Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: a8vvT0ajmSRydIxKTB9QGSQ/05+vAfQqb71lXbe9Xrk=
Subject key identifier: 0D:84:67:62:66:EB:C4:AE:52:D0:49:15:B3:E3:A9:90:C1:D9:4A:0D
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 01960E31BA798EE144170545FBDF3142E919
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 0C75
Signing time: Mon 07 Apr 2025 03:01:01 +0000
Manifest this update: Mon 07 Apr 2025 03:01:01 +0000
Manifest next update: Tue 08 Apr 2025 03:01:01 +0000
Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=)
2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: ZWonBRXBKZXBsvJXCERAN2V6pGZEZz70hhM9+ULSVdk=)
3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=)
4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=)
5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0e:31:ba:79:8e:e1:44:17:05:45:fb:df:31:42:e9:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Apr 7 03:01:01 2025 GMT
Not After : Apr 8 03:01:01 2025 GMT
Subject: CN=0d84676266ebc4ae52d04915b3e3a990c1d94a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1b:2b:d7:63:5b:b4:fb:8a:80:35:c1:b7:82:
c5:2a:b1:df:b6:fb:87:bb:2c:21:70:f2:79:87:f2:
bc:87:40:89:2b:59:91:99:17:a8:47:f1:b2:7d:6b:
73:d7:bd:b2:b1:1b:ad:92:f1:91:16:bf:22:28:9b:
9f:53:52:01:f0:a7:a2:f6:b5:97:96:8a:35:d3:e9:
6a:22:fa:9a:c3:e6:1e:13:ca:b4:a1:85:b1:1f:22:
68:91:07:8b:5d:7f:7d:89:c3:fa:30:e2:ce:85:03:
1c:8f:ad:5b:dd:d3:a5:1d:f4:3e:7f:89:e1:5f:c0:
a3:90:8e:31:bb:cb:d9:fd:aa:a7:27:2d:4d:2d:04:
23:40:29:c9:46:d6:35:e9:69:de:70:4a:97:39:c0:
32:de:97:7e:cc:25:69:3b:8a:31:81:5d:e1:12:e5:
12:ca:da:4a:67:20:3b:93:e1:a9:a2:0c:c5:39:4f:
e2:4c:78:dc:35:f5:08:7c:fc:87:60:b7:18:95:da:
6f:70:f0:59:6a:1c:0a:e0:59:06:19:ae:0c:eb:5c:
17:ac:1d:e9:b6:3c:1c:9e:0b:47:e4:29:1e:43:31:
b4:db:b2:7d:42:cd:a1:48:c6:be:dd:d5:2e:79:df:
3a:b0:be:e6:ee:17:41:54:48:10:6b:04:91:ac:1a:
77:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:84:67:62:66:EB:C4:AE:52:D0:49:15:B3:E3:A9:90:C1:D9:4A:0D
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:67:14:38:22:80:48:94:4a:a2:82:ac:6a:65:33:1d:29:a0:
40:12:0e:3e:c3:f5:37:2b:f4:74:86:7e:27:53:4f:55:1c:c9:
50:cd:31:04:d3:af:d5:5e:14:2a:40:e6:01:2c:68:46:72:fc:
30:13:79:25:f6:89:b6:71:58:5e:5a:bf:c4:b7:82:50:40:81:
96:6c:4d:34:aa:8a:36:fb:03:fe:e9:e8:ae:72:c0:96:cc:f9:
78:df:d5:c9:3a:a3:98:97:d4:0b:ea:95:cc:b7:f8:05:99:c8:
49:4c:ff:0f:a2:f5:0d:b7:53:f3:64:15:a9:8b:af:24:ea:01:
ef:6b:e4:ff:51:dc:59:0b:89:bc:29:15:02:ab:d6:9f:1e:68:
8d:44:75:d6:ef:85:2f:1b:0b:8a:84:53:f8:31:16:a7:aa:87:
15:c2:df:2a:4c:c6:2e:b1:68:d4:ee:b4:c5:e7:7b:09:11:7b:
12:4c:29:e7:89:1b:31:0f:1d:98:01:06:37:b1:90:f3:26:4e:
6e:ac:f3:11:22:1a:3f:24:db:73:3d:f3:9a:dc:c5:a8:54:fd:
db:93:f8:65:00:c8:90:56:e0:ed:66:49:9f:f9:f0:36:e1:96:
72:05:0a:bb:d8:a8:43:d2:37:4d:56:4b:0c:17:98:b9:55:68:
30:58:c2:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:50:09 2025 by rpki-client