Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: tYxAJERvlprhzBqoYeVyFpPxS1iO0XNhaS9FPJVW1x4=
Subject key identifier: EF:F3:03:E6:F4:B5:26:0B:1A:B6:50:47:AB:1E:F6:B9:29:3D:B5:20
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 01958C28F8F3BBEDAEE803D8C8B92FBDD1CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 1013
Signing time: Wed 12 Mar 2025 21:00:50 +0000
Manifest this update: Wed 12 Mar 2025 21:00:50 +0000
Manifest next update: Thu 13 Mar 2025 21:00:50 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: BGvCzzeOuld3I9RSDRi4PWGg1QNnO6VrhYsJBrvdZ0o=)
2: hbt7WcwBqBoPW6rBuDIQ3SNZmzc.roa (hash: gFxs6hHw3FxfMImk+yNCzFI6L94MQhx1psEtxtAsjbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:28:f8:f3:bb:ed:ae:e8:03:d8:c8:b9:2f:bd:d1:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: Mar 12 21:00:50 2025 GMT
Not After : Mar 13 21:00:50 2025 GMT
Subject: CN=eff303e6f4b5260b1ab65047ab1ef6b9293db520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:00:38:c7:84:a7:de:58:9f:86:90:45:53:b5:
e2:bc:1e:bb:aa:0a:f9:28:85:50:d8:34:05:dd:39:
70:d6:fb:42:c4:e7:4f:21:b1:d8:12:1d:b5:f6:ff:
fa:28:09:ee:9f:b0:af:fb:46:dd:c0:ca:04:9d:47:
05:9b:37:b8:2f:e8:ad:3a:09:ed:51:14:5e:74:74:
2d:57:36:c2:dd:e9:c9:18:43:8d:4a:65:ff:0b:ea:
af:fc:a8:5f:51:47:3b:d6:11:f4:3c:1f:7a:0a:5f:
78:d4:cb:ba:c2:a7:7a:4e:f7:a1:1e:d0:0e:26:64:
0b:2e:c3:c7:3c:41:2c:c8:14:98:ac:a5:9f:32:b7:
e4:64:98:0e:7f:a2:9f:a2:a1:89:1d:b6:0e:b9:de:
02:95:f7:b6:fa:84:57:01:ec:d1:ce:1b:eb:79:28:
9d:4a:a3:a0:e4:01:4e:5e:f6:b9:a4:71:a7:a6:9c:
81:ff:86:da:32:64:48:23:21:bc:91:8c:64:53:ad:
29:74:85:c1:7d:c5:20:ea:b7:b7:00:4f:fb:f8:8f:
1a:4c:8f:4d:4d:52:80:1c:b7:1f:78:fd:64:28:f2:
b6:d4:be:4b:e6:c1:04:a5:ff:ef:46:0f:7b:29:88:
ac:1e:98:4c:bc:43:42:1b:b6:44:ec:f0:16:68:bd:
5b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F3:03:E6:F4:B5:26:0B:1A:B6:50:47:AB:1E:F6:B9:29:3D:B5:20
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:05:3f:d7:6d:4c:6f:42:e2:05:98:3c:be:8f:3f:29:cf:61:
10:8e:7f:fe:f0:62:44:db:5d:f3:e5:95:eb:59:81:9f:87:8b:
f4:76:32:35:86:75:0f:6e:60:84:fd:ca:3f:26:28:9c:17:96:
49:35:fd:e2:5a:6e:82:d8:a9:cd:e1:98:d4:c1:25:d2:14:fc:
95:b8:ec:95:46:9a:2c:27:b2:d8:0e:0d:2d:a9:9d:e0:9e:d0:
8b:a5:13:3e:b7:96:43:ab:9d:4d:01:b0:3c:79:fb:12:aa:2b:
95:64:5b:26:e4:ba:79:8b:61:cf:fc:d7:a1:26:07:9c:dd:1d:
0a:85:52:aa:3f:7b:35:a2:2b:46:fe:b5:aa:ab:09:a4:97:05:
ce:e0:3a:f8:f1:38:d6:99:04:b1:54:05:6d:66:e7:27:e8:98:
ed:0b:0f:7c:e7:c0:db:ef:62:96:1c:4b:29:70:0a:50:59:19:
ab:1a:52:5f:3b:dc:66:8f:a6:e2:02:9e:f2:db:96:9b:21:05:
86:85:25:08:fe:93:89:e0:cc:e8:db:b4:30:d2:4c:f3:39:2e:
b5:26:18:c7:62:1e:49:12:51:17:73:91:f9:8a:cf:03:dd:96:
b5:10:3d:d0:08:3d:17:05:78:2f:53:09:26:9c:bc:24:cd:3e:
8c:cb:8d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:21:16 2025 by rpki-client