Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
File: OBXtD6YgyAGqqabxT2WW1-yXUKE.mft (raw, json)
Hash identifier: Sed38r1kkuxN+flp7r+E7+ofgT+cviH3DajCd7lr43c=
Subject key identifier: 78:99:30:0B:86:65:1D:A2:17:97:F6:72:BD:C3:C9:C4:AA:78:CF:2E
Authority key identifier: 38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1
Certificate issuer: /CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1
Certificate serial: 019611D78B0B91B5EB8D3B751949B6A2EDCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
Manifest number: 14DD
Signing time: Mon 07 Apr 2025 20:01:00 +0000
Manifest this update: Mon 07 Apr 2025 20:01:00 +0000
Manifest next update: Tue 08 Apr 2025 20:01:00 +0000
Files and hashes: 1: OBXtD6YgyAGqqabxT2WW1-yXUKE.crl (hash: tkdKqcl7KfXC9jqofD94c67e47hozG2aen0etZtI1SA=)
2: u-w9Flj7fkevQpf-dpXISzIby2Y.roa (hash: +ftWzfsK6bMqWx5+3ThvbgDjBdiFZmrC2eI3EPi2YVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 20:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:d7:8b:0b:91:b5:eb:8d:3b:75:19:49:b6:a2:ed:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1
Validity
Not Before: Apr 7 20:01:00 2025 GMT
Not After : Apr 8 20:01:00 2025 GMT
Subject: CN=7899300b86651da21797f672bdc3c9c4aa78cf2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:25:96:9e:17:89:8f:7d:24:64:ab:ad:1f:0e:
c0:c8:ae:91:7a:a4:66:6b:02:be:af:9e:f2:ee:65:
10:3f:a7:e8:ba:a1:24:e5:69:df:ac:63:c5:9d:99:
28:15:99:00:03:b9:82:52:ac:c1:ee:54:2e:b9:46:
b9:fb:21:bf:2f:9b:20:ae:30:5b:b9:f1:55:a3:6e:
1e:74:34:ff:8d:f8:30:95:55:06:30:91:11:e3:3a:
cd:8c:81:3c:d9:8b:d5:a0:1c:ee:7b:ab:de:19:b2:
66:bd:f4:d1:40:46:c2:d0:c6:db:6a:1a:c8:d2:08:
6e:7b:4a:ea:72:8a:10:ff:1e:d9:e0:10:54:fe:69:
91:33:21:4b:5a:03:75:83:d1:eb:f3:81:dd:ab:e2:
18:87:53:44:43:83:8b:cc:37:c8:c9:05:4f:fa:c3:
95:77:ed:a1:35:6d:f3:40:9a:dd:85:f1:7b:60:b5:
63:08:e7:14:6e:80:fb:f3:6c:57:6f:07:4c:02:2a:
61:07:94:0f:3b:b4:62:38:54:0a:92:bd:e0:9c:ad:
6a:13:a6:ca:b1:08:6f:2b:22:95:f3:ea:61:ee:00:
aa:4c:53:21:66:3e:84:57:d1:a7:28:03:78:d0:0d:
7f:d1:4f:65:9b:76:66:88:5e:1f:b2:d9:0c:33:6f:
be:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:99:30:0B:86:65:1D:A2:17:97:F6:72:BD:C3:C9:C4:AA:78:CF:2E
X509v3 Authority Key Identifier:
keyid:38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:83:12:f2:58:dd:48:83:81:9e:2b:31:2c:ae:58:6d:29:3d:
e9:b9:f2:09:5c:2b:cc:5f:96:ca:60:76:3b:57:5f:c2:69:4f:
fe:00:ba:77:35:06:ee:d4:8f:6b:4f:fb:fd:f0:12:23:4a:39:
cd:80:89:56:23:b9:0b:f6:b5:7b:fd:5a:7e:91:78:ba:00:92:
df:59:98:af:b4:f7:8a:69:bf:2b:17:57:9b:a6:23:22:37:d2:
dd:ea:26:31:e3:dd:be:0c:bb:19:f4:44:ec:8e:6d:b0:27:19:
5b:61:eb:7f:15:2b:98:d9:9c:c3:6e:85:37:2e:d3:17:0c:91:
7a:3d:99:d8:d3:70:ab:32:52:b1:ce:d6:ec:8b:2e:c1:94:8c:
50:94:19:4c:15:98:8f:fe:ee:cc:5e:57:e7:dc:07:d6:d1:48:
b8:f9:27:e9:d0:29:40:76:bb:c3:68:76:d0:76:da:64:7a:ce:
31:4c:ae:2e:68:5e:dc:6a:16:32:c9:9c:d6:78:0d:5d:b9:97:
c0:df:8f:c6:cd:60:d0:b8:33:7d:de:9d:62:0e:dc:c9:80:6f:
b7:65:5c:76:5e:70:04:d9:c0:1c:c4:5b:65:9c:48:ce:01:f8:
4f:24:67:c5:f3:85:e0:f5:6d:df:a7:31:28:69:ee:99:f1:03:
59:a9:4e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:25:04 2025 by rpki-client