Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
File: OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft (raw, json)
Hash identifier: l4HcrHHUTzWdX9mGY3T3GcFzTtDg0FpiSfNyiL61ZB8=
Subject key identifier: AE:95:26:38:A0:85:82:2A:27:D4:74:33:8E:68:68:C3:E5:EF:70:4A
Authority key identifier: 38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
Certificate issuer: /CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Certificate serial: 0196439EF8D0CCE9F67FD4D8E90E0C7D3248
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
Manifest number: 0BD4
Signing time: Thu 17 Apr 2025 12:00:13 +0000
Manifest this update: Thu 17 Apr 2025 12:00:13 +0000
Manifest next update: Fri 18 Apr 2025 12:00:13 +0000
Files and hashes: 1: OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl (hash: ybYheJe0OFhc+6OjevsZO6dOjlMDgtbZvN34e4YwCJs=)
2: b85MZ4WinFf_UE0cBlcSvifgg7I.roa (hash: uJf/EeGTiSuFi2jO3q5f34ZIMuvCCFqx997bjLZrpdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 12:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:9e:f8:d0:cc:e9:f6:7f:d4:d8:e9:0e:0c:7d:32:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Validity
Not Before: Apr 17 12:00:13 2025 GMT
Not After : Apr 18 12:00:13 2025 GMT
Subject: CN=ae952638a085822a27d474338e6868c3e5ef704a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:53:c2:c1:aa:77:01:e5:34:f3:82:b7:aa:b3:
ec:e6:e6:0a:0e:8b:12:44:eb:bf:42:8b:4c:e2:6e:
e4:dc:85:9e:4f:4f:a6:11:50:c7:8e:84:2b:0d:33:
0d:f3:d7:71:59:15:af:f4:8b:18:90:c0:e9:14:bc:
37:e2:a0:de:97:0a:97:1c:3b:73:d5:08:31:33:05:
bd:06:45:e7:c1:f9:eb:61:52:93:77:c3:45:b8:2c:
a3:bb:31:a9:85:62:3d:36:04:eb:5d:5f:6d:0f:9f:
79:b7:18:3a:6f:79:8f:13:24:4e:d6:6e:22:3a:5f:
6a:7a:1a:df:10:39:38:72:0c:59:ce:18:23:20:7d:
c4:a3:1e:8d:77:e3:d6:d2:d1:fb:d5:71:6c:f3:39:
52:bb:9c:74:bf:f3:7f:c8:69:41:82:e0:50:79:39:
b6:7f:7c:e6:1c:f3:3c:51:fd:98:26:f5:d4:c6:2a:
ed:11:e1:30:58:50:dc:e1:ba:3c:10:d8:cd:08:19:
44:c1:85:93:2b:78:28:9e:8b:1d:ee:0e:ac:c0:b2:
31:f3:5a:70:11:73:aa:31:cb:11:14:a1:f2:3a:41:
91:ac:c7:d6:aa:11:6d:24:9c:e8:88:4b:94:dd:ce:
33:e5:9d:39:36:bd:e0:64:a5:09:e3:c0:21:a7:57:
bf:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:95:26:38:A0:85:82:2A:27:D4:74:33:8E:68:68:C3:E5:EF:70:4A
X509v3 Authority Key Identifier:
keyid:38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:fc:bd:15:db:de:5f:53:6f:d6:ea:17:f2:8b:9b:b5:2c:54:
1a:3d:c6:9e:a6:94:60:07:02:3a:04:62:6c:be:d3:76:4a:2e:
e3:72:81:7d:83:9a:9d:fe:9d:b5:a2:43:69:52:03:65:3c:73:
de:1a:2c:ac:80:a9:58:8e:1e:29:de:ae:ed:be:f2:8c:81:ed:
8e:dc:7a:eb:2e:12:81:27:29:1d:e0:86:0b:e9:7d:5a:b5:bb:
d1:f1:13:88:44:6d:d7:3b:ce:b8:b3:6c:cf:f3:a5:3f:b9:0d:
b0:a8:cb:d1:8e:82:c5:89:f7:ce:44:60:ee:be:03:b6:96:ef:
b5:39:06:83:c6:02:88:bc:06:7f:a3:9d:11:87:2d:e4:b4:c9:
fa:01:fa:38:47:53:3c:4b:45:cc:67:f0:67:c2:01:0c:ea:b1:
ce:0c:c8:ed:ea:fe:03:14:db:c2:34:a7:91:e4:1d:96:7d:1a:
fe:5e:d9:44:45:a6:11:15:9d:6d:29:d2:ab:ca:bb:1c:77:14:
97:87:cc:df:28:4a:b0:c8:02:7a:b6:cd:2f:90:d4:8c:8a:bb:
2c:ad:44:1b:e8:9c:85:0e:1d:96:3a:31:fc:82:49:cd:92:38:
66:a1:9b:fe:30:ce:6f:31:1f:68:7e:cc:0e:77:9d:9b:9e:18:
ac:41:ac:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:25:24 2025 by rpki-client