Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
File: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft (raw, json)
Hash identifier: gknTOaEqLINzooUCHH7amkwd+hWEJF7UA5VESFCCwhw=
Subject key identifier: 0A:23:A0:E6:D4:F1:2F:47:FC:53:64:AD:C7:C6:05:25:BC:01:D0:43
Authority key identifier: 3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
Certificate issuer: /CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Certificate serial: 019651C8B320BFF086B34B6D3DDB89D3F775
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
Manifest number: 13FC
Signing time: Sun 20 Apr 2025 06:00:29 +0000
Manifest this update: Sun 20 Apr 2025 06:00:29 +0000
Manifest next update: Mon 21 Apr 2025 06:00:29 +0000
Files and hashes: 1: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl (hash: rJmx0kn+azwlL3OwQaEEkT1x9NjVKhcFTBvEF4a3vZQ=)
2: hE2ePAizZlQUV6uXdZuzIjMthNQ.roa (hash: +KNuL0RhbzwD+ZdqGTxpdbmElk+6cn62429cYK2AHFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:b3:20:bf:f0:86:b3:4b:6d:3d:db:89:d3:f7:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Validity
Not Before: Apr 20 06:00:29 2025 GMT
Not After : Apr 21 06:00:29 2025 GMT
Subject: CN=0a23a0e6d4f12f47fc5364adc7c60525bc01d043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e4:78:3e:25:2b:c8:48:b6:5a:6d:f7:ec:ac:
db:c4:74:83:2d:5e:68:07:56:25:4d:49:65:bf:7b:
e8:1f:76:af:75:a0:a8:15:5a:a0:a2:da:e0:26:51:
c6:c7:81:62:28:d6:73:eb:6e:a0:6c:6e:77:5a:b4:
f1:9e:33:6c:5d:58:b6:f4:98:37:42:6e:48:2e:72:
7c:13:93:3d:09:62:75:2b:8f:62:b1:f5:6a:0a:84:
03:3e:13:9a:54:4a:ab:ea:1d:b4:19:b3:8a:2d:13:
5f:6f:38:25:eb:ca:48:c0:cd:4d:b3:4d:e9:ad:35:
fc:e2:24:51:de:72:89:08:26:8d:b7:21:f4:10:44:
8b:eb:f0:75:7b:55:b9:2c:ad:11:f6:84:ac:5e:16:
90:bb:1d:b5:3c:4c:d1:ec:1c:37:7f:3d:e8:e0:31:
d7:02:36:e0:e2:69:d9:d6:cf:4f:c0:cf:6b:f7:b8:
51:f3:62:b9:6c:aa:db:17:c7:8d:f7:64:7b:05:9c:
9d:29:04:8e:de:9f:93:e1:5a:33:80:90:ac:86:84:
a0:64:85:a7:e3:fb:35:76:7f:f6:fa:d6:13:bc:8b:
b6:e6:ce:b9:83:f7:19:9a:af:1f:5d:3c:69:65:64:
03:dc:b4:6b:25:c3:32:22:07:bf:d6:c4:32:77:92:
f1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:23:A0:E6:D4:F1:2F:47:FC:53:64:AD:C7:C6:05:25:BC:01:D0:43
X509v3 Authority Key Identifier:
keyid:3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:91:c4:f3:a1:29:b8:e4:1d:68:ff:7e:36:cb:41:88:6a:5a:
7b:f6:4f:81:6b:7d:1e:88:04:36:11:36:7f:18:91:30:e1:45:
3c:00:eb:21:26:ad:99:b3:bb:0e:22:ef:8f:6c:97:8e:f5:ad:
c0:86:db:e4:ff:d1:62:3a:86:4e:a1:8b:ed:31:e7:16:8e:12:
87:88:e8:71:09:a9:70:2f:72:a8:23:85:fa:93:a1:04:07:82:
87:57:d4:40:ec:2c:14:33:2a:5c:f0:26:a1:8e:a6:b1:f5:63:
25:c5:d2:c2:47:16:61:96:1b:cc:ef:4b:e4:ec:22:a8:b8:96:
05:a1:f4:af:01:f4:a5:da:a4:f9:61:04:9a:5e:c2:62:6e:0f:
69:88:b3:73:ab:3c:d6:0e:f8:04:b4:ae:fc:3e:94:34:c1:76:
45:63:d3:9e:64:f9:bf:94:10:c0:68:ff:27:4c:6b:4b:cb:2a:
46:bb:7d:a1:ac:e3:8d:4e:be:84:d1:a5:21:6f:d0:0b:bc:9b:
4c:4c:cc:37:41:51:e5:42:0e:c2:b5:da:b7:70:30:fe:81:43:
f2:8c:f1:b7:2d:2e:c4:d8:1b:3c:6e:b6:9d:5f:cc:b7:87:46:
18:6a:45:e9:7b:dd:de:07:eb:22:a2:5b:96:0f:57:38:1c:bc:
8d:55:70:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:55:33 2025 by rpki-client