Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json)
Hash identifier: FpslGpsG8932BXl499OaOjAvw30h2L0IrCRwzEOKzaQ=
Subject key identifier: A7:E4:92:41:BB:D9:C1:AF:32:4A:33:19:B7:1E:95:F7:B9:DC:C8:66
Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Certificate serial: 01964C6B57078F5B256B10E263003EA48943
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
Manifest number: 14FB
Signing time: Sat 19 Apr 2025 05:00:25 +0000
Manifest this update: Sat 19 Apr 2025 05:00:25 +0000
Manifest next update: Sun 20 Apr 2025 05:00:25 +0000
Files and hashes: 1: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: XSvv1sIz5VA34d4m6/054fSPog4xouK61peBhkiThJs=)
2: meyQlZ2V2fFm7jP19tS1SnwZU8o.roa (hash: Rjzn7WIqlB0uqbC7++KFiY3Pm+Td1rmouk6fxkElj30=)
3: u8p2k1kowabt5V010HcHbUdny4A.roa (hash: +zIIZMzEVP0HgE88S7aeA3JokmowyYpTKNzs1+R3c2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:57:07:8f:5b:25:6b:10:e2:63:00:3e:a4:89:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Validity
Not Before: Apr 19 05:00:25 2025 GMT
Not After : Apr 20 05:00:25 2025 GMT
Subject: CN=a7e49241bbd9c1af324a3319b71e95f7b9dcc866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:cc:6c:dc:c2:ae:0c:de:4e:de:c9:68:1a:6f:
e4:e8:96:97:6b:33:2f:b0:72:7b:2a:2d:c6:15:ab:
1e:de:4a:0d:f8:02:5e:1b:ed:bd:08:47:18:cc:e0:
0b:bb:ad:83:f7:1e:b7:ed:b0:9e:7e:d0:1d:68:54:
59:e9:45:fd:bc:c3:4f:cc:73:02:bb:44:e6:39:46:
57:9e:b7:f8:c9:72:28:0c:2e:0c:3f:0b:c0:01:ea:
c3:f4:23:97:da:7b:38:ae:93:43:b7:fa:b1:f2:ce:
df:b2:51:84:47:b8:0b:4d:02:7b:72:cf:3e:5a:2e:
47:8a:ff:a2:7f:4a:a1:b7:1f:90:ee:75:f1:ad:56:
b8:f7:85:8f:e2:7c:5e:f7:8b:44:36:c4:56:2a:c3:
e5:9b:40:cf:35:3a:0f:50:cf:71:d0:66:b1:f3:48:
22:71:47:4c:b0:60:49:00:f4:d7:17:e9:37:2d:3e:
67:a2:6e:ee:cd:08:71:b2:71:c4:1f:91:86:9e:b6:
6b:32:38:13:49:0c:f6:cc:42:69:92:64:29:3e:dc:
01:64:ec:68:68:bf:06:9b:ed:e9:6c:d9:18:67:e4:
7e:bd:94:1f:15:a1:57:e1:c0:ce:8e:6c:c7:d4:52:
2f:5d:c1:f0:b3:17:11:7d:a0:ef:81:56:9e:8e:54:
3a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E4:92:41:BB:D9:C1:AF:32:4A:33:19:B7:1E:95:F7:B9:DC:C8:66
X509v3 Authority Key Identifier:
keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:ea:78:96:53:51:24:7c:f1:ed:eb:5a:0f:03:b1:fa:c5:b1:
04:df:c4:aa:e7:4e:cd:fe:72:51:56:2c:47:79:32:df:26:5f:
5d:91:3c:f9:8f:87:79:61:e9:3e:e0:9c:db:5d:df:f7:70:99:
b1:e7:9b:df:dd:1c:ad:76:4a:7a:19:3e:c5:e7:76:a9:59:a4:
05:64:2f:37:28:bb:da:a4:5d:ab:ac:47:65:99:4a:a7:02:58:
f3:05:e7:9b:2c:6e:7d:cf:c0:cc:12:d4:a7:11:08:d7:63:0a:
df:a7:9d:e5:37:6b:81:2b:04:19:14:10:c9:9e:60:a0:40:13:
43:71:63:f2:73:e0:be:69:db:1f:96:1c:0d:d1:f9:0d:38:ac:
41:79:e6:0b:bf:0d:4e:fe:e3:56:b6:ae:50:73:f2:6c:95:87:
7e:29:05:d5:3b:3b:f9:97:79:20:81:0b:6d:12:7d:67:00:30:
b7:ef:ed:e0:e7:a7:e9:5f:eb:77:6b:79:c0:eb:3b:32:ad:a7:
fa:67:3d:c7:3b:a7:ec:32:8b:8d:63:d5:79:48:9b:b3:6a:46:
ed:fa:ba:f5:86:c1:65:69:cb:f7:04:3e:bd:7c:c6:7e:cc:6a:
8c:02:a1:48:1d:69:6e:68:03:dd:5e:ff:a1:e9:86:a4:04:36:
d0:0f:20:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:17:45 2025 by rpki-client