Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: A7tX/iw/f8SnXoV12qGJLHkWPQ8+otMPS2+MsdC62k8=
Subject key identifier: B9:4F:08:3B:21:9B:48:66:C2:7B:2E:7A:DE:2A:A8:8D:3C:B7:51:D0
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 0196767A4E1C91536366256A0F86120EFC8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0BF5
Signing time: Sun 27 Apr 2025 09:00:48 +0000
Manifest this update: Sun 27 Apr 2025 09:00:48 +0000
Manifest next update: Mon 28 Apr 2025 09:00:48 +0000
Files and hashes: 1: 0wAgKVyytNbhNR-_RR1IsIpFFy0.roa (hash: hGr01I8nbqs/LJEbN09Cfzd/lbJVo6JwWOtLmEfD1wA=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: oJBpMM32T6SO48L16EaW2t4QFbPLJWFIIKVWL6QrDSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:4e:1c:91:53:63:66:25:6a:0f:86:12:0e:fc:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Apr 27 09:00:48 2025 GMT
Not After : Apr 28 09:00:48 2025 GMT
Subject: CN=b94f083b219b4866c27b2e7ade2aa88d3cb751d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b1:dd:6b:cd:97:34:d5:d3:ca:f4:2c:d0:74:
7b:f1:7a:4e:d1:a1:b1:54:5e:f6:1c:b6:3b:51:ff:
63:c5:37:b7:b5:b0:5d:39:e5:93:1c:99:5f:a6:79:
9e:23:97:f5:dd:d5:16:fa:20:ec:59:59:9c:59:c4:
f6:dd:0a:1d:e8:a1:6c:e0:50:20:bb:ca:55:53:24:
bf:62:f8:d3:de:7c:6f:f7:56:64:b3:b0:52:7f:4d:
35:3a:e7:8e:95:9a:84:9f:90:4d:5c:04:94:2d:ff:
a6:d4:92:93:7c:66:52:1d:8d:53:2e:3c:e3:32:96:
d0:81:f2:59:7c:30:4c:bc:3f:0d:12:79:56:77:d0:
ce:d1:d1:7d:77:07:dd:9e:6a:0f:9e:16:c3:09:98:
48:f4:cf:4d:52:ec:03:15:d1:66:a4:a1:bc:d3:72:
53:29:0c:8c:66:b9:ab:5c:4e:90:bb:7b:bb:a3:3e:
cc:c5:c8:7d:09:c1:a2:91:98:74:a9:b9:27:1d:c9:
dc:ce:44:c4:b1:a3:06:b0:bf:b6:84:89:ab:22:bd:
39:07:c0:79:3e:96:bc:48:a3:60:98:6e:d4:9c:4c:
0e:bd:82:7f:d3:56:35:58:16:e8:a1:c1:81:7b:82:
85:61:f9:da:27:5b:e8:db:9a:60:39:a5:3a:d7:89:
f2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4F:08:3B:21:9B:48:66:C2:7B:2E:7A:DE:2A:A8:8D:3C:B7:51:D0
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:e1:74:3b:e4:cc:c0:af:8b:a1:a4:de:87:64:d8:f0:7e:42:
0d:f9:e9:cf:69:b4:1b:e9:df:63:07:1d:3a:08:bc:21:03:bd:
bd:1d:96:ec:93:be:e9:61:ee:15:59:17:eb:49:04:e5:0b:e2:
2f:35:14:93:95:cc:1c:28:f9:71:cf:31:5e:5e:84:02:69:bc:
bf:da:fb:a0:cf:2c:32:c1:88:45:a6:86:c9:0d:40:a9:cb:64:
46:13:20:ef:f0:d6:9a:1e:b6:3f:da:ca:cc:46:b2:f2:0f:26:
32:20:84:6f:b7:d4:cf:56:01:a2:47:c3:ca:73:d5:1b:9e:8d:
45:40:63:d1:3f:49:52:cd:be:f1:f8:0c:c5:86:7f:3d:a1:6d:
c5:d1:3c:e1:81:57:42:a8:5f:a4:38:ca:db:aa:1b:86:c3:78:
7c:f6:a7:89:8a:3e:c8:7f:a0:36:82:e7:2e:b9:a0:ba:2c:8d:
b3:41:bf:78:9f:5f:b0:52:ae:aa:bf:ee:c8:43:10:10:f3:1f:
17:b4:c1:55:42:f7:cc:5c:a1:4f:7d:ea:d0:2e:cf:fa:29:f6:
88:41:5e:7a:55:5a:1a:0d:df:cf:e4:6d:c4:ff:fb:f1:06:94:
36:b0:af:6c:7f:29:e1:16:34:a7:91:cb:52:fa:57:29:ca:c7:
96:80:c9:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 11:30:24 2025 by rpki-client