Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: t2VY2ow/CbkyZLYyC+Jk6pZwd9v13gT03RMbF+LBGlk=
Subject key identifier: 7A:1B:03:11:3C:3F:7D:20:18:3F:51:12:17:43:DC:05:20:84:2A:8F
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 0196409E92EB909F460F6F0B98F287C4769C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0CE7
Signing time: Wed 16 Apr 2025 22:00:56 +0000
Manifest this update: Wed 16 Apr 2025 22:00:56 +0000
Manifest next update: Thu 17 Apr 2025 22:00:56 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: bWlcsCyuREJVDs4zzKa7l9oTztH2oS/HXwmmPc8OKYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:9e:92:eb:90:9f:46:0f:6f:0b:98:f2:87:c4:76:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Apr 16 22:00:56 2025 GMT
Not After : Apr 17 22:00:56 2025 GMT
Subject: CN=7a1b03113c3f7d20183f51121743dc0520842a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d9:c2:7d:bd:36:02:73:b8:32:b7:e0:6b:b3:
18:c7:5e:15:e6:3a:71:b4:9a:e4:13:00:dd:a1:b1:
6d:19:37:31:d1:18:e7:fb:ee:8b:39:8a:b2:46:8a:
a4:d0:23:ed:e5:bb:51:40:1e:1c:b6:3e:93:db:e8:
52:c8:85:28:7b:77:7d:3c:3d:bb:c6:ce:c6:95:3f:
f4:7d:6c:a3:f4:bb:bf:a7:da:ee:d3:1f:84:4f:47:
d7:32:60:12:a5:b4:7a:7a:b4:e7:03:50:e2:5a:80:
ff:36:05:ce:13:bd:7c:b7:05:e1:24:0b:dc:9e:ec:
d9:f1:5f:c1:6f:bc:54:33:71:e5:88:23:bf:cb:a6:
7b:3c:bb:40:48:d7:d4:87:a0:09:13:59:6e:25:bb:
72:b8:4a:42:ad:66:65:47:d5:2d:d5:33:be:13:15:
ea:5c:3a:12:ab:26:12:a7:bc:6e:ad:80:69:73:61:
3d:78:20:81:46:08:10:69:32:47:26:ea:b9:f5:ac:
ea:d6:6c:05:c5:28:e6:6d:e2:a5:98:1f:08:58:78:
b1:b7:64:9a:32:4d:cd:43:c8:35:b1:7b:1b:f4:4f:
48:af:7a:99:fd:ce:92:d1:a1:aa:d7:55:a3:24:60:
e9:cd:69:78:2e:44:d3:3f:a8:92:9f:6e:90:0b:d6:
c5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:1B:03:11:3C:3F:7D:20:18:3F:51:12:17:43:DC:05:20:84:2A:8F
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:74:3d:c7:01:6c:da:ee:db:94:91:4a:4c:28:5a:05:bf:c1:
df:e6:8a:f8:19:fa:a2:a0:e9:df:a4:79:b9:71:ac:95:38:d6:
83:47:3d:64:36:b7:09:12:67:61:9d:28:64:9a:ff:d0:d9:27:
77:c3:07:df:bb:de:00:5f:8f:7c:35:f2:92:a0:d1:2e:8f:ec:
ab:dd:fe:bb:17:49:b9:91:39:2e:39:d7:28:43:a6:6a:6b:b5:
56:86:90:cd:43:3d:a2:cd:cc:d8:36:47:0c:f1:1d:6e:93:16:
db:ba:00:9a:0a:4c:44:80:23:14:ec:3b:7c:33:9e:68:0e:60:
39:f7:e4:69:fb:6f:58:77:e6:c9:63:88:3d:3b:13:de:f5:2f:
70:aa:ef:93:c7:c2:70:dd:5a:5f:bc:a3:29:c1:b2:2d:f7:c1:
e2:5f:00:8c:9c:8e:4e:30:27:2e:a1:27:44:7a:58:d3:52:81:
ac:ca:23:20:a0:2b:cc:29:ba:c3:42:10:2d:25:50:f8:65:c5:
9c:67:92:f8:2a:42:07:9d:b8:ad:e7:36:02:6b:0b:ff:d5:dc:
7d:26:0d:ef:68:fa:91:1f:c6:34:39:1c:89:11:cc:eb:90:1b:
dd:34:ed:75:f7:c7:00:52:df:c4:b4:05:63:10:e1:3d:93:87:
8c:9a:ba:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:24:41 2025 by rpki-client