Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json)
Hash identifier: 2ub7abRSOAGs3w2GZZ6V0mpWGcW8+3sFrmdb1U981ek=
Subject key identifier: 24:8C:C2:CB:67:38:7A:02:55:A9:03:88:12:D0:0D:A1:35:12:09:24
Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Certificate serial: 01965538AFA71DEAF12C0F623AECCB705543
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 22:01:40 +0000
Manifest this update: Sun 20 Apr 2025 22:01:40 +0000
Manifest next update: Mon 21 Apr 2025 22:01:40 +0000
Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: nWhMpQbpD9endgSQ6YfawF1DzxOObyVvDFRsk0FxljQ=)
2: ZyIu060SPaMWxMQNL4CIeyP46Zk.roa (hash: GVU/SWZQhKij7yAFfd4z7w9wi6LHgd9IcJaXLlSPbVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:af:a7:1d:ea:f1:2c:0f:62:3a:ec:cb:70:55:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Validity
Not Before: Apr 20 22:01:40 2025 GMT
Not After : Apr 21 22:01:40 2025 GMT
Subject: CN=248cc2cb67387a0255a9038812d00da135120924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d7:da:43:f5:27:88:28:50:cd:c1:0c:1d:ae:
9c:d2:55:81:22:cc:39:60:35:9b:37:6d:1a:f1:02:
ca:0b:54:7f:4a:d0:aa:d3:42:91:5d:82:21:b7:5b:
22:06:69:8f:73:e3:ae:de:b3:83:31:f6:02:f1:87:
91:61:56:ad:1b:c9:97:16:bb:c9:64:52:d6:4c:2d:
cf:73:d9:18:58:f6:f5:21:84:8a:45:c9:94:ad:1f:
b6:c6:d2:fe:c7:9b:d4:69:04:90:6b:f7:fd:cf:cc:
a3:c5:67:04:d4:5a:e5:d4:94:cd:2d:26:70:72:a2:
4f:e9:03:4c:87:6f:3e:ce:01:b1:e1:77:5c:16:f0:
88:b9:b9:bb:33:96:06:d0:d4:dc:26:7d:f4:e4:a5:
20:f6:d7:a6:1b:e6:d0:5f:13:18:0f:9b:2a:1f:53:
df:80:3c:36:62:f8:5b:de:4d:83:f2:09:2d:45:6d:
42:58:fa:b0:d6:48:d5:5b:1c:8f:d4:31:be:12:e2:
3e:02:8a:29:c7:93:5e:17:7e:87:26:10:7c:e8:c1:
a0:0e:7c:23:0c:29:47:72:46:5a:ca:73:a4:ae:46:
c5:47:d4:0d:7f:32:53:ab:1f:38:e4:53:49:f4:7d:
d1:11:fd:dc:4f:51:30:6f:91:5b:40:7b:50:27:65:
63:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:8C:C2:CB:67:38:7A:02:55:A9:03:88:12:D0:0D:A1:35:12:09:24
X509v3 Authority Key Identifier:
keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:d2:21:5b:07:ca:0a:d4:e3:a0:34:41:08:0f:72:4f:4c:fc:
18:59:57:3a:7d:0a:26:77:24:58:0c:25:82:51:fe:80:a0:ce:
cd:d1:2b:e7:41:74:72:c3:c7:33:c5:ef:91:e2:6f:db:77:ad:
9d:28:29:cb:87:7b:eb:94:ec:77:d6:28:b3:c3:d0:90:7a:d1:
30:da:4d:3c:cd:b3:27:b5:86:63:7d:ab:94:ed:4c:3c:e4:60:
eb:75:4b:38:3a:a4:fd:bb:77:26:e4:61:10:a4:7b:6c:58:e2:
35:2e:5c:bd:d8:01:df:5e:8a:35:51:e7:99:3d:ef:1f:6a:9b:
9a:e6:de:32:84:34:aa:53:51:08:c4:7e:0a:bf:17:9b:5a:d6:
a0:d5:45:4c:ae:9a:9b:5a:6d:87:a7:05:87:9f:b3:f6:75:a4:
ba:74:fd:43:2e:84:cd:24:0b:c5:62:b7:ae:ae:9c:34:c9:f8:
bf:c9:a1:dc:b0:93:f1:23:57:a6:01:57:85:ad:f8:d0:75:92:
72:03:a8:15:fc:b7:25:31:53:07:d2:bc:f2:fa:f6:27:77:4f:
74:18:17:f7:10:73:b1:45:9a:83:2c:0c:40:03:8f:4b:54:a9:
d2:c1:0f:d8:f0:88:86:f9:b9:b4:28:05:fe:36:50:ce:44:e8:
02:d7:06:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:28:03 2025 by rpki-client