Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: StPiElOliGMOffDbgasEkIlwK3W9rEryR4BmUqdPlIk=
Subject key identifier: 62:D3:E7:07:F3:80:65:CB:E2:1A:C5:5E:F8:43:4E:76:BF:12:0A:49
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 0196C0B87C8379B4515140AD3D417B493069
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 14C7
Signing time: Sun 11 May 2025 19:00:37 +0000
Manifest this update: Sun 11 May 2025 19:00:37 +0000
Manifest next update: Mon 12 May 2025 19:00:37 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: 1bV0Odo1wWIN9lEPSGO/HvIQW5mCHnFN/8sIPMQvUYE=)
2: oU-Dh2GrIk6DJo0B3ckZobCZQLg.roa (hash: 3M/n9wvPmKU+uLTP2MTaGav/2cb5GDciUi4YXKv/+G0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 19:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:b8:7c:83:79:b4:51:51:40:ad:3d:41:7b:49:30:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: May 11 19:00:37 2025 GMT
Not After : May 12 19:00:37 2025 GMT
Subject: CN=62d3e707f38065cbe21ac55ef8434e76bf120a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e6:94:63:4b:52:1a:b3:58:64:47:70:78:b1:
5a:40:a6:4f:51:a6:35:20:96:5e:bd:79:dc:22:25:
d2:ea:70:03:37:55:48:59:28:e9:cd:45:4b:6d:6a:
d8:f3:b6:3f:18:13:56:d7:ff:4d:80:e2:af:7d:c8:
48:79:c3:1f:a0:3b:32:17:9f:23:e9:f1:97:e6:d0:
cc:44:07:ec:af:30:7d:27:b3:ca:cd:ce:0c:d0:06:
4c:fa:9e:4d:bd:eb:ff:80:3f:6c:44:c3:97:10:23:
3f:6e:7e:09:2a:18:b3:29:e0:60:a0:d2:38:ba:4d:
86:17:78:fd:01:a7:6f:69:5e:98:cc:dd:a8:89:df:
a8:31:8f:78:52:01:ae:9f:96:f8:06:ab:4c:0f:a8:
3c:7a:16:36:4c:c0:09:06:f4:5c:19:5a:a5:db:f1:
4d:64:f5:2e:f9:c4:d3:0b:ab:71:9c:80:56:f8:03:
bb:27:93:6b:b0:6b:5b:17:dd:99:ab:81:77:84:33:
26:8b:bb:59:cc:f5:a3:25:6f:b3:72:3b:47:d9:ce:
fc:0b:67:bb:48:a0:94:c6:f7:25:16:89:65:c7:9c:
33:d1:37:5f:31:6c:4a:55:2d:c7:ca:15:6f:14:fd:
9a:70:e5:0e:ed:81:24:81:84:5c:4f:3c:9d:51:f1:
04:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D3:E7:07:F3:80:65:CB:E2:1A:C5:5E:F8:43:4E:76:BF:12:0A:49
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:a3:4e:b4:6a:5b:41:d2:e4:4d:87:cf:30:fc:66:ff:f1:60:
f4:0b:bd:8b:0c:f0:85:23:d3:ed:b4:95:61:be:3d:53:21:93:
79:7c:d3:52:e0:72:26:7f:dd:e0:28:79:0a:84:7f:97:4e:18:
95:33:27:5c:fd:e2:df:bc:75:1e:82:77:ff:b5:91:47:ed:cf:
e3:39:fa:08:8d:94:e3:63:c7:ef:51:7b:53:79:ee:54:58:3a:
ea:68:fb:8f:27:a1:99:00:a0:8b:7b:e3:90:ee:36:6d:f8:96:
61:dd:4f:31:12:41:c0:9c:44:95:a3:90:68:1d:39:7c:ca:66:
c1:7e:3d:c6:2b:8d:db:15:2f:b7:11:98:45:d5:06:54:e5:99:
4f:27:9d:cb:4d:fc:f7:d1:bc:8b:cd:2a:01:44:38:dd:9a:ad:
51:6a:2a:5f:56:a9:39:1a:6a:30:cd:ef:4b:7c:17:7e:69:fa:
c6:2a:c4:4e:dc:33:49:24:d6:eb:72:7e:a6:bf:5d:d4:ae:47:
f0:09:1e:a3:d7:14:bb:f8:23:59:b1:33:b0:a1:90:44:14:06:
8f:7c:64:da:98:f3:0c:b1:c2:09:fc:9a:60:1c:91:a9:b2:9f:
76:16:b4:78:5b:79:37:08:a5:6b:31:68:e7:fe:aa:20:04:d1:
e2:43:d0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:25:58 2025 by rpki-client