Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
File: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft (raw, json)
Hash identifier: GF3ingCDEQmwb4MIq6hQCtevQMCR1TGPEw1jTwYa8dc=
Subject key identifier: 8B:04:B6:4E:5C:14:10:94:7A:88:82:38:2A:6A:28:10:CF:EA:DD:2D
Authority key identifier: D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
Certificate issuer: /CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Certificate serial: 01965500BBCE2D1E393526160E831DF26184
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 21:00:33 +0000
Manifest this update: Sun 20 Apr 2025 21:00:33 +0000
Manifest next update: Mon 21 Apr 2025 21:00:33 +0000
Files and hashes: 1: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl (hash: Wir67pErHteflz5ryJHGlH9AU0mpYsXez2gbncTLCOQ=)
2: AddwdaQYSDgJ_-W9pipGLPibD4Q.roa (hash: YjKAFD6jnw8P32xCITagf8KVgpNGeRxCswidFmsKIOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:bb:ce:2d:1e:39:35:26:16:0e:83:1d:f2:61:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Validity
Not Before: Apr 20 21:00:33 2025 GMT
Not After : Apr 21 21:00:33 2025 GMT
Subject: CN=8b04b64e5c1410947a8882382a6a2810cfeadd2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:ed:c8:07:f1:ad:68:f4:dc:0c:4d:3a:47:
db:4f:e5:85:73:f8:9e:8d:d8:ba:a3:42:b2:ec:44:
8c:46:77:51:9d:5a:c3:ce:87:ba:e0:32:35:d1:68:
2a:a2:9c:15:f3:24:98:ca:5a:67:ae:4f:94:ab:a1:
51:f0:10:c4:28:03:ae:c6:85:72:ca:2b:8e:29:4c:
d1:d9:10:2d:89:16:e4:62:ff:25:48:4e:65:45:e0:
35:43:38:08:d6:32:1f:05:82:41:b5:4f:0c:b6:99:
3e:93:63:29:f0:54:37:08:26:8a:63:dc:f6:af:0f:
c4:80:fb:1b:5a:68:ee:63:ac:8f:94:e1:56:1d:2f:
35:39:8d:32:cf:f0:fb:a5:6d:5a:50:65:df:b7:1a:
88:a9:5d:e8:0a:04:9c:dc:b0:2c:17:d1:15:da:7c:
09:cb:f1:0f:8b:46:fd:fd:2d:9d:cd:73:99:af:0f:
15:38:59:ef:9c:22:c1:f0:e9:ea:6d:f5:a2:55:c7:
fa:26:5d:7f:95:cc:82:57:84:f5:a3:12:1e:8e:49:
3d:a1:30:3b:a3:ae:99:e9:d2:7c:51:0c:60:1c:a9:
9d:0f:4e:fd:f9:66:c5:7a:63:e0:1d:af:0a:1f:11:
09:f4:a2:27:16:80:e9:48:82:e4:70:39:a1:2c:e7:
ae:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:04:B6:4E:5C:14:10:94:7A:88:82:38:2A:6A:28:10:CF:EA:DD:2D
X509v3 Authority Key Identifier:
keyid:D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:5d:5b:2f:e5:e6:68:72:d5:9f:30:fe:ae:29:b4:30:b4:8f:
ee:7e:9d:8e:d2:30:1f:3b:30:ad:7b:21:83:73:b1:29:5a:ec:
90:45:76:24:35:1b:bf:16:0c:56:1b:03:3d:0b:35:d2:7f:57:
10:4b:18:49:d7:a5:c0:b3:ca:31:1e:33:21:01:78:e0:01:74:
e1:28:5b:3d:5c:21:13:5f:d1:f1:90:8d:63:b2:be:66:47:3c:
8e:42:ad:3a:50:75:6e:4c:a0:63:76:ab:77:ac:a5:bf:91:72:
3f:1f:bc:cc:8d:dc:10:53:a0:91:ec:c4:44:76:d8:db:5b:cc:
d3:57:49:4f:da:1c:e4:3b:06:2e:d7:29:2c:02:ed:43:ab:fa:
96:21:7c:b1:ba:28:57:f5:a0:31:da:3d:c5:5e:69:15:07:98:
76:10:95:a5:0c:2c:68:20:03:6c:45:f2:e2:09:d2:b4:82:f8:
ca:01:45:1a:1b:78:39:29:5f:21:e6:2a:6b:27:89:b2:b7:a9:
8b:24:27:70:7a:cf:52:e6:12:ae:ab:93:ae:8a:55:3c:0a:c3:
36:00:5f:db:4f:a5:cf:4d:06:44:2c:84:a5:61:20:40:55:5a:
be:81:24:d8:66:40:86:12:4d:71:cd:a3:e0:43:56:a9:36:01:
71:cc:b7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:06:37 2025 by rpki-client