Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
File: oJRwOdnwgKQn91JcXQZvbPYhNPM.mft (raw, json)
Hash identifier: Xg4dbr4eTNDS5yXVkl/J0Rd1SVOujOi8d3shaRPDPlA=
Subject key identifier: C2:33:10:52:3B:FB:59:E4:81:DE:EE:F3:82:29:E6:D0:5D:81:74:96
Authority key identifier: A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
Certificate issuer: /CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Certificate serial: 01964D105F89846E76303EA184690F961FB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
Manifest number: 0674
Signing time: Sat 19 Apr 2025 08:00:40 +0000
Manifest this update: Sat 19 Apr 2025 08:00:40 +0000
Manifest next update: Sun 20 Apr 2025 08:00:40 +0000
Files and hashes: 1: 2CUF8fkBOk7BwaT2x7tRMW9KGPA.roa (hash: czarYHJez6qAV6nXVQK9tcHYXpAXKKAJjoacYgptlzg=)
2: oJRwOdnwgKQn91JcXQZvbPYhNPM.crl (hash: +6klzw+M4kLghfulWMHfH7T4niXe95GGPIiGc8efnzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:10:5f:89:84:6e:76:30:3e:a1:84:69:0f:96:1f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Validity
Not Before: Apr 19 08:00:40 2025 GMT
Not After : Apr 20 08:00:40 2025 GMT
Subject: CN=c23310523bfb59e481deeef38229e6d05d817496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8b:94:85:b2:ed:6a:f8:44:99:b7:81:c6:2e:
55:25:05:f2:cc:31:a0:35:06:b7:68:bc:23:a1:66:
40:18:2b:b0:10:eb:0f:00:95:94:12:b7:6c:4f:44:
af:56:00:04:d9:f8:81:75:cd:e4:96:45:90:64:6b:
22:cd:2a:a4:65:7e:e9:8c:db:a3:13:ff:ad:c2:3a:
56:cd:7e:38:6a:04:18:b3:bf:58:73:09:ac:b1:b3:
61:2a:05:9b:ea:eb:b8:13:6d:9d:26:a9:fd:4a:ce:
28:be:95:1f:d7:7d:c7:34:09:42:85:d3:c2:ca:df:
75:44:b3:b1:6c:1a:6b:7c:f0:1d:6a:00:86:86:ab:
19:30:48:af:8e:9f:1b:82:73:7e:0b:cd:b5:e8:43:
1a:89:23:13:97:f2:4a:07:30:df:a9:21:ea:b8:6e:
b7:ca:e2:42:93:1d:f1:49:85:b5:5e:60:ec:3a:6f:
13:87:46:cf:8d:76:84:a7:56:e5:30:47:01:a2:c6:
a1:9e:8f:62:16:7a:96:da:20:1d:9a:c5:d2:88:61:
fb:33:d6:a6:04:15:f5:88:17:3d:7f:94:1e:f1:a4:
c3:28:ae:8f:ef:05:e7:5d:a1:b7:31:fa:79:3a:92:
28:98:d2:b1:8b:4f:53:f7:68:70:09:9d:22:41:90:
e9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:33:10:52:3B:FB:59:E4:81:DE:EE:F3:82:29:E6:D0:5D:81:74:96
X509v3 Authority Key Identifier:
keyid:A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:c3:87:6b:bd:eb:b6:a3:08:67:ff:5c:db:6f:cd:c0:21:dd:
ba:39:c2:a8:32:46:ec:e4:0f:96:72:16:71:65:8b:de:44:7d:
73:d4:62:96:d5:bc:54:a9:3b:71:01:ba:1b:a7:42:9b:9a:3c:
68:20:a7:07:61:e1:be:ce:e7:f2:c5:f5:bb:bf:2d:29:1f:df:
3f:ac:5a:1a:90:98:e9:ed:01:bc:32:65:c8:19:c2:c4:6e:83:
5b:f3:87:87:67:69:d6:11:64:5d:9a:f8:b5:57:29:88:8f:7d:
fa:91:7d:10:10:af:4b:f9:30:86:bf:62:f2:1f:3c:e0:4a:0f:
20:01:5a:3d:b7:e5:eb:a8:39:b2:54:c3:c5:a9:5d:9c:8a:25:
7f:bc:77:cc:95:b9:55:de:ee:a8:1e:b1:1c:64:7d:49:a4:b2:
25:41:d5:37:4f:09:84:b1:41:d2:1e:cc:b6:51:8d:25:2d:9d:
82:03:4d:91:4e:cc:86:98:2b:e0:0c:b4:4a:b9:aa:c3:ae:81:
01:2f:5e:dc:64:70:7e:ae:61:a5:94:0b:25:58:a2:23:b3:57:
30:19:ee:36:67:1c:f0:5f:48:0c:82:f9:9a:0f:11:db:e8:5f:
d0:78:bb:ee:14:8c:3d:3f:4d:01:04:75:8f:39:2e:48:dc:f8:
65:87:ea:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:10:26 2025 by rpki-client