Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
File: oJRwOdnwgKQn91JcXQZvbPYhNPM.mft (raw, json)
Hash identifier: gDdSD6p9ARcIsYduPdgCioZ8W00kVQipo3kX7NGSlZk=
Subject key identifier: 07:B4:AF:00:A4:26:D4:81:75:F8:D2:71:D9:A1:2D:2E:A0:72:F7:D9
Authority key identifier: A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
Certificate issuer: /CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Certificate serial: 01958BF223B78ACAA5812F3F8F38DEBE0226
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
Manifest number: 0610
Signing time: Wed 12 Mar 2025 20:00:56 +0000
Manifest this update: Wed 12 Mar 2025 20:00:56 +0000
Manifest next update: Thu 13 Mar 2025 20:00:56 +0000
Files and hashes: 1: 2CUF8fkBOk7BwaT2x7tRMW9KGPA.roa (hash: czarYHJez6qAV6nXVQK9tcHYXpAXKKAJjoacYgptlzg=)
2: oJRwOdnwgKQn91JcXQZvbPYhNPM.crl (hash: or+qnlyxmSzCMtGIo47wdEu8EWwm/wt6vuOpVbdiO8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:23:b7:8a:ca:a5:81:2f:3f:8f:38:de:be:02:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Validity
Not Before: Mar 12 20:00:56 2025 GMT
Not After : Mar 13 20:00:56 2025 GMT
Subject: CN=07b4af00a426d48175f8d271d9a12d2ea072f7d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d2:4e:05:19:39:8f:b3:1b:fb:e9:d6:9f:f4:
73:2e:2d:8e:9f:3d:12:32:5a:c8:9d:70:89:f9:a7:
cd:8b:e4:fb:ea:f4:36:53:1f:75:68:60:ae:7d:d7:
3d:c8:25:2d:a0:b0:1f:d5:d4:f2:68:13:85:37:74:
d1:97:5c:b9:7b:25:fa:71:c9:ad:eb:10:89:be:2a:
04:c6:92:dd:4d:31:98:db:3a:30:8a:97:ab:a1:a9:
d9:65:11:76:5d:b0:73:d9:2d:4f:26:0f:5f:f4:85:
60:d0:5e:31:ce:57:59:fd:83:ea:9c:e6:73:2d:d1:
64:ca:72:4c:a5:22:cb:2e:7b:4e:08:75:03:75:b6:
27:05:41:ca:61:77:79:65:a9:70:98:24:57:bc:d4:
e7:4d:93:59:6a:bd:b4:00:98:9b:08:ee:13:fe:6c:
5f:dd:4f:5a:39:99:68:59:e0:6f:1d:6f:07:17:46:
16:1c:34:a9:c9:cb:d2:33:44:f7:fa:a1:d4:78:fd:
a7:e8:27:20:ac:01:08:14:ec:20:bd:37:a5:bd:29:
bb:c2:d4:18:a2:e9:b6:58:92:48:36:d3:25:7e:e8:
5d:54:0a:9e:47:b7:68:e8:78:b5:f9:37:d4:8f:91:
6b:37:39:c1:29:be:30:0b:d7:01:9d:f3:82:39:f3:
4f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B4:AF:00:A4:26:D4:81:75:F8:D2:71:D9:A1:2D:2E:A0:72:F7:D9
X509v3 Authority Key Identifier:
keyid:A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:99:ba:8c:21:5f:cf:e9:c6:5e:85:6b:3c:2a:04:30:43:46:
3e:b3:12:f8:cf:fb:ff:1e:1e:1c:aa:cd:af:b1:ac:ae:d0:a7:
0b:0e:f3:0b:6f:5a:04:0b:2e:69:b7:51:da:98:26:08:57:7c:
91:c5:48:f0:e2:4e:5d:a1:2f:c3:7f:de:45:9c:31:23:22:03:
73:19:85:b2:a9:70:e8:fb:32:8a:e8:d0:14:fc:48:49:77:8c:
6e:bf:63:1a:ed:f7:88:8b:44:74:92:cb:4d:83:d0:e2:6b:f7:
24:93:e5:21:c6:f4:f2:84:fc:65:88:4e:21:c1:f5:70:c1:c4:
91:78:e4:2e:04:2d:69:8d:49:6e:22:a0:89:bb:5c:d2:5b:73:
aa:42:46:a3:af:c4:87:a8:dc:ab:89:ea:b1:95:4f:f1:d9:10:
56:1c:46:92:ba:34:44:2e:7f:69:40:f8:f6:87:85:c6:48:b6:
f4:3f:9d:4e:7c:fa:b1:fa:d6:aa:28:09:b1:89:0f:5a:4c:37:
8a:0b:4f:93:a9:65:64:2d:de:0f:6f:46:4b:bd:9c:08:fc:b8:
32:24:57:f0:f8:b5:5b:04:3b:bf:5a:6f:7f:de:9e:fc:c5:fa:
fa:f1:1b:96:c1:4b:8d:4d:fc:49:07:11:6a:6c:df:19:45:e7:
cf:19:30:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:10 2025 by rpki-client