Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json)
Hash identifier: avlAOWigW9Fv6qcwjJMVhVbw+971MPO2CxA8QF61bAE=
Subject key identifier: CA:EC:FD:FB:84:07:21:3E:0E:82:AE:4B:09:96:18:FB:B8:B8:2D:EA
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 01964B589EE00702E3569D45C1F090738B16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
Manifest number: 14EB
Signing time: Sat 19 Apr 2025 00:00:21 +0000
Manifest this update: Sat 19 Apr 2025 00:00:21 +0000
Manifest next update: Sun 20 Apr 2025 00:00:21 +0000
Files and hashes: 1: JQFRevUesYnGzWy86if_lRLWdpc.roa (hash: t3BYwJZyAAH5HRBi+AIKc99FxTLmFzwx0nZw4AplB88=)
2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: XFKOLzaEoPVMFH08Sd9P/TF6T7H14z04lAzB1ycMC3o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:58:9e:e0:07:02:e3:56:9d:45:c1:f0:90:73:8b:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Apr 19 00:00:21 2025 GMT
Not After : Apr 20 00:00:21 2025 GMT
Subject: CN=caecfdfb8407213e0e82ae4b099618fbb8b82dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0c:7f:f3:f3:36:74:56:8a:98:a8:ad:83:ff:
ce:80:cb:2e:49:84:11:c5:c6:25:63:f8:1f:f8:9a:
c8:80:0a:30:a8:86:de:9f:ab:a9:b1:8b:f7:6f:aa:
75:34:40:c4:60:71:ca:41:50:60:ff:1b:8c:75:12:
ef:f4:53:f8:c6:d7:31:c7:26:42:33:33:7a:54:61:
9d:5d:c6:8f:f3:a8:28:71:eb:83:f3:94:37:b9:dd:
7b:09:fd:c8:c5:a0:31:9a:94:b9:0e:b7:b9:ec:1f:
ce:14:f8:79:a3:d4:47:42:99:b0:72:b5:1a:f7:1c:
53:47:ec:32:a3:37:8b:51:e6:e0:6e:c8:fb:b4:5b:
2c:c6:12:89:eb:27:09:03:2a:31:af:22:f7:0e:91:
6d:63:47:2b:3f:9a:1e:83:ef:91:8c:7f:99:8d:91:
77:f7:be:78:2c:36:8c:ae:25:9a:87:78:cc:ab:e6:
b0:ef:f8:c5:09:06:a8:9e:04:46:92:a8:19:d9:22:
7e:4a:d2:da:75:cc:49:32:a6:93:49:4f:10:0f:af:
d3:c5:f0:26:15:39:b4:cc:a4:f9:c5:e3:83:be:aa:
85:05:82:82:14:23:1e:91:a5:18:b0:1c:c7:95:52:
59:e6:a6:a2:c7:11:58:6e:23:18:c1:59:a5:a9:bb:
68:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:EC:FD:FB:84:07:21:3E:0E:82:AE:4B:09:96:18:FB:B8:B8:2D:EA
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:ba:d2:7b:ec:d0:db:47:e7:5c:b2:d0:b6:00:f8:ac:ff:62:
2c:69:2f:72:db:28:8e:f9:bf:b2:7c:2c:e3:e5:c2:dc:2a:c0:
b2:d1:e7:a2:ab:de:fe:ab:2b:d1:e3:01:de:78:e6:5a:13:45:
c5:a1:dd:d5:ba:74:f6:27:ac:b1:22:03:af:00:81:42:85:f0:
6d:71:a8:c9:6f:25:5a:6e:ed:c5:f5:07:7e:32:e4:57:19:1b:
f9:a3:5d:1a:80:e8:39:cb:ea:13:3b:bf:9c:39:b6:ac:3f:8e:
40:67:60:6f:4e:c3:0e:7f:c5:bc:ef:bf:ce:ed:81:b9:f4:74:
ad:4c:31:00:a7:72:8a:8c:8d:a5:2f:83:12:cb:24:d0:13:51:
e7:6b:d3:5c:ca:dd:f0:ee:30:05:51:e3:32:f2:a2:50:3e:10:
02:2b:d9:4b:73:dd:77:80:b5:3a:30:af:fb:1a:2b:de:4a:c4:
fc:f7:69:c0:b8:d7:21:f9:37:95:e5:da:fe:6f:c5:b2:6f:fb:
bc:64:fb:d7:ef:90:26:15:d3:09:d0:32:80:2c:06:e0:c1:d6:
43:c3:2f:96:ed:c1:dc:32:e6:77:91:77:f6:c4:46:98:24:e7:
0d:92:03:f4:8c:4d:dc:33:bd:86:1c:6b:7d:0c:2a:4c:f9:b6:
33:9b:f5:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 06:48:58 2025 by rpki-client