Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: Ra8SyZ9iRDwJT0Gn/crOsBdkVV/8T+bNV6jnYsuOOHs=
Subject key identifier: 04:B4:22:A9:1D:D2:8C:87:56:17:6A:63:35:67:F5:64:B5:DA:BD:05
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 01965C4CB21AA73D35089845D0F595407678
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 0713
Signing time: Tue 22 Apr 2025 07:00:52 +0000
Manifest this update: Tue 22 Apr 2025 07:00:52 +0000
Manifest next update: Wed 23 Apr 2025 07:00:52 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: SdEpoNhMmZcDCpzEBlnNEKItR2yMkzWgYTE2nesUwus=)
2: _QTwS8nAMSFeKK0ZzzPsIxYgPqo.roa (hash: Q/O46iBV3y1aR3ABGTzdA2RTNwov3wLVP1w6lO4+h/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:4c:b2:1a:a7:3d:35:08:98:45:d0:f5:95:40:76:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: Apr 22 07:00:52 2025 GMT
Not After : Apr 23 07:00:52 2025 GMT
Subject: CN=04b422a91dd28c8756176a633567f564b5dabd05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:70:f2:cf:44:4b:70:89:cd:b3:b3:36:46:1f:
5e:b3:12:38:fc:d0:6e:d2:45:f2:db:a7:4a:37:e2:
f7:09:bc:5b:d9:32:fa:b4:28:d3:7b:aa:03:d5:6a:
32:cd:e8:32:07:2a:0d:3d:3c:e1:4d:a1:f7:c3:d6:
8e:2f:5b:2a:bf:39:b7:22:4b:ab:49:20:2c:5b:22:
01:c0:89:15:c0:52:66:c9:6e:0a:38:dc:68:76:28:
c2:dc:51:01:cf:2a:0a:34:c9:d2:9c:d1:08:44:15:
22:ce:97:6c:6c:b3:45:94:bf:be:cc:ab:cc:ca:70:
fc:56:74:5c:c4:5e:02:74:0c:df:1b:dc:0d:10:bc:
ff:78:e3:cc:71:21:ff:ca:49:b9:81:1d:f0:35:1d:
5d:a5:8a:8b:e9:58:31:79:a2:88:94:d3:fd:7a:54:
1e:b8:c1:45:3e:9d:27:06:a9:8a:ae:89:79:53:58:
cf:d2:9c:88:73:58:bf:ba:0b:45:3e:fc:1d:ec:6c:
29:de:fa:4d:84:8d:43:24:d9:41:7c:91:46:ed:04:
56:be:97:9a:e7:ef:a9:2b:bd:2c:60:a3:23:27:12:
f6:b1:32:9b:3d:16:68:d5:2e:35:11:69:17:ad:6d:
30:42:ae:78:1b:b0:a2:38:fb:4c:f6:c5:0c:d7:3f:
3d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B4:22:A9:1D:D2:8C:87:56:17:6A:63:35:67:F5:64:B5:DA:BD:05
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:db:5b:22:a8:14:6f:43:f3:75:9a:2c:87:a7:2a:53:38:f0:
f8:a0:c2:f7:8e:72:61:3e:3e:e4:55:28:5d:cc:c9:1a:e3:6d:
8a:61:59:00:c5:d7:74:88:97:5c:dd:cc:bd:6b:c3:e7:d5:c9:
7c:86:53:27:5f:d1:50:e0:c9:ef:1b:e7:f6:7a:f0:ab:a3:11:
0f:8d:e5:43:26:7b:3c:73:6f:f1:53:e3:8e:59:4c:e7:c1:61:
15:82:c3:90:70:46:27:90:5f:88:05:b5:49:a0:2c:57:0c:63:
6f:05:3d:8a:63:26:39:76:3e:9d:4e:87:6a:b8:60:10:28:3d:
6c:99:66:b0:36:e3:3f:b1:45:10:ac:d6:9e:b4:f6:31:60:29:
00:65:f0:74:ee:dc:de:9f:ec:43:f5:c6:e5:65:7b:06:09:b3:
4f:12:a1:62:a6:ea:77:d5:f0:44:a2:c9:63:ff:31:c6:a2:78:
d3:c3:f2:ce:9c:ed:91:8b:50:c2:ab:3f:18:69:2a:3d:fb:d8:
de:4b:43:cd:74:0f:d3:d2:22:e9:b0:cc:57:c1:6d:37:7b:e2:
f9:ac:95:e7:fd:7a:01:55:82:ec:0a:8c:c8:6a:d6:a1:4b:0b:
92:39:ed:ec:54:4c:04:02:b4:11:2a:72:9f:fe:75:c0:0a:64:
03:ff:76:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:43:13 2025 by rpki-client