Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json)
Hash identifier: r3LTUFyp7grR+z34c3H0DlRUrGPskVj0SGsBtoK9xus=
Subject key identifier: 75:F9:5D:71:9C:48:9F:B4:CE:D4:FF:D1:AF:CD:33:7F:68:4D:ED:8E
Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Certificate serial: 019613FD9225D10FD20A67C1A7123A2D3555
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
Manifest number: 0468
Signing time: Tue 08 Apr 2025 06:01:47 +0000
Manifest this update: Tue 08 Apr 2025 06:01:47 +0000
Manifest next update: Wed 09 Apr 2025 06:01:47 +0000
Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=)
2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=)
3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=)
4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=)
5: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=)
6: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=)
7: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: CnpGfYo/5KbaBbYOF+L2OGdjRlyD9C8frNOpzIaLzu0=)
8: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 06:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:13:fd:92:25:d1:0f:d2:0a:67:c1:a7:12:3a:2d:35:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Validity
Not Before: Apr 8 06:01:47 2025 GMT
Not After : Apr 9 06:01:47 2025 GMT
Subject: CN=75f95d719c489fb4ced4ffd1afcd337f684ded8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:63:02:40:e2:f7:17:8b:dd:38:7a:19:0f:64:
2c:2b:f4:f3:ae:2e:ca:b4:44:47:e5:8a:e4:8c:04:
09:31:76:f6:a6:fc:76:87:a8:33:2d:b4:71:64:2d:
1e:5c:a4:44:91:8a:e2:8b:c7:33:43:a4:cd:3b:2d:
4a:17:a3:bd:f7:74:c8:5b:02:11:2b:c2:eb:4c:2b:
8a:34:12:25:8e:a7:ee:9d:19:ce:a4:89:09:55:b8:
14:92:3b:02:31:5c:7c:56:da:10:1d:57:34:1d:27:
2f:66:e9:63:b6:f7:b6:65:27:91:a5:6d:81:0b:27:
66:7a:28:a8:0e:3a:39:8c:7f:b8:95:09:76:5b:68:
a3:76:64:05:75:9f:70:c4:3e:4b:e3:6f:07:94:3c:
5b:24:d0:50:3c:91:24:99:cf:ed:76:2b:2f:5c:12:
7d:5d:67:b6:43:ba:6e:2f:3f:8f:1c:fb:c8:8f:31:
54:2f:3c:9f:cb:35:2a:0a:75:83:9c:3b:a2:95:c5:
97:75:2c:e9:42:14:9e:30:ff:45:57:2d:3d:b7:f3:
ae:67:59:6b:70:e3:05:0b:1e:72:95:92:b9:22:ab:
bc:ea:f5:18:de:fd:83:6b:60:c6:42:6a:10:cb:85:
9a:cc:98:67:e7:60:0d:ea:a6:e6:17:6e:76:2d:19:
6b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F9:5D:71:9C:48:9F:B4:CE:D4:FF:D1:AF:CD:33:7F:68:4D:ED:8E
X509v3 Authority Key Identifier:
keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f9:6c:f1:3d:09:98:79:5b:e2:f3:71:e3:61:99:62:8f:ee:
8f:38:a7:10:15:b3:51:0d:a8:9f:f5:c8:55:5b:4f:86:ea:1f:
7f:fa:d9:a0:d2:1f:ae:49:99:60:f9:8d:73:39:9d:1f:0f:e0:
d9:cf:dc:22:26:cc:6f:32:bd:09:e6:73:6c:e9:67:f0:71:cb:
9c:68:6c:a7:28:5d:99:b0:23:28:04:9a:0c:a1:9a:3f:74:5d:
06:45:35:cf:84:ff:a0:51:14:b4:ac:1d:18:91:6a:cd:9e:e0:
0d:58:ba:20:a9:78:2d:fc:0b:da:66:a9:04:e2:b6:3e:92:52:
7c:ad:ab:85:a9:54:16:3a:6e:ef:c1:b8:b0:c8:61:8d:0a:e0:
b2:1c:dd:bf:e3:be:6f:ce:37:06:e3:a9:7d:7d:a5:28:2f:60:
5c:04:33:ff:9f:ef:4c:1c:f2:98:62:2a:4f:03:4e:6d:1c:de:
65:81:b1:63:f9:94:66:6b:78:c1:a5:04:f0:b9:b6:6b:08:65:
0a:86:f1:85:bb:77:a8:69:e1:3f:20:9f:d7:70:4f:36:54:ca:
b3:3b:87:b3:4f:61:b9:a2:f8:f3:ea:f0:ae:56:bd:ce:30:cb:
44:50:ee:15:00:74:45:7d:88:d4:3d:35:3a:c4:55:64:a1:8e:
0b:fe:26:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 12:20:58 2025 by rpki-client