Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: jYE/NbAwfPeSHgm7ebasz7Hh4Ih2Ym3ZZ7PiELl2rx8=
Subject key identifier: 8B:90:42:7D:0D:E2:36:9A:94:DB:00:F8:D3:62:76:D2:CD:7D:30:B4
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 01965A5DB9FB3C2C48EFAEB58FFE7676F1F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 22:00:13 +0000
Manifest this update: Mon 21 Apr 2025 22:00:13 +0000
Manifest next update: Tue 22 Apr 2025 22:00:13 +0000
Files and hashes: 1: RW4un6mRBfPzHloV5RnOReMxV4M.roa (hash: 6KtCB53EZaTt4rkvk3WW5xLU60zG4n/pYxl9BtxsfPs=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: YtepsBuj+PYcLRKDXecJztSfPQ+Y07t1RWfuF0NmTZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5a:5d:b9:fb:3c:2c:48:ef:ae:b5:8f:fe:76:76:f1:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Apr 21 22:00:13 2025 GMT
Not After : Apr 22 22:00:13 2025 GMT
Subject: CN=8b90427d0de2369a94db00f8d36276d2cd7d30b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:49:0b:74:e7:99:35:1f:43:dd:d2:b2:4d:6d:
f8:ac:e8:69:64:15:4e:7f:a0:cb:27:9f:71:66:02:
25:ce:46:e9:16:61:45:20:2c:b0:2e:0f:c3:da:e4:
81:fa:0c:36:c9:10:77:0e:ea:50:f1:c7:99:3a:dd:
a8:a2:a4:79:bb:87:cb:f7:08:8e:60:4c:dd:25:37:
87:55:50:6e:ff:b8:e0:49:a6:12:c2:db:32:e0:ce:
e0:18:d1:fe:4c:83:1c:27:01:3b:26:01:f6:c0:17:
49:df:21:7f:3f:89:d5:d1:3d:a6:b8:77:6b:a8:d7:
02:a6:9e:0f:af:94:5b:c1:36:3f:5d:bc:2d:0f:c2:
c2:6a:9f:f0:99:48:e0:41:a0:a9:8f:bc:19:c7:45:
4c:ac:44:17:0a:53:a0:2f:00:06:34:4d:23:9a:cf:
39:ca:29:a1:ab:60:fc:a7:88:79:a1:fb:5e:36:6f:
66:60:3d:1a:d2:01:73:e4:09:39:a8:2c:72:9a:9f:
ef:60:a8:cf:cb:11:0c:10:1e:2c:38:8d:14:c4:06:
e1:2f:d8:4e:fa:f9:00:af:75:1e:1e:7d:14:1e:fc:
df:48:d8:92:30:62:96:85:c2:87:98:cf:0a:95:a2:
20:58:7a:89:0a:66:1a:59:93:89:b6:1a:b8:c9:3a:
9a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:90:42:7D:0D:E2:36:9A:94:DB:00:F8:D3:62:76:D2:CD:7D:30:B4
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:1f:f4:64:45:98:d9:49:c3:d4:76:c0:54:2c:b7:28:87:6f:
f5:00:a5:84:38:db:4a:07:e0:d3:4e:ff:7b:51:d5:0c:a5:21:
47:ce:bb:13:c3:0c:b3:40:fe:12:95:2f:60:10:23:29:99:c0:
cc:79:77:dc:55:1f:2a:d5:b1:b4:81:4c:e2:bf:b2:af:9e:04:
01:27:58:e2:d9:c0:d7:7e:64:3c:48:82:8a:b4:f9:f7:87:97:
9f:24:cd:fc:40:a8:95:58:31:2d:85:00:ce:aa:cd:a8:94:c4:
da:1c:34:a5:58:ae:96:4b:37:0e:07:9d:b2:2e:e6:ef:12:6d:
f1:0e:54:f0:81:f9:98:6f:f3:88:4b:b0:51:ff:8d:4c:a4:1f:
5a:3a:c3:db:a4:5a:87:76:fe:06:d2:0d:b4:5c:1e:59:71:a8:
fc:6b:17:4f:85:58:44:a2:4d:5f:04:06:b3:cb:97:68:04:e9:
03:07:5f:24:17:3a:8d:e0:cd:50:2c:f5:2d:2f:5d:e7:22:2e:
56:54:60:5b:d6:c5:bd:5d:cb:fe:d0:b4:48:14:da:54:59:c5:
f3:dc:71:a6:d7:c1:f3:7d:ba:59:09:3d:ce:a8:c2:9e:bb:04:
5a:20:ec:77:fb:38:6c:de:67:2a:91:54:55:09:fa:3c:e0:51:
e5:2d:6e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 05:31:58 2025 by rpki-client