Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: 9Ls26yOOu/eHnHUTIQEtiIZqp4vncHIhuU2wAvw0lU4=
Subject key identifier: E8:15:0E:8D:FB:B6:DE:EC:C6:EB:1F:AB:0F:F8:E1:08:4F:B3:63:EA
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 0196A5415C9D300A32B84C5D7D4B60F71940
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 14D3
Signing time: Tue 06 May 2025 11:00:46 +0000
Manifest this update: Tue 06 May 2025 11:00:46 +0000
Manifest next update: Wed 07 May 2025 11:00:46 +0000
Files and hashes: 1: KBxZJWrk1-bZEdk3S7yVEPMKVtM.roa (hash: BpbYbbHeyy+1nQHRcRldIZ4LwMax+kHyBfVOH0ykZeU=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: 3QHS5xq8Dd7/BPbw9fU8jUAPcci4e10YwPp2R1s0zik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 11:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:41:5c:9d:30:0a:32:b8:4c:5d:7d:4b:60:f7:19:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: May 6 11:00:46 2025 GMT
Not After : May 7 11:00:46 2025 GMT
Subject: CN=e8150e8dfbb6deecc6eb1fab0ff8e1084fb363ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:09:78:fb:01:11:ea:17:1b:16:2a:27:c3:0e:
c2:2b:fc:22:e5:38:83:dc:b1:e0:53:ee:9a:28:06:
97:19:13:db:e4:26:db:04:da:0d:12:8d:07:87:0c:
29:81:67:5e:a2:bc:8f:50:3f:b2:63:9e:4d:f0:47:
6c:44:d6:2c:d8:8b:14:99:f5:46:7d:9e:6c:c3:7d:
6f:fa:f9:91:dc:4b:9b:51:e8:c8:65:e5:5e:16:82:
6c:d2:dc:1e:e2:2b:27:64:d5:bd:23:cb:15:ec:0c:
25:a4:03:be:09:3b:82:b6:8c:3d:8b:66:ed:5d:3a:
b4:a1:34:1f:2c:b4:1a:42:a1:58:78:8c:60:f6:f7:
a4:86:c2:d7:11:cd:c6:44:32:b3:8a:ee:24:4a:50:
d6:c6:cc:f7:30:62:24:9d:e4:e2:f7:08:45:5f:36:
0c:43:5d:77:e4:8e:23:de:79:92:0c:23:98:0d:3e:
43:4e:12:89:9a:8d:7a:43:08:e3:6d:ad:b2:5f:3b:
2a:36:b2:2b:58:e7:93:87:5f:1a:0c:90:60:34:07:
1f:a6:c8:aa:f2:00:4b:d8:97:5d:17:63:77:2a:a9:
0b:e4:84:9f:03:21:27:dc:15:6f:63:19:e2:9c:6c:
0d:98:f4:8e:63:e1:2a:9d:c7:77:03:5e:6a:92:c9:
d0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:15:0E:8D:FB:B6:DE:EC:C6:EB:1F:AB:0F:F8:E1:08:4F:B3:63:EA
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:65:bc:b2:91:11:7a:f9:cd:1d:1f:ea:32:fe:10:7d:c8:2f:
66:b4:53:63:c4:28:b9:6c:0c:ab:29:76:c9:02:73:57:87:7e:
92:09:42:48:25:d7:a4:2e:de:f0:f8:d5:78:6d:ea:fb:3f:58:
de:64:f1:76:0a:41:0e:5f:2b:fc:04:03:0e:93:5e:94:4f:5c:
b9:ba:e1:15:71:4a:95:de:10:6d:6b:62:05:bf:45:e9:78:a2:
e3:a5:9b:1c:1e:f1:3a:68:f0:be:2f:57:34:74:2b:16:5c:21:
50:c2:f7:2b:ee:87:cd:ae:94:5e:24:4f:6d:d5:5b:34:3d:4b:
37:5c:91:88:99:ce:41:22:38:a3:4c:15:b6:6f:74:f1:c4:89:
ab:c2:d8:21:77:9f:7a:63:b8:9d:3b:3f:81:c2:37:b9:a5:8b:
26:61:11:2e:a6:74:31:f4:b9:ca:a6:54:06:ca:fa:fe:61:5f:
0f:7d:ea:39:6b:6d:a6:26:fb:32:f8:75:ba:86:cc:88:e1:32:
3c:48:cf:00:b1:38:ac:44:57:88:c5:4a:e7:82:f2:b3:96:6c:
84:49:89:dd:2d:8e:cb:f7:80:68:26:70:be:9f:28:cd:40:0e:
7b:50:2e:9b:37:90:ff:30:c0:56:1a:f5:1b:95:87:e6:20:bf:
5d:19:20:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 18:20:54 2025 by rpki-client