Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: 0vNPjAp68zuv0AXGYLhmg1sB4YCvRgLGgl/OkGHnUEk=
Subject key identifier: 38:EC:BA:7A:A8:8A:4D:B6:F4:68:22:60:33:1A:80:C5:75:47:04:E6
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 01965D28554A0CD4BB840C19DF56F3A1E663
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 045D
Signing time: Tue 22 Apr 2025 11:00:46 +0000
Manifest this update: Tue 22 Apr 2025 11:00:46 +0000
Manifest next update: Wed 23 Apr 2025 11:00:46 +0000
Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: 7xk9xmdOKWQ0BdWVg92v2IgM2oiAdb+jDnrMn+xiouM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 11:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:28:55:4a:0c:d4:bb:84:0c:19:df:56:f3:a1:e6:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Apr 22 11:00:46 2025 GMT
Not After : Apr 23 11:00:46 2025 GMT
Subject: CN=38ecba7aa88a4db6f4682260331a80c5754704e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0f:57:8a:c4:1e:25:bf:9f:50:34:68:a2:38:
6a:98:4d:e5:af:ac:57:04:06:da:ae:65:ab:1b:65:
b8:cb:d7:f2:2c:3e:b9:31:a4:82:ae:2c:26:51:56:
d9:83:2d:e1:07:cf:cc:84:af:d9:34:f9:91:02:94:
2d:78:93:d5:21:e5:41:83:7e:a9:c3:6a:a1:5f:f8:
47:99:e7:8c:81:94:7a:00:ec:3a:da:eb:d0:5c:78:
a0:87:b8:a8:a6:de:9a:e5:21:7b:98:e6:7e:58:12:
52:00:42:4d:28:f8:2c:77:d7:2f:08:18:b1:52:81:
0e:5c:07:90:89:eb:cb:e7:93:77:ee:f9:ea:a2:99:
fd:a1:2f:9a:2d:40:78:c7:dd:fa:8b:c7:60:70:92:
6d:fd:7e:9d:fc:4c:e2:eb:db:df:6c:07:ec:45:ba:
32:6a:cc:80:e0:75:c7:28:85:dd:7f:0a:67:33:60:
1a:5a:de:6d:ed:40:e7:6d:f6:aa:3c:fa:b2:fc:13:
1d:98:cb:6d:5c:61:d7:4b:d2:28:82:7b:ca:7a:ca:
e9:b3:cb:ff:50:9b:af:2a:41:9a:f0:6e:29:d9:7a:
0f:c2:3b:2c:97:3b:63:02:4f:5d:d7:5f:d0:72:4b:
26:9b:53:15:0e:90:85:a0:b5:25:3f:54:ee:a5:46:
a7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EC:BA:7A:A8:8A:4D:B6:F4:68:22:60:33:1A:80:C5:75:47:04:E6
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:2a:22:be:ee:30:9d:6b:6a:cf:f1:88:e1:36:08:c4:0e:9a:
52:dd:a0:b0:be:6b:8a:5a:fe:9a:21:25:84:65:de:48:b2:f8:
c0:cf:2a:4a:4d:b3:c4:a8:be:08:a6:e5:5b:9a:0a:b3:78:7c:
e6:6b:94:b9:f1:5f:30:71:d3:84:fc:8f:14:7a:00:34:c9:2d:
89:e5:f4:6f:6c:a7:77:d7:e2:81:54:51:54:4f:0b:f3:19:0e:
16:62:d9:29:44:c4:51:d8:71:53:d9:3b:d0:2b:89:ab:f6:10:
e7:86:e4:24:83:ee:bc:95:27:55:cb:0c:13:b6:47:1d:05:0f:
43:dd:98:6e:4b:6f:ab:21:76:83:5c:7c:5c:db:13:41:50:4b:
cc:7f:22:fc:54:95:04:b7:9a:3e:be:09:f1:3b:a5:a7:ad:63:
c3:7a:ec:00:1f:91:d1:87:0b:8b:e9:b9:44:c9:53:fa:e1:44:
d9:9d:33:a0:86:37:bb:d5:d2:d0:6c:df:f8:fd:44:e0:47:62:
1e:82:e7:25:ca:d1:43:64:54:52:fe:ef:9d:42:fc:9e:f3:49:
ec:0b:40:42:3f:0f:9b:86:48:91:6d:8a:c8:3e:0d:2a:38:33:
30:cf:fb:92:0d:8f:7d:0c:24:b7:94:72:c7:2e:d0:a6:f5:cf:
23:16:fe:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:36:00 2025 by rpki-client