Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: B3EJMqEXecoEuiW5nhDwyqlyoewf0VJFyPMzVlX3xwo=
Subject key identifier: 8E:B3:D3:5B:EC:51:57:06:EF:D9:6D:10:A8:0D:E2:BB:F8:1C:A1:E2
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 0196BFDD655EA9F8140C92F43EF2E9CD1171
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0C1B
Signing time: Sun 11 May 2025 15:01:19 +0000
Manifest this update: Sun 11 May 2025 15:01:19 +0000
Manifest next update: Mon 12 May 2025 15:01:19 +0000
Files and hashes: 1: 0wAgKVyytNbhNR-_RR1IsIpFFy0.roa (hash: hGr01I8nbqs/LJEbN09Cfzd/lbJVo6JwWOtLmEfD1wA=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: Uxrj6jxgEUbhK67Hr4WppkX/ko2R0tvFCDNHcPc8kkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dd:65:5e:a9:f8:14:0c:92:f4:3e:f2:e9:cd:11:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: May 11 15:01:19 2025 GMT
Not After : May 12 15:01:19 2025 GMT
Subject: CN=8eb3d35bec515706efd96d10a80de2bbf81ca1e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1e:7b:4c:c5:98:b2:aa:1a:62:00:4a:a9:c5:
a1:9d:2f:e0:21:e6:59:c6:da:95:cf:8d:39:db:bc:
1c:47:dd:87:d5:e5:d3:03:36:01:37:b0:8d:f1:c1:
2f:80:d4:0f:8c:4c:28:28:59:ad:bf:22:c8:37:2a:
2f:1a:6e:ac:d6:a7:22:6b:56:b1:10:29:1d:ea:7c:
ef:33:4f:f4:73:8c:94:cd:54:5e:c5:65:53:78:66:
54:d4:26:0e:c6:35:2c:15:e4:fa:dc:50:8c:2e:75:
46:88:5b:0e:4b:9f:2d:37:68:5d:df:55:c6:12:05:
4d:76:47:5f:86:dd:f1:2f:91:3c:99:d3:13:85:f6:
a3:7f:a0:97:ad:62:96:ed:7a:8a:eb:15:1c:54:75:
9c:c8:b3:60:a5:9e:65:5d:b3:e0:fc:80:59:ff:d2:
2b:f5:6f:2d:88:73:34:b9:05:17:8e:ff:66:8f:3a:
a7:c0:31:3c:ca:95:d3:73:f1:d2:29:ac:9f:ca:2d:
d3:f8:ac:6a:31:d7:e2:c1:e0:7c:7e:63:ab:64:f7:
32:a4:6e:54:cb:be:74:ab:78:87:86:ba:38:48:36:
25:ed:fa:9b:97:55:67:e5:27:b1:44:41:73:2b:cd:
ad:11:06:5c:a1:2b:bc:93:54:ce:6e:8a:ac:41:0c:
23:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B3:D3:5B:EC:51:57:06:EF:D9:6D:10:A8:0D:E2:BB:F8:1C:A1:E2
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:60:0f:06:ff:44:0b:10:28:38:a7:58:82:8e:c9:53:67:89:
0d:49:60:f2:5c:9d:45:dd:7e:60:47:75:88:b5:0f:94:0b:92:
d4:55:c7:c5:16:de:29:8f:02:c3:cf:53:92:44:36:b7:fe:c1:
e1:fe:60:ba:4d:72:93:d2:f9:c7:c5:7a:da:50:d7:9a:c0:ec:
af:46:11:d1:7c:4c:01:7a:8d:f0:1f:c0:bd:d4:3b:1d:a1:05:
96:ab:1c:d2:3b:23:e3:fa:20:c1:b4:0e:1e:55:e1:71:27:c0:
f9:52:cc:d3:03:8e:ce:49:61:64:30:92:15:7f:ee:e3:39:87:
0d:96:ff:66:51:6c:5b:87:e0:03:82:6d:a4:52:ad:19:79:7d:
53:32:6e:05:41:4d:92:65:1e:94:eb:18:56:e5:1e:54:93:20:
21:6f:55:bc:15:f0:40:1a:77:5a:79:d4:02:1b:02:24:be:38:
c0:0a:16:dc:ab:3b:d8:63:b2:70:5a:03:c6:e9:a0:80:8a:b0:
11:90:da:cb:70:44:e1:3a:d8:54:7d:c0:cc:20:5b:ad:a5:90:
46:9a:e2:75:e6:b7:47:f0:01:5d:2e:df:9a:6e:9b:26:c1:00:
b5:96:f7:64:de:03:79:da:6c:52:70:d7:4c:bf:f9:bb:4e:2b:
e2:0b:cd:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:01:39 2025 by rpki-client