Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json)
Hash identifier: jL0Rn4kZzSTXisedolXNmGxWS3uWUqLMtgejQubuX2I=
Subject key identifier: 68:9F:93:9A:1E:83:13:9D:14:C0:C1:49:1D:18:C1:9B:65:D2:8C:35
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 0196A051A406F0E0EC3181B5A2BA088035F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
Manifest number: 1529
Signing time: Mon 05 May 2025 12:00:27 +0000
Manifest this update: Mon 05 May 2025 12:00:27 +0000
Manifest next update: Tue 06 May 2025 12:00:27 +0000
Files and hashes: 1: 5r0GrYVoAysKJDuHDPTj-1MVWCQ.roa (hash: XAzmjxdrpIx5mLyehPHseK/+jaakSPTIZ07v9R3ktfQ=)
2: 7gpUO99SfoacmIWvz5o-z3ESpPc.roa (hash: jBBU4x8HtuG0AJgjijT3pv++S+IgCjRtCv3AjftIABQ=)
3: JOJ9b2WkEIXJpzQl9CDXk_CHY94.roa (hash: SAmYAd0xvQRGMk1x62ICIfIVJyfWTunRcVeOhZ1E3l0=)
4: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: 4DWMB0W/v4JUJ2H6+TcOkdCP8SmYn6i4DGfZsS578Z4=)
5: _MMbboen6fjGZxdl1sjrAWa0F6o.roa (hash: lasMNF+CDNUkmhfnkFUMcQ2+Q/sn4RwC142SJaDCsYo=)
6: qTT5EzYYejgHx_-gozkgtiyWSxE.roa (hash: WcMM5EKO8L7zVDvgOOXzTCPHLyfkpMtxpa7CTFKHemk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:51:a4:06:f0:e0:ec:31:81:b5:a2:ba:08:80:35:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: May 5 12:00:27 2025 GMT
Not After : May 6 12:00:27 2025 GMT
Subject: CN=689f939a1e83139d14c0c1491d18c19b65d28c35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b3:d9:5d:06:d2:67:a7:48:c1:db:b1:fe:e8:
ca:e7:5f:94:bf:6f:b3:4e:33:6d:26:da:7f:b4:20:
b9:8d:b0:6f:ff:74:42:1f:6e:21:31:0a:3c:91:ff:
20:17:b5:0b:0c:0e:25:08:f1:21:7a:31:83:8e:7c:
14:de:5a:2a:2b:1d:3a:ea:9e:11:0b:2b:09:d1:d7:
0b:1b:65:d3:4d:71:4c:2a:13:9b:84:79:54:c0:a0:
b8:f1:6d:a2:62:c1:22:cf:1a:41:e5:4f:ad:9a:6e:
ec:1c:9c:fa:ce:f6:11:12:22:13:bd:d8:c4:89:9f:
db:6e:21:c5:b9:e9:4c:b8:68:8a:83:21:c2:51:9b:
3d:5b:d1:4b:2b:4b:b0:ca:6b:6b:e8:80:2d:cd:fb:
a4:aa:4d:41:c7:e6:8f:76:be:82:3c:2e:b8:93:05:
9b:81:0e:a2:21:4f:09:ab:fd:c7:e7:ce:3d:04:22:
87:1a:d1:40:dc:99:92:f4:88:b1:ef:61:3f:7a:db:
72:e4:db:0f:49:df:ae:ec:ca:d8:fc:ed:d0:a8:43:
a3:dc:6d:d0:58:46:9a:8c:90:b7:3a:67:ec:e8:e7:
11:a0:c3:68:be:a0:14:27:62:7f:85:00:51:52:78:
8f:1d:73:56:9f:ea:79:e7:ae:d3:50:63:36:b9:45:
00:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:9F:93:9A:1E:83:13:9D:14:C0:C1:49:1D:18:C1:9B:65:D2:8C:35
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:41:7d:dc:59:2f:50:40:93:6e:09:61:d8:bb:3e:c6:46:e3:
0c:b0:f8:6f:8c:0c:49:68:e5:c8:e9:61:98:96:43:9a:de:92:
8d:99:a6:5e:1c:ef:5a:89:36:5a:39:7a:6b:77:51:c4:1f:5b:
3b:5b:37:5f:dc:18:e4:01:8b:e6:54:5b:ce:17:7f:88:02:38:
a0:01:2c:d3:90:d6:71:d8:55:e2:5a:4f:3d:45:fe:75:50:54:
45:45:6d:a8:30:af:8f:93:2b:0f:30:c4:36:b5:a7:e3:16:59:
4b:bc:ff:ad:56:c1:21:f6:c6:a8:f7:8a:89:87:d6:55:8e:89:
40:d9:d2:f4:07:d6:33:4e:62:75:12:6d:ae:e9:24:af:49:4e:
92:70:d1:0e:0e:9d:48:94:4f:15:bd:02:1f:7f:c7:f3:66:77:
5c:b1:a8:65:7b:63:b2:9d:a5:09:b7:f5:46:56:2e:5b:a1:44:
43:fa:99:be:df:c6:6f:7a:73:2a:36:53:38:35:41:2d:3d:80:
d4:ee:a1:18:64:f2:27:6c:ec:14:33:eb:cf:68:4a:60:b1:f3:
ba:80:90:5f:0a:4f:1a:37:50:70:87:68:da:1f:0c:ab:b5:9d:
a8:63:6d:ed:47:cb:e1:3e:73:51:80:00:3c:77:7a:89:6e:8d:
42:ca:95:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZagUaQG8ODsMYG1oroIgDXwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YTg1NTA2NTliYjY4ZTc3MGQ4YjAxMjZiNzI2MWZiODdk
ODI0MGIwHhcNMjUwNTA1MTIwMDI3WhcNMjUwNTA2MTIwMDI3WjAzMTEwLwYDVQQD
Eyg2ODlmOTM5YTFlODMxMzlkMTRjMGMxNDkxZDE4YzE5YjY1ZDI4YzM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7PZXQbSZ6dIwdux/ujK51+Uv2+z
TjNtJtp/tCC5jbBv/3RCH24hMQo8kf8gF7ULDA4lCPEhejGDjnwU3loqKx066p4R
CysJ0dcLG2XTTXFMKhObhHlUwKC48W2iYsEizxpB5U+tmm7sHJz6zvYREiITvdjE
iZ/bbiHFuelMuGiKgyHCUZs9W9FLK0uwymtr6IAtzfukqk1Bx+aPdr6CPC64kwWb
gQ6iIU8Jq/3H5849BCKHGtFA3JmS9Iix72E/etty5NsPSd+u7MrY/O3QqEOj3G3Q
WEaajJC3Omfs6OcRoMNovqAUJ2J/hQBRUniPHXNWn+p5567TUGM2uUUAvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGifk5oegxOdFMDBSR0YwZtl0ow1MB8GA1UdIwQY
MBaAFDioVQZZu2jncNiwEmtyYfuH2CQLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEt
MWQ3MDNiNDk2NjM0LzEvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEtMWQ3MDNiNDk2NjM0
LzEvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASEF93Fkv
UECTbglh2Ls+xkbjDLD4b4wMSWjlyOlhmJZDmt6SjZmmXhzvWok2Wjl6a3dRxB9b
O1s3X9wY5AGL5lRbzhd/iAI4oAEs05DWcdhV4lpPPUX+dVBURUVtqDCvj5MrDzDE
NrWn4xZZS7z/rVbBIfbGqPeKiYfWVY6JQNnS9AfWM05idRJtrukkr0lOknDRDg6d
SJRPFb0CH3/H82Z3XLGoZXtjsp2lCbf1RlYuW6FEQ/qZvt/Gb3pzKjZTODVBLT2A
1O6hGGTyJ2zsFDPrz2hKYLHzuoCQXwpPGjdQcIdo2h8Mq7WdqGNt7UfL4T5zUYAA
PHd6iW6NQsqVcw==
-----END CERTIFICATE-----
Generated at Mon May 5 17:23:42 2025 by rpki-client