Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: fT14Eg4SyLrE5Pfy5bV1frfXEQd/WKVEOvCAD6UW6a8=
Subject key identifier: 40:31:AD:59:74:5D:D9:2F:80:E0:F5:20:F6:BD:BB:76:E8:CE:B9:8F
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 0197523422BCB9EB57532996CD3E37528B60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 1511
Signing time: Mon 09 Jun 2025 01:00:37 +0000
Manifest this update: Mon 09 Jun 2025 01:00:37 +0000
Manifest next update: Tue 10 Jun 2025 01:00:37 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: Sf6Puy9fhpXgSwk+fBsAe2ZqJR1aPGLrf7gnaM41ggw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 01:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:22:bc:b9:eb:57:53:29:96:cd:3e:37:52:8b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Jun 9 01:00:37 2025 GMT
Not After : Jun 10 01:00:37 2025 GMT
Subject: CN=4031ad59745dd92f80e0f520f6bdbb76e8ceb98f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6b:60:cf:ed:56:f3:5e:79:8f:6c:0d:f9:65:
a9:35:17:46:87:7f:9b:6b:e9:48:ae:7e:5d:0e:b8:
15:b6:67:ad:f9:85:fe:57:52:13:82:58:02:37:5e:
16:e4:7d:cb:eb:14:92:97:7c:db:b0:3e:56:86:3f:
e6:cc:f2:9d:e5:84:f7:cf:c7:ad:26:32:3b:67:39:
41:c7:87:66:ab:3a:a9:68:27:3f:c4:a8:d8:60:49:
f9:7b:ba:38:7b:d6:fc:14:41:e4:d9:78:66:fb:00:
87:15:53:10:92:17:2d:27:66:7c:7d:d3:e4:52:d7:
c9:a1:be:4b:d0:36:7f:b0:cf:50:52:de:e6:d6:23:
2c:39:62:5a:1c:1d:2e:c2:d0:82:19:e4:7d:c2:14:
97:d2:b9:28:13:25:4d:2f:3a:b3:3b:2b:12:75:97:
09:a4:87:42:21:18:78:c0:d5:67:e5:cb:27:f4:f9:
b2:b2:ea:35:7d:a3:ea:ad:4a:21:52:5e:cd:c8:c7:
85:af:06:6c:a1:3d:f6:09:94:84:55:bb:54:da:bf:
42:fd:11:6b:f0:c4:0f:17:90:e5:2c:92:95:85:61:
32:c1:67:f3:e3:92:bc:10:83:bd:97:f9:48:58:3b:
32:48:d7:1d:18:3c:89:0b:9f:49:02:bf:42:d4:1c:
9c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:31:AD:59:74:5D:D9:2F:80:E0:F5:20:F6:BD:BB:76:E8:CE:B9:8F
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:4e:49:71:db:55:4b:cc:c4:46:01:8c:30:4a:50:dd:37:6c:
ac:37:1f:82:d4:f3:f1:cd:05:86:cf:1c:c2:1e:5e:4c:13:e2:
93:e7:af:e0:41:f3:07:0d:5a:f6:6d:0e:3e:31:e4:ab:12:3d:
c8:f0:74:6d:6a:d5:2a:1b:4c:9e:8b:a7:d5:7a:61:12:b6:82:
6b:67:55:30:c3:dc:d7:59:6b:d2:6f:da:c5:70:23:48:ad:10:
9c:a2:24:be:9c:55:91:93:1a:ca:47:7c:4b:10:82:1a:5a:67:
61:89:a9:87:36:14:ed:9a:fc:7b:fe:12:9d:48:0d:01:62:ef:
6a:51:6a:c9:b7:c0:20:6e:a8:4b:ec:46:41:06:b2:27:e0:c9:
ff:d6:87:3f:43:77:6d:29:81:97:f8:10:f4:5b:9d:06:a9:2f:
e9:27:ec:8b:5f:6a:14:cc:a4:4b:90:82:48:1a:2a:1f:09:dc:
78:31:1a:55:a3:99:31:38:96:d9:b2:7b:d9:52:2d:29:91:42:
81:9d:8f:d0:02:73:2b:1d:b7:c6:5e:ea:9f:26:3e:4b:95:d1:
01:9a:ab:6a:c4:20:78:82:55:68:6b:2e:ae:c9:08:ef:58:31:
02:41:57:7b:ad:47:8e:3f:ee:d6:91:74:7e:c4:e4:1a:7e:bb:
53:68:b0:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:08:30 2025 by rpki-client