGk4WbtHg7uWA01wMbf57IqwPMjtFRVJlNc9ndRE1Aq90
JMvMx5+ZIZcnI03l1r4BTLR5hyQ38xq59eueyXKlgNZcwcent/MRV0Epzgtw570w
ZtaDZvdSHWozrLhcgttIXKGRgTNozyVYGkn4GxyWaXnrqLg92UouMBfdsZ4o5M42
owp5tzLKKb1R1A==
-----END CERTIFICATE-----
Generated at Thu Apr 17 02:14:15 2025 by rpki-client