Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
File: odcYUzJOsGD7r8mIIzhgSZyWxTo.mft (raw, json)
Hash identifier: 9DM0bg13cF+I/180UzOs5pHUB5RtPjcaznN/yFYOl0I=
Subject key identifier: CA:68:B0:32:02:02:38:E0:88:88:8B:06:85:58:D7:CC:40:EF:A6:FA
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 0196029BAB08C3ACA96D3F3CDB1F0A2EC59F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
Manifest number: 11B5
Signing time: Fri 04 Apr 2025 21:01:18 +0000
Manifest this update: Fri 04 Apr 2025 21:01:18 +0000
Manifest next update: Sat 05 Apr 2025 21:01:18 +0000
Files and hashes: 1: C8QSMz8GNoIQm4uSFWS26QwX4TU.roa (hash: NCS38C69vxkOze1iM8evBR20KFQKimFCiPTQOaoZSEg=)
2: XZOzWNS9uSJXxdofEgbqQ-4LX8Q.roa (hash: +R0Sy7oAn0ABCK0E7oKA/ofkAMnGgDdtdmPnmJOjdTs=)
3: YCQuqCy9NuRyU0S6FabSa0c6NJs.roa (hash: z0MGBwlcQwzapOIPDSPyZ4kB4JdwESi59TmNtwz3tdw=)
4: gf5XFlgvC8pERwrlK5LoL2sXlHE.roa (hash: JPyHl8l/41KirDeXfkpcWORF22TQZRLVrNb1aXqrS3E=)
5: odcYUzJOsGD7r8mIIzhgSZyWxTo.crl (hash: FEqCqFXkWP0d4VcUzpMgZNh0Tqmxwtb+hV2v2Pjkb7E=)
6: zQz3tWtapn8qKz4rYeWGGnS9boI.roa (hash: Oet1y32LyQ4if4pkKw3gO80qX4zMy1K2uegwxuTNvQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 21:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:02:9b:ab:08:c3:ac:a9:6d:3f:3c:db:1f:0a:2e:c5:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Apr 4 21:01:18 2025 GMT
Not After : Apr 5 21:01:18 2025 GMT
Subject: CN=ca68b032020238e088888b068558d7cc40efa6fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:be:ee:77:7a:02:78:cd:23:f6:d1:fa:93:ac:
92:28:d2:35:c5:42:ce:ce:0f:5e:e6:76:ec:16:cb:
0a:c2:e9:26:14:e5:36:40:27:1c:7a:bb:fa:7f:f9:
16:13:87:1e:6c:c0:6f:fe:f8:a7:0e:05:cb:09:2b:
3b:0e:c6:83:d5:db:01:8b:7c:e1:41:77:73:1f:4f:
dc:9a:f0:9b:9b:7b:64:2a:43:3a:13:20:cc:23:47:
f6:83:31:11:55:94:e8:f5:85:54:86:bb:99:2d:f9:
03:ce:6b:ea:f1:09:71:72:c7:47:b4:e9:be:67:ff:
b5:3a:1e:67:0f:2a:6c:ed:fd:b4:db:72:40:22:7a:
7f:48:c6:57:2d:2c:41:50:db:78:39:2a:16:da:f8:
34:f1:bf:74:ac:9d:45:15:cf:52:5f:ec:c0:bb:68:
90:3e:8c:64:e8:7f:af:d1:94:ba:64:d0:ce:19:7d:
e8:a3:1d:b6:86:71:f3:c1:8c:db:b6:97:84:a6:3b:
64:5d:ed:35:f7:0e:09:39:da:a8:81:c2:48:5e:fb:
69:73:20:a2:94:e2:98:58:7a:1d:3c:b0:38:15:61:
e2:a3:98:d2:2d:0f:98:ee:ba:28:bc:45:cd:2b:53:
91:d0:07:34:74:33:38:f7:ab:1f:44:e2:dc:1b:d2:
e4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:68:B0:32:02:02:38:E0:88:88:8B:06:85:58:D7:CC:40:EF:A6:FA
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:3a:fc:7b:9b:25:8b:e4:4b:45:ca:52:d1:3e:7d:f1:00:42:
b0:bf:87:5e:20:c5:64:bf:d5:01:4f:9b:a7:d1:24:3e:55:5e:
fe:33:9a:46:59:1d:54:f9:68:bf:43:b1:f8:39:52:c7:96:30:
1e:75:2e:58:f8:36:e7:3f:87:6f:b8:e5:2e:f5:a6:a0:3d:00:
a4:77:9b:86:9f:eb:ae:dc:43:f6:6a:25:3b:ae:6f:61:68:ab:
ea:e8:0c:14:3f:1d:4f:26:44:64:32:10:b1:9e:c5:d2:4d:a9:
3b:5d:88:83:3b:8b:11:85:c3:f8:55:28:0f:9a:fa:9f:03:09:
02:8d:51:7d:4a:e1:fe:2d:b4:5a:68:16:f3:77:b3:87:a3:e0:
42:10:90:b1:91:30:7c:5a:31:2c:5b:5d:f2:fa:56:18:77:c8:
23:c3:ce:9c:66:35:19:37:2c:9e:1c:dc:5d:69:c7:94:c7:fc:
a7:d9:d1:c0:e7:da:ac:08:c2:17:ce:04:a1:c5:99:e5:b4:61:
94:b1:2b:46:fe:73:a2:05:8e:e8:2a:29:aa:b8:cf:93:de:12:
7a:84:18:21:02:56:32:ac:4a:58:f6:f1:ec:9e:9f:3f:52:6e:
5b:0a:31:ad:d1:2d:10:25:ca:96:4e:14:b0:f9:38:ab:55:13:
d8:32:ad:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:31:39 2025 by rpki-client