Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: t4XpGOOzgI67gz9zpX9x1/R0zfZRoIXWu9AyMqtKqxE=
Subject key identifier: E8:EA:96:5F:F7:C4:8F:7E:B3:35:BA:9B:3C:42:B9:44:4A:B4:4F:A5
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 01962CE15C0FDE976B6EA521CEEA95FF2DA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 0494
Signing time: Sun 13 Apr 2025 02:01:28 +0000
Manifest this update: Sun 13 Apr 2025 02:01:28 +0000
Manifest next update: Mon 14 Apr 2025 02:01:28 +0000
Files and hashes: 1: lG9M0ytelOsltsM45OHzpDj8VA0.roa (hash: NbXxBP1wpUJzGfc6WpWH6JS4IiG1rIjC9o+D9ASG5hQ=)
2: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: mRn9fQmtxl0FC717aUVkVx2g64mr5SbF4sEhumQF994=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2c:e1:5c:0f:de:97:6b:6e:a5:21:ce:ea:95:ff:2d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Apr 13 02:01:28 2025 GMT
Not After : Apr 14 02:01:28 2025 GMT
Subject: CN=e8ea965ff7c48f7eb335ba9b3c42b9444ab44fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cd:f9:4e:55:ea:cc:a0:ba:c4:dc:c1:0b:cb:
a3:c2:ff:56:4d:ff:2f:c6:ea:12:3e:82:02:41:c4:
64:16:ab:57:3b:58:e2:3f:35:e6:59:22:8e:23:ea:
72:d1:46:30:37:e1:00:1b:4d:97:58:29:46:3a:66:
d6:af:48:24:b5:14:cc:b1:20:94:a9:a0:6a:61:83:
56:56:61:c5:cc:58:45:32:27:de:f9:24:58:d7:2a:
40:8f:0f:77:a0:bf:c4:47:70:d5:35:dc:ee:f3:ef:
0e:e5:03:dc:37:fe:62:af:06:f9:24:35:a5:3d:b8:
77:fc:58:53:b0:15:19:18:62:a5:51:2b:c2:8b:b7:
60:d6:2d:ab:bf:ee:8a:2b:c6:67:da:90:14:2d:fd:
27:32:4f:f6:fa:7b:5d:80:6e:fa:5e:0e:75:f6:dd:
76:65:75:c1:8f:8d:b4:7b:b6:37:71:1c:00:44:af:
56:d1:36:6c:07:90:83:63:d3:d0:bb:29:2d:7e:76:
9a:82:8c:92:3f:44:11:d7:e8:f1:3a:6b:e3:ff:32:
e2:49:42:c1:61:57:f8:d9:96:c0:1f:10:bf:3f:2b:
c3:ed:22:c0:e0:42:ee:9c:bc:66:ba:00:9f:e8:60:
4f:70:ce:27:58:bd:49:34:4b:70:f1:11:5e:90:f7:
72:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:EA:96:5F:F7:C4:8F:7E:B3:35:BA:9B:3C:42:B9:44:4A:B4:4F:A5
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:33:44:b4:f9:8a:0d:8e:6f:8e:7e:1a:db:a4:e1:6e:5a:b7:
b7:62:ec:c1:23:25:8c:4b:65:d0:da:1f:23:c4:ce:36:02:25:
32:ff:29:ab:bd:b1:fb:2c:47:7a:d8:71:2b:29:07:8b:ec:6d:
33:f2:c2:d4:61:17:09:44:74:fd:6c:7a:a5:2d:8a:58:e0:07:
81:a7:95:cc:b4:a2:5f:ed:ad:f0:88:22:cd:92:ab:75:7e:5a:
d1:ee:8d:49:1a:4f:74:7e:cb:e2:d0:d5:e7:9f:fe:54:1e:26:
ab:50:a5:a0:c1:e1:6f:30:60:2a:c0:f9:67:42:6b:69:4a:07:
1f:6a:29:42:8c:b4:8b:a0:cc:f8:e2:25:82:97:e5:aa:8c:9c:
35:1d:c3:e3:e2:15:f0:30:52:29:bf:0f:a9:0c:38:38:81:24:
f9:1f:20:22:32:88:d6:a7:71:25:a5:81:c9:02:38:d3:1d:68:
88:ff:a7:0d:a7:66:94:0b:f5:87:a7:8d:0c:67:d0:b3:79:bb:
d5:0d:e7:0e:32:17:77:ac:6a:a1:f5:31:5e:63:c6:c9:bd:19:
54:96:82:b3:0d:fe:17:3b:70:14:18:b8:e4:38:62:24:68:c4:
46:c2:22:34:c1:00:a5:22:8e:b8:30:e4:61:65:72:59:41:6c:
f2:01:b6:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 06:32:53 2025 by rpki-client