Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
File: oeqN4xzspVgDzzrxTUpyea6ERtA.mft (raw, json)
Hash identifier: 4flXol28pA8YbZK0WdH2W/hiAb1MSRqdO7d85Ve8Ksg=
Subject key identifier: 68:F2:C2:64:B4:B2:C1:07:9B:9B:ED:91:46:B9:C1:5F:3A:F7:F6:D2
Authority key identifier: A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
Certificate issuer: /CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Certificate serial: 01961132B80681174A5B7CF6DB5C8B496C3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
Manifest number: 11A6
Signing time: Mon 07 Apr 2025 17:00:58 +0000
Manifest this update: Mon 07 Apr 2025 17:00:58 +0000
Manifest next update: Tue 08 Apr 2025 17:00:58 +0000
Files and hashes: 1: ZsbPyFKfDnHSbXB5Rdfyon4nTbQ.roa (hash: f+ETlYVDvmS9d48p0ZYmqykWIOKGSt0JzwDEXRuMaVs=)
2: oeqN4xzspVgDzzrxTUpyea6ERtA.crl (hash: 4XVFZBumMCw+uCM7KpqH5aWHRxUqgGCXDiLldtXsxeY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:32:b8:06:81:17:4a:5b:7c:f6:db:5c:8b:49:6c:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Validity
Not Before: Apr 7 17:00:58 2025 GMT
Not After : Apr 8 17:00:58 2025 GMT
Subject: CN=68f2c264b4b2c1079b9bed9146b9c15f3af7f6d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7d:5b:67:2c:ad:64:8e:a4:0b:14:03:3d:1c:
bc:c4:af:d0:0c:c9:54:a2:d2:81:94:2a:a5:e4:f8:
4a:40:fe:f5:e4:01:7a:5e:6d:8a:6f:61:63:c2:a0:
9c:c2:45:0b:6f:a6:7c:fb:68:5f:cf:44:80:f5:03:
7e:54:a6:7d:f5:b5:6b:81:f8:b3:1f:af:19:b8:7d:
d1:4e:24:e6:de:05:b5:e5:34:bc:37:13:a0:3b:d8:
60:29:97:cd:6e:e1:c7:cb:f4:53:45:a9:ef:bd:84:
47:88:52:ca:ef:7a:6b:f4:0f:90:4b:ed:9e:a2:07:
04:8a:f1:b5:a3:bd:1c:cb:e4:27:a6:d0:4e:f1:fe:
7a:f5:5e:05:7b:a3:f4:c1:50:63:26:f5:44:2b:ef:
8b:dc:7a:38:f6:1d:9a:db:cc:ae:32:a5:0d:4a:7b:
63:64:e4:59:5b:51:a2:eb:0d:d4:cc:2f:c3:4b:be:
14:5a:5c:5e:5e:ba:33:2c:f7:69:7b:9a:e3:4b:8f:
9f:8b:81:c7:f6:97:aa:4e:fa:15:ed:09:c4:95:69:
39:b2:6d:59:3e:57:91:9e:a4:43:a5:67:4e:44:80:
e6:5d:56:aa:1a:4a:0e:b7:97:93:16:0e:30:2a:0b:
60:61:46:10:3a:30:50:80:48:59:45:22:33:7f:37:
06:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F2:C2:64:B4:B2:C1:07:9B:9B:ED:91:46:B9:C1:5F:3A:F7:F6:D2
X509v3 Authority Key Identifier:
keyid:A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:67:09:b0:49:92:99:19:f1:e0:23:28:a3:5f:de:e7:9f:70:
69:1a:71:da:2c:35:78:5d:fe:38:5c:af:10:25:20:1b:41:8c:
9b:cc:19:86:d7:4e:1f:95:c7:53:c0:9a:74:34:4e:46:aa:95:
35:d6:79:79:65:ba:16:37:41:ff:41:cc:30:d0:1d:6a:05:71:
27:e9:0f:ca:62:a2:72:85:bd:ae:cc:d3:16:2f:b8:7f:aa:84:
1a:d8:3d:9a:ef:9b:be:54:a8:9c:70:5e:3e:cc:5a:47:c3:3c:
d3:24:4f:d4:3c:e0:b3:b0:2d:5e:fe:ee:8a:1b:81:3f:a3:33:
f9:66:eb:63:af:c6:ed:e4:1e:16:a3:9a:eb:0b:51:0d:41:71:
eb:d5:f7:ce:9a:d8:e3:7a:30:bc:97:ad:f2:c3:a1:be:2b:4c:
26:ec:99:4a:f2:1c:3c:f8:a5:bc:d6:24:ea:74:e0:93:97:25:
28:a1:8c:64:34:99:5c:71:88:36:3e:11:a6:8e:69:f3:89:ad:
ff:3d:6d:4c:9d:2f:ed:9b:59:ca:b8:5a:13:54:34:b5:86:97:
a6:01:6f:4d:3c:41:d2:3f:2a:7b:e7:69:7e:20:71:49:06:b5:
84:76:6d:13:18:bc:db:7a:3d:fd:c1:3d:9e:63:e5:a5:4d:19:
41:50:3c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:17:58 2025 by rpki-client