Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: J+Qei6x5VBjs+AZjOHQriLYB+LL8/zWqCsK1pZy1yWY=
Subject key identifier: 9E:31:66:8D:F7:2C:E3:58:58:11:03:DA:DF:01:7C:85:CC:31:57:99
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 01965048BB4732DE6F58AB486BC9663091FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 14A7
Signing time: Sat 19 Apr 2025 23:01:05 +0000
Manifest this update: Sat 19 Apr 2025 23:01:05 +0000
Manifest next update: Sun 20 Apr 2025 23:01:05 +0000
Files and hashes: 1: KBxZJWrk1-bZEdk3S7yVEPMKVtM.roa (hash: BpbYbbHeyy+1nQHRcRldIZ4LwMax+kHyBfVOH0ykZeU=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: fQj1XLAa0M5SPbQZHNwKMxhGkMg9zRo4v2W45DMqBOE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:bb:47:32:de:6f:58:ab:48:6b:c9:66:30:91:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Apr 19 23:01:05 2025 GMT
Not After : Apr 20 23:01:05 2025 GMT
Subject: CN=9e31668df72ce358581103dadf017c85cc315799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8f:57:8e:96:16:83:b0:c7:5b:69:83:e1:b6:
59:29:be:02:de:37:d2:28:cc:71:2c:ec:64:75:4e:
0c:9c:56:87:5b:d6:a7:6a:d3:8b:d5:13:a7:ae:e3:
54:3f:38:74:0e:31:43:9c:69:97:ac:79:e2:d5:ca:
91:56:ce:31:76:e5:5d:56:c7:62:d9:7a:84:46:e9:
54:55:29:3e:6b:29:70:04:bd:b3:19:34:f1:3e:e7:
29:fa:ea:dd:3a:40:06:49:59:06:87:77:ef:57:fb:
e0:f2:c6:b1:19:16:64:44:db:a6:e7:63:f2:99:01:
96:67:cb:66:30:51:e5:51:83:36:d4:14:6a:a6:9f:
51:f2:71:25:76:b6:4e:fb:bb:c4:90:cf:82:53:92:
e2:0a:ea:21:4a:4c:be:86:94:84:77:18:51:09:6b:
b1:1a:3c:82:dd:5f:82:27:91:51:b2:14:d5:22:84:
5c:b6:31:cf:51:e4:5d:02:0d:80:57:29:52:32:ad:
bf:d0:1e:f2:79:70:b6:2b:e6:11:22:e3:cc:67:60:
ba:b1:53:06:e7:7f:f2:57:36:51:45:11:77:69:e5:
9c:7a:e7:a6:30:d2:20:f8:73:c8:17:f8:9b:c3:8e:
74:f2:27:91:22:ee:c0:3f:8b:8d:e0:53:6b:b1:94:
bf:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:31:66:8D:F7:2C:E3:58:58:11:03:DA:DF:01:7C:85:CC:31:57:99
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:49:e6:90:21:a4:9b:e0:fe:bf:6e:4a:e0:5f:e0:36:f7:7d:
80:43:94:fb:f0:ce:2d:74:1a:39:4d:8c:d8:3e:d0:a0:0c:e0:
50:2d:cf:ea:73:7b:98:5f:a6:dc:ab:ae:ae:84:f4:9f:26:e0:
78:8d:ca:3e:18:2f:55:25:b1:1f:8a:07:0a:63:a7:ea:c0:b2:
5e:f5:08:42:c2:7b:8a:03:bc:b5:47:d6:eb:e7:4e:4b:ca:a0:
40:ec:ae:48:0e:a9:3e:ec:b1:70:57:b9:91:41:d0:93:f6:40:
d0:d4:e9:9f:f5:63:a2:f9:00:87:f2:cc:62:e6:29:83:a3:28:
8b:34:8f:0b:d7:19:a7:e4:48:91:5d:28:23:dd:ec:a4:db:ec:
c0:1b:70:98:17:ec:22:ed:45:1a:4c:79:80:dc:68:19:83:dc:
81:a1:a4:93:2d:6e:09:cc:56:7d:98:87:36:ea:8c:d4:46:17:
f8:01:5b:85:ac:20:fe:e9:3e:4a:fd:e2:f6:55:a3:a8:6d:3b:
25:57:86:4b:eb:18:1e:23:1b:ea:aa:f6:16:0d:0e:e7:d5:b2:
09:d4:0d:05:5e:2c:07:89:f1:9f:ce:ce:ce:4b:6e:61:a9:28:
53:61:b3:10:09:6c:e6:75:1f:ca:fa:91:87:b8:8c:76:7b:8e:
bf:25:a4:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:15:07 2025 by rpki-client