Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: XvJYfkQrrreMvt+qToHNPscQvJ78zBGlSItG+GE67bU=
Subject key identifier: 92:14:D9:C7:25:D0:22:DC:9C:F1:BD:8E:26:B4:27:05:5D:E1:E2:E6
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 01963FF99A085549B248C727E4DE0FBE1F74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 1483
Signing time: Wed 16 Apr 2025 19:00:44 +0000
Manifest this update: Wed 16 Apr 2025 19:00:44 +0000
Manifest next update: Thu 17 Apr 2025 19:00:44 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: Zn7XxNcX3JcJkoxQ0AnoN34oB+degSkYz1zfRzoLNZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 19:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:f9:9a:08:55:49:b2:48:c7:27:e4:de:0f:be:1f:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Apr 16 19:00:44 2025 GMT
Not After : Apr 17 19:00:44 2025 GMT
Subject: CN=9214d9c725d022dc9cf1bd8e26b427055de1e2e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ee:af:9c:a2:a4:ed:0c:91:46:99:d2:70:82:
5b:6c:ef:e9:da:fb:d2:58:f9:64:6c:b1:ee:2e:42:
14:2c:c7:c0:8d:9d:54:cf:aa:52:b4:b1:8e:7d:5f:
94:cf:da:76:04:13:78:92:3b:83:1f:a3:7a:d3:b9:
9d:14:d9:fa:71:d3:e2:03:4c:53:ce:09:e4:b8:c1:
f0:d1:e7:18:8e:47:d3:96:89:5e:da:08:3c:0d:91:
e1:66:d9:82:fd:35:01:1d:7c:03:07:6e:3c:bb:29:
63:9a:33:7a:8e:22:27:03:8b:53:fe:04:ac:f1:af:
52:40:7d:c9:18:c1:c2:76:57:10:c9:3f:c9:eb:71:
2e:f2:44:0c:27:68:c3:2e:52:65:26:30:21:7d:ac:
9b:c1:66:c7:ef:ce:1f:29:82:b0:1d:a8:a9:1a:87:
d2:95:e9:68:29:02:cc:2c:0f:dd:dc:0e:e6:91:b3:
0c:1d:c3:83:e6:51:34:82:2f:f0:b8:6a:59:35:7b:
15:a0:a0:8c:1a:43:17:65:f6:d3:8c:0c:7c:68:4b:
b4:93:9b:61:6f:25:01:ae:2b:59:02:77:8c:df:4d:
a7:bf:85:40:72:70:13:c1:36:9b:5c:e7:04:20:2b:
a8:a1:46:6d:b8:67:c7:f0:2e:66:e0:08:75:38:b6:
ab:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:14:D9:C7:25:D0:22:DC:9C:F1:BD:8E:26:B4:27:05:5D:E1:E2:E6
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:5d:75:32:3c:ff:6b:eb:5f:7f:9f:8c:a0:41:ea:6d:95:8b:
06:fb:bf:0e:15:8c:b4:84:36:6d:bf:de:d0:b5:7a:2a:04:f7:
03:26:9d:d3:b7:3a:f0:c0:25:3b:45:c2:89:a2:e4:2d:9a:52:
f1:d3:5a:e5:ed:9d:e0:63:7b:5b:a6:45:b1:49:f9:c8:9d:d9:
b0:c5:34:12:65:c9:78:b6:f3:25:b8:be:90:95:36:ee:cf:cf:
02:ea:1b:75:49:03:ab:8e:63:69:ea:bc:ea:2d:49:a6:a1:eb:
c5:b8:98:30:b9:39:96:1a:38:26:7b:27:e0:33:a4:25:79:5b:
fe:7d:2a:4e:b4:ab:7c:57:f0:ef:64:08:84:3d:7f:61:c1:6a:
fd:15:01:68:4a:03:d2:ea:02:db:1c:0c:47:cf:40:21:2d:cb:
0d:4a:a3:cd:25:e9:c9:2a:75:09:c8:4a:0e:6c:eb:4d:c9:2d:
ce:97:32:80:be:55:54:52:ce:b0:8d:c5:3f:2a:30:0d:14:5e:
ef:17:1c:3e:6b:70:25:df:f7:ab:25:1e:ef:22:83:ae:10:e7:
95:30:99:01:63:50:90:ee:7b:c5:78:a1:3f:2d:36:76:3c:e5:
89:4f:33:1e:0e:04:94:dc:67:c8:c7:f9:64:aa:45:e8:b5:4f:
aa:0a:44:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:42:23 2025 by rpki-client