Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: QeTgYJO6+Q2DrV3v67WDBJbMFNqeZ+yzEdzCuGyzTB0=
Subject key identifier: 7E:A9:5E:4F:02:A4:F7:58:34:75:ED:E0:D1:99:C7:DF:5B:84:72:C3
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 01958B4D64AB744285AFFAB157067250FDD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 1441
Signing time: Wed 12 Mar 2025 17:00:59 +0000
Manifest this update: Wed 12 Mar 2025 17:00:59 +0000
Manifest next update: Thu 13 Mar 2025 17:00:59 +0000
Files and hashes: 1: KBxZJWrk1-bZEdk3S7yVEPMKVtM.roa (hash: BpbYbbHeyy+1nQHRcRldIZ4LwMax+kHyBfVOH0ykZeU=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: nDdkVLren+HPFZEGqi1jNGpDp1Sr6T5EAxImqXKxOJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:64:ab:74:42:85:af:fa:b1:57:06:72:50:fd:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Mar 12 17:00:59 2025 GMT
Not After : Mar 13 17:00:59 2025 GMT
Subject: CN=7ea95e4f02a4f7583475ede0d199c7df5b8472c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:63:b8:6b:aa:3b:43:ac:02:ae:6a:e7:ac:33:
8b:75:06:a9:f3:59:8a:3d:41:67:c8:91:45:e5:0d:
35:3d:5f:d9:78:e3:09:06:c5:93:cc:6b:93:87:d4:
29:81:05:4c:fb:7b:f6:b2:26:1c:37:26:ce:cd:80:
58:93:e8:82:d4:97:1e:0c:98:bb:90:e1:61:65:d6:
a8:80:90:70:79:41:6d:02:5d:37:a2:f2:e3:ef:c2:
e9:4c:24:5f:bf:cd:f5:35:d6:7a:ef:e5:7c:32:3c:
17:f8:af:0b:e5:63:73:12:00:f5:ae:85:f6:45:e8:
30:9d:33:81:d2:bb:7b:62:01:50:fd:02:23:68:c5:
c0:71:ec:52:3a:9a:7b:b7:6b:c5:7f:f5:69:24:82:
d0:c1:3b:6f:46:ae:e2:df:6d:2b:40:5c:ed:1d:c4:
33:c5:56:36:a2:cb:bb:f2:1a:ae:fc:25:14:67:27:
d8:a0:7a:f7:b8:62:d7:c5:76:06:3f:c5:60:b8:30:
72:1a:95:0d:fe:ef:36:e9:15:e8:6e:ee:51:f3:75:
ef:53:12:9f:ee:b8:e6:98:06:35:a5:79:82:9f:11:
f9:5b:e5:42:35:29:45:4c:22:85:f8:dc:3c:73:ce:
e9:5e:f0:cc:fa:58:8f:8a:ba:5c:c0:dd:85:3a:35:
b5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A9:5E:4F:02:A4:F7:58:34:75:ED:E0:D1:99:C7:DF:5B:84:72:C3
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:3f:a3:aa:32:bd:49:72:55:70:de:ea:0b:15:29:64:e3:80:
1b:f3:f7:ab:0e:bc:97:3a:e1:cd:8b:4e:bc:6d:40:03:d5:84:
be:0e:30:1e:2a:9c:58:7f:7a:e8:bd:82:ff:bb:ea:58:5e:3f:
7a:cc:ea:0f:2e:3d:d4:bc:66:c3:06:31:fa:c9:f5:08:18:1b:
71:07:c8:4c:2a:da:e9:c5:c1:5e:5b:02:ad:e9:16:8d:bb:a2:
36:9c:e2:32:46:fb:ef:a8:2a:ce:b0:09:b7:90:66:e0:cd:a5:
aa:43:4a:8b:48:2a:68:74:f4:54:a4:20:b2:d8:b2:bd:c6:7d:
0e:ed:18:21:ee:aa:9a:ef:4a:0a:27:b1:81:ac:8a:ff:b1:01:
1a:05:bd:90:ff:2d:a2:9d:ca:a1:64:5a:07:a8:ff:6d:b3:6b:
c6:d2:96:be:ad:98:61:0d:4b:f4:b7:50:07:3b:5c:65:a1:15:
72:3e:7d:0f:2e:fd:7e:8e:2d:79:39:1e:ad:e4:34:8c:23:c4:
32:44:03:67:18:03:66:99:a6:63:b5:39:56:c3:98:a6:0c:a7:
52:c0:4d:2f:3f:41:cf:2f:7e:5e:42:67:d3:18:84:a0:74:a6:
3a:7a:1d:db:4a:85:e8:3f:87:93:92:e7:a9:a5:66:dd:90:9e:
2d:5f:c8:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWLTWSrdEKFr/qxVwZyUP3UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YTM3YzI0ZGRjYTM0N2Q3MTNlZDc5NGQzM2NkNGE4MWE4
YjQ5OGEwHhcNMjUwMzEyMTcwMDU5WhcNMjUwMzEzMTcwMDU5WjAzMTEwLwYDVQQD
Eyg3ZWE5NWU0ZjAyYTRmNzU4MzQ3NWVkZTBkMTk5YzdkZjViODQ3MmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWO4a6o7Q6wCrmrnrDOLdQap81mK
PUFnyJFF5Q01PV/ZeOMJBsWTzGuTh9QpgQVM+3v2siYcNybOzYBYk+iC1JceDJi7
kOFhZdaogJBweUFtAl03ovLj78LpTCRfv831NdZ67+V8MjwX+K8L5WNzEgD1roX2
RegwnTOB0rt7YgFQ/QIjaMXAcexSOpp7t2vFf/VpJILQwTtvRq7i320rQFztHcQz
xVY2osu78hqu/CUUZyfYoHr3uGLXxXYGP8VguDByGpUN/u826RXobu5R83XvUxKf
7rjmmAY1pXmCnxH5W+VCNSlFTCKF+Nw8c87pXvDM+liPirpcwN2FOjW12QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH6pXk8CpPdYNHXt4NGZx99bhHLDMB8GA1UdIwQY
MBaAFDijfCTdyjR9cT7XlNM81Kgai0mKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0tOOEpOM0tOSDF4UHRlVTB6elVxQnFMU1lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZTMzYzMtZDE5Ny00NWYyLTgyOGUt
NDRhNDlkMjYzNzAwLzEvT0tOOEpOM0tOSDF4UHRlVTB6elVxQnFMU1lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xZTMzYzMtZDE5Ny00NWYyLTgyOGUtNDRhNDlkMjYzNzAw
LzEvT0tOOEpOM0tOSDF4UHRlVTB6elVxQnFMU1lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqD+jqjK9
SXJVcN7qCxUpZOOAG/P3qw68lzrhzYtOvG1AA9WEvg4wHiqcWH966L2C/7vqWF4/
eszqDy491LxmwwYx+sn1CBgbcQfITCra6cXBXlsCrekWjbuiNpziMkb776gqzrAJ
t5Bm4M2lqkNKi0gqaHT0VKQgstiyvcZ9Du0YIe6qmu9KCiexgayK/7EBGgW9kP8t
op3KoWRaB6j/bbNrxtKWvq2YYQ1L9LdQBztcZaEVcj59Dy79fo4teTkereQ0jCPE
MkQDZxgDZpmmY7U5VsOYpgynUsBNLz9Bzy9+XkJn0xiEoHSmOnod20qF6D+Hk5Ln
qaVm3ZCeLV/IgA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:05 2025 by rpki-client