Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
File: OJDnpFSaVx9otoja1PXO2OUpBos.mft (raw, json)
Hash identifier: u/a6oEThj0XOM251+QDevk0KA19ZelLFA83TjChBOa4=
Subject key identifier: F1:75:7C:11:62:A2:60:4C:DA:FD:1B:A4:8C:51:2A:61:57:0A:46:88
Authority key identifier: 38:90:E7:A4:54:9A:57:1F:68:B6:88:DA:D4:F5:CE:D8:E5:29:06:8B
Certificate issuer: /CN=3890e7a4549a571f68b688dad4f5ced8e529068b
Certificate serial: 01964D7E58E9EBA812CA0D5F82574FF55C8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 10:00:48 +0000
Manifest this update: Sat 19 Apr 2025 10:00:48 +0000
Manifest next update: Sun 20 Apr 2025 10:00:48 +0000
Files and hashes: 1: OJDnpFSaVx9otoja1PXO2OUpBos.crl (hash: 8vIfnZhcGWjYohbkMKvLS+kIFB59J6ZlvaFZNsMLq9g=)
2: XaY9bUiZ_CFGYXPkNboje_P8adc.roa (hash: b9+EkuxILTVWiZrAAhWN9xohV/5GiE1XVfEOgozpLGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:58:e9:eb:a8:12:ca:0d:5f:82:57:4f:f5:5c:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3890e7a4549a571f68b688dad4f5ced8e529068b
Validity
Not Before: Apr 19 10:00:48 2025 GMT
Not After : Apr 20 10:00:48 2025 GMT
Subject: CN=f1757c1162a2604cdafd1ba48c512a61570a4688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a4:a6:40:0a:97:f8:00:12:4a:ff:52:a8:b1:
ea:82:86:66:d1:6f:b8:cd:31:28:b8:42:83:d5:69:
38:f1:65:0a:de:ca:ed:04:6d:c0:dc:6e:06:5e:67:
6d:34:24:c8:f0:a0:de:c2:57:3a:4f:68:2f:13:07:
44:10:32:9b:3e:61:d6:95:fd:f1:e0:52:92:b1:c2:
9c:e8:a3:3e:35:4e:8f:77:4b:f8:2c:69:e6:8f:94:
32:74:73:95:0b:b9:99:6e:ff:11:37:cc:97:3e:1f:
37:a8:66:4c:82:da:55:2e:f5:f9:8e:87:7c:20:f2:
69:f2:98:e0:ed:90:db:f5:2d:fe:dd:e0:1d:2f:e7:
f0:86:e8:a7:01:0b:d0:cd:6c:25:cd:c5:e3:4a:e6:
a9:8f:15:1c:47:60:e7:54:7c:96:36:21:04:98:c0:
18:bb:7d:94:fe:2d:76:0f:5d:64:d9:b9:39:cf:ef:
11:9c:32:b6:bb:16:1f:4c:e4:1a:5f:e5:76:9c:61:
9d:c6:0b:1d:9c:d2:98:a0:f8:6d:34:10:50:68:76:
ec:c7:72:79:ca:35:8e:16:d8:3f:9c:c8:ba:d6:a0:
d3:47:08:77:f6:35:1c:45:25:36:be:16:36:75:24:
c4:f8:10:6a:15:aa:44:1a:11:2f:25:be:7c:b1:2f:
76:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:75:7C:11:62:A2:60:4C:DA:FD:1B:A4:8C:51:2A:61:57:0A:46:88
X509v3 Authority Key Identifier:
keyid:38:90:E7:A4:54:9A:57:1F:68:B6:88:DA:D4:F5:CE:D8:E5:29:06:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:14:bb:7d:8b:77:55:20:76:1a:79:cf:63:00:5c:05:85:c5:
37:18:e0:2b:a4:86:c4:00:52:9f:0c:68:52:38:01:6e:0d:a0:
0e:1d:0f:e8:2d:89:ed:1b:42:c6:d6:cf:6e:18:d6:38:e8:ef:
81:b3:ca:27:9a:39:a4:23:a3:6f:19:6d:ae:f9:43:9f:f0:78:
66:b7:7b:92:cb:7d:2a:24:08:fe:a7:3d:6f:e5:5c:ea:1e:4b:
cd:1d:18:78:a5:0e:bc:2e:4b:f3:11:19:38:d1:41:bf:d2:39:
6c:74:91:83:2d:e2:d8:5a:20:fe:61:c1:98:b3:1a:d6:d2:ce:
d1:44:8a:47:27:ab:34:4d:80:e1:eb:d9:47:52:12:47:fa:55:
e2:93:cb:8a:d9:b0:2f:be:58:0d:2c:ac:c5:40:28:18:5a:29:
15:d3:23:c6:16:50:4f:2c:bf:1b:65:f9:a5:86:aa:12:7b:c9:
66:c9:e4:ba:da:1c:d6:16:b4:fd:4d:db:c6:b9:85:5c:53:e1:
e9:35:54:51:0b:2a:e2:d8:e0:46:bd:7e:bd:5d:b4:50:ef:f7:
6b:cf:5c:5c:04:64:08:f0:98:41:95:2e:16:f0:ba:d5:2e:60:
0f:8f:9f:fd:bb:9a:72:4b:3d:0f:e3:64:20:b6:91:64:59:51:
85:31:d8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:38:06 2025 by rpki-client