Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
File: oYhrwvjZOpz8WoN-LydS7knyJHQ.mft (raw, json)
Hash identifier: xhm9N6N9hE3drJhAgtmN1kqaEoGJUyvwc6AnfJ9E5xw=
Subject key identifier: B4:DC:A4:30:7B:C2:36:0B:98:FE:B3:38:A5:5F:37:90:24:B7:13:F7
Authority key identifier: A1:88:6B:C2:F8:D9:3A:9C:FC:5A:83:7E:2F:27:52:EE:49:F2:24:74
Certificate issuer: /CN=a1886bc2f8d93a9cfc5a837e2f2752ee49f22474
Certificate serial: 01965982DF4FCD3938BFAE5EBABD0D873F24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
Manifest number: 14FC
Signing time: Mon 21 Apr 2025 18:01:11 +0000
Manifest this update: Mon 21 Apr 2025 18:01:11 +0000
Manifest next update: Tue 22 Apr 2025 18:01:11 +0000
Files and hashes: 1: oYhrwvjZOpz8WoN-LydS7knyJHQ.crl (hash: U3vkmOmQL5+hQwRqswxPJIjQCN3XijvodWHmofT5z/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 18:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:82:df:4f:cd:39:38:bf:ae:5e:ba:bd:0d:87:3f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1886bc2f8d93a9cfc5a837e2f2752ee49f22474
Validity
Not Before: Apr 21 18:01:11 2025 GMT
Not After : Apr 22 18:01:11 2025 GMT
Subject: CN=b4dca4307bc2360b98feb338a55f379024b713f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:64:32:90:29:c8:cc:4f:56:8e:f9:f8:0e:27:
bb:cb:4c:ef:f0:4a:53:3f:dc:6c:32:12:98:b9:35:
a4:4b:64:54:76:50:50:c8:ee:bb:97:e2:60:da:f7:
19:df:f7:52:d4:f1:2a:fb:78:77:80:13:c5:5b:47:
09:57:83:b7:63:f2:17:fb:cc:a2:4f:a5:6a:c9:b0:
16:6f:7c:95:24:9b:8a:21:d6:e9:00:d6:c9:40:0d:
38:7c:ea:cb:05:8e:6f:3b:3c:59:14:60:7b:23:52:
a3:5b:89:cf:8d:db:7f:dc:45:de:b7:02:33:cf:37:
9d:3e:99:f3:8f:de:c8:dc:7a:f3:ab:ed:ea:0e:f9:
b3:7c:2a:00:d9:3e:d9:7a:f3:8f:43:e7:dc:09:29:
92:26:de:e8:80:a5:7e:1a:a0:e2:6d:7c:c1:15:24:
46:12:52:22:03:2c:fa:b2:7a:d5:ec:00:f7:da:58:
32:a3:d4:4e:19:06:59:9d:93:35:99:6c:fa:41:89:
50:02:43:58:9c:9d:ac:35:19:73:77:70:1d:02:84:
bc:fa:bc:5b:50:a9:6d:e5:16:76:6c:ec:33:47:5e:
4b:f9:2c:17:1a:92:5d:03:51:6a:ec:8c:91:9a:b8:
86:2d:75:cd:30:b1:b8:18:a4:bf:84:b9:ed:ab:c1:
81:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DC:A4:30:7B:C2:36:0B:98:FE:B3:38:A5:5F:37:90:24:B7:13:F7
X509v3 Authority Key Identifier:
keyid:A1:88:6B:C2:F8:D9:3A:9C:FC:5A:83:7E:2F:27:52:EE:49:F2:24:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:f6:d4:1c:7e:82:a9:23:e8:40:b1:58:6d:ce:81:9b:51:23:
dc:09:6c:77:ca:8b:c4:f5:94:0a:52:26:76:6e:c2:52:f2:34:
98:db:b4:23:75:85:cf:81:75:b5:e1:05:7f:61:d2:80:1c:fb:
12:32:28:fc:63:54:65:ce:93:74:0c:55:0f:10:98:87:24:67:
91:bc:d0:c7:5d:64:d3:ab:2e:05:e7:c2:38:56:a6:5e:7f:d9:
d1:56:17:50:42:87:14:ad:5f:80:b7:84:da:0f:00:62:8d:9c:
8b:e7:44:13:41:ce:8e:54:e3:58:0f:01:b6:aa:b4:0f:3c:a8:
a1:ab:bf:ef:f1:ed:e1:a4:c7:5f:6f:42:e0:47:28:c1:b3:01:
f7:de:61:04:f3:c7:3d:ed:bf:c6:e7:fd:81:aa:6a:c3:6c:7a:
3a:8d:75:34:95:b8:3c:8b:19:99:60:a7:42:79:e0:6c:4a:a0:
e4:65:0a:d0:0a:56:6d:7b:08:fb:ba:46:38:6a:7c:5e:4e:6d:
de:46:ef:b6:ca:32:d6:a5:df:91:df:92:e2:cb:69:2d:75:bb:
8c:75:da:41:32:93:b9:62:c5:78:dc:9e:b3:45:ab:08:38:91:
b2:27:94:61:8a:c7:8d:0c:81:c2:e1:37:8d:80:c9:d5:fb:ad:
ae:e6:fc:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:44:33 2025 by rpki-client