Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: /HPHlG9GcFo4hGh0j6uG3ModWxdgHWVZf12IdhHCqIQ=
Subject key identifier: 42:DC:CD:C1:6E:44:F1:32:0D:10:14:98:87:63:60:0D:72:AC:AC:47
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 01958C972351CF5EF872F722AC5EEBEE53FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 0441
Signing time: Wed 12 Mar 2025 23:01:10 +0000
Manifest this update: Wed 12 Mar 2025 23:01:10 +0000
Manifest next update: Thu 13 Mar 2025 23:01:10 +0000
Files and hashes: 1: lG9M0ytelOsltsM45OHzpDj8VA0.roa (hash: NbXxBP1wpUJzGfc6WpWH6JS4IiG1rIjC9o+D9ASG5hQ=)
2: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: gsecAf2pHYpfANyjnFgEWzbx9RED1P+LjmHXg6A4YqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:97:23:51:cf:5e:f8:72:f7:22:ac:5e:eb:ee:53:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Mar 12 23:01:10 2025 GMT
Not After : Mar 13 23:01:10 2025 GMT
Subject: CN=42dccdc16e44f1320d1014988763600d72acac47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:aa:c8:28:7f:f1:aa:ed:bf:44:ec:97:7b:74:
10:3d:af:e7:b2:fe:70:9a:67:57:82:48:8d:e3:f9:
c0:6b:05:ee:f1:c0:9a:74:37:d4:b9:16:04:5c:9f:
c3:a5:8c:3f:1a:04:c5:dc:73:98:be:3f:60:d3:e7:
6c:c2:d5:45:e2:9a:ed:ef:11:f3:a0:97:00:a7:1a:
91:27:b3:84:20:f4:de:fb:77:74:25:d9:c7:3f:6f:
d8:f2:fd:c5:c2:bf:d6:e9:08:10:ef:73:e8:98:05:
20:e2:98:36:01:64:d4:49:43:69:33:3b:ea:1a:c2:
b2:94:15:e7:7e:52:16:52:05:f4:8f:73:f3:2b:42:
82:98:5a:f4:24:58:9d:9b:7d:ea:67:55:bc:14:af:
fa:58:89:a7:4a:f7:b3:55:59:1c:ff:bd:e0:66:57:
35:76:4f:54:e7:76:3c:ca:bd:84:9e:b7:13:17:36:
9c:f0:3e:3a:d3:40:90:17:64:50:43:39:09:d9:16:
6a:9f:af:88:9d:c8:04:5a:71:fb:39:de:0d:1b:3f:
d0:d2:da:46:d7:37:54:37:c5:45:b6:16:83:e4:01:
10:72:01:76:70:43:90:82:6a:09:55:56:6c:52:f0:
d7:c8:36:5b:af:36:c8:28:66:49:78:e9:91:4f:71:
37:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DC:CD:C1:6E:44:F1:32:0D:10:14:98:87:63:60:0D:72:AC:AC:47
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:30:9c:6e:ca:68:ef:d0:45:7c:f3:98:a0:77:63:bd:d6:16:
1a:8d:4d:bc:4c:4d:0b:da:04:4d:a9:bc:2a:e4:51:90:ed:e0:
82:05:4d:b6:4e:a7:b8:3a:88:d4:e9:40:82:a6:47:a4:6f:37:
c3:3c:d0:70:7a:f0:d3:d7:5e:1b:df:a5:90:70:f9:60:ec:41:
4c:92:22:28:08:27:cb:8d:32:df:20:5f:8b:94:ca:fc:f6:07:
c7:df:7e:e6:7d:fa:ce:d1:73:b7:55:52:bf:10:0d:01:e2:60:
18:48:3f:87:4b:3b:c8:58:dd:b6:2d:4e:3d:79:f1:14:00:e6:
fc:20:02:2e:1f:93:4b:9e:7d:dd:e4:69:dd:36:07:a9:2c:03:
5b:85:7a:cc:b8:9c:59:75:a2:4b:8a:b5:8f:29:cf:c1:76:61:
f8:8e:29:a7:7a:4b:67:78:6a:46:1d:e0:8b:3d:c2:47:a7:42:
1a:c2:cf:53:68:58:75:ec:2c:45:0a:62:03:41:5d:e2:28:da:
14:e4:6e:47:0e:83:64:78:bf:3e:56:33:9b:60:44:29:21:67:
90:97:b2:17:fe:eb:61:b2:06:87:9d:19:f7:76:65:61:84:a6:
65:cc:ed:f7:a7:4c:04:90:5f:3c:52:d3:82:f4:7e:97:d2:33:
19:5f:ba:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:44:49 2025 by rpki-client