Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
File: OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft (raw, json)
Hash identifier: GcaIirRaQRFQk+K4fxcwIOpPE8vmY6UfxQ/EdlKC+HU=
Subject key identifier: 3D:61:70:05:A6:FD:E0:F7:F8:DF:BA:C2:6F:53:70:79:D8:D2:CD:A1
Authority key identifier: 38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
Certificate issuer: /CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Certificate serial: 0196561335C1254C910C54967D8BFC6D3266
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
Manifest number: 0A45
Signing time: Mon 21 Apr 2025 02:00:21 +0000
Manifest this update: Mon 21 Apr 2025 02:00:21 +0000
Manifest next update: Tue 22 Apr 2025 02:00:21 +0000
Files and hashes: 1: KI_OzKHWNWDApgfZA8fhKRHWYNw.roa (hash: KgInzOYraW/0zKTqbj1OirpA4x6saReBh+LdfK4ZXdI=)
2: OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl (hash: MEX9QEE4YB99D+KzXb0JSTZHk65huY+UivT2OSm5TfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:35:c1:25:4c:91:0c:54:96:7d:8b:fc:6d:32:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385cf4939beeeaeaf4409c2840eb344cab0850e0
Validity
Not Before: Apr 21 02:00:21 2025 GMT
Not After : Apr 22 02:00:21 2025 GMT
Subject: CN=3d617005a6fde0f7f8dfbac26f537079d8d2cda1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7a:c9:14:c7:18:e9:26:8a:5b:55:bd:02:f5:
d9:5c:c5:e7:1f:11:4f:7b:58:42:10:76:c2:86:6c:
9e:e1:2d:56:c6:96:d8:20:2c:48:31:27:ed:c6:3d:
ad:6f:43:04:04:fe:0c:95:94:b1:18:e7:06:76:cb:
58:f6:44:51:4b:4a:a3:7f:c9:bb:ce:42:a7:7e:f5:
1d:be:da:1f:08:0b:dc:71:47:b7:8f:72:95:ff:7e:
3e:68:88:92:c3:f1:ee:54:a6:26:82:a4:5c:f0:09:
7e:80:18:e6:4c:8e:7f:72:a0:ed:22:45:90:5e:5d:
d4:ad:91:ef:7e:f5:be:6f:bd:31:fb:0e:b5:91:d8:
2c:28:43:99:2d:ad:e4:fa:49:12:fa:9e:69:c1:4c:
a1:5b:eb:c1:05:17:45:40:95:0c:3a:e8:fb:b0:b6:
99:7d:68:d9:19:3f:55:41:98:05:4f:ec:54:b6:45:
66:a5:6b:c0:4f:20:d2:b0:c1:bf:ef:bd:ac:aa:86:
26:0f:e6:10:61:26:06:0a:0d:c4:4e:26:cb:f2:f5:
af:7b:ce:1a:77:cd:24:ac:91:0c:aa:d7:13:28:53:
e9:d7:02:33:d0:b3:54:83:d6:cd:50:c1:1b:76:58:
f9:4d:88:76:83:cc:a3:21:f3:d7:6a:ee:54:e3:92:
1f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:61:70:05:A6:FD:E0:F7:F8:DF:BA:C2:6F:53:70:79:D8:D2:CD:A1
X509v3 Authority Key Identifier:
keyid:38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:13:49:e3:fd:b2:3e:5a:d8:bd:b0:6d:3e:4c:49:a9:30:f7:
90:22:ec:73:ee:e1:3c:70:ce:bc:12:ee:4f:79:ca:9e:49:1d:
2f:c5:a1:a6:4c:f5:48:64:5f:ae:25:0f:a0:d0:2d:7d:2a:1b:
8f:03:55:ef:04:4d:a1:0f:30:65:64:d2:0f:9c:f9:f1:28:3f:
d5:ca:86:43:26:ee:29:a8:d8:21:a4:05:9c:6e:3e:18:ac:7e:
eb:48:a9:96:15:2d:e1:7a:78:59:99:9a:0a:b4:07:bf:a7:86:
8c:06:c2:5d:5c:00:1f:50:0a:6e:32:08:ad:b6:c6:f4:b8:12:
02:b3:f9:c1:7f:9d:29:f3:cf:5a:a6:c2:0b:1c:48:44:22:e8:
58:e6:be:32:9b:8a:02:44:4b:de:21:6b:2b:21:31:48:dc:1a:
43:ef:5e:29:3e:61:29:f2:f7:05:b4:73:32:3b:f5:cb:8b:58:
0b:8c:dc:2b:99:6b:a2:e6:4c:e3:2f:be:f1:45:a0:d5:45:0e:
fa:0e:d1:6d:56:b3:52:99:31:98:38:c9:5f:c7:ee:f1:6d:02:
75:0f:49:03:49:48:74:32:90:44:30:7d:44:d8:62:36:ed:8b:
ce:22:ea:da:21:02:42:9c:40:44:d1:1f:fc:6f:3e:15:3d:de:
e1:31:18:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:00:20 2025 by rpki-client