Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
File: OitQeZsxwLFFEkZQ1xG844PWcDk.mft (raw, json)
Hash identifier: JknQRrdl9qVWb40bzyAm/sQlt20O20/FUORhgkH2tqE=
Subject key identifier: 81:4B:21:98:7F:50:E5:E7:CA:5D:A3:02:B4:DE:F6:2C:C2:FE:7F:9A
Authority key identifier: 3A:2B:50:79:9B:31:C0:B1:45:12:46:50:D7:11:BC:E3:83:D6:70:39
Certificate issuer: /CN=3a2b50799b31c0b145124650d711bce383d67039
Certificate serial: 01964CD977F79AD134B75BFC7D9DF9AFD111
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
Manifest number: 094B
Signing time: Sat 19 Apr 2025 07:00:42 +0000
Manifest this update: Sat 19 Apr 2025 07:00:42 +0000
Manifest next update: Sun 20 Apr 2025 07:00:42 +0000
Files and hashes: 1: OitQeZsxwLFFEkZQ1xG844PWcDk.crl (hash: wRdoYtgprGaO2qk8pmQn/BVlORkIUoXevuvAyAKkgVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:77:f7:9a:d1:34:b7:5b:fc:7d:9d:f9:af:d1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a2b50799b31c0b145124650d711bce383d67039
Validity
Not Before: Apr 19 07:00:42 2025 GMT
Not After : Apr 20 07:00:42 2025 GMT
Subject: CN=814b21987f50e5e7ca5da302b4def62cc2fe7f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:04:9c:c0:08:08:45:c0:c4:1c:ec:be:55:c2:
b4:d4:62:29:2d:b7:bb:53:a6:bc:e3:42:03:48:4f:
7c:af:4c:70:70:00:29:66:40:6b:1a:a2:e0:5d:70:
37:af:ea:70:7d:30:00:bc:3d:02:b8:47:07:f0:34:
66:7c:bd:d3:92:d0:21:ff:9c:be:7e:f5:11:b6:c0:
15:6b:07:aa:a6:a8:e2:73:5d:87:57:0a:5a:8b:6d:
a2:b4:8f:06:ed:fb:e6:18:59:43:b3:46:2a:af:c5:
90:0d:d3:93:78:7d:b8:7b:ad:93:81:10:39:2a:94:
74:4b:62:44:ff:64:56:1a:c5:15:4e:e2:ce:87:90:
03:5d:a3:34:d7:72:75:fd:0b:52:04:7a:a9:fc:1d:
49:f7:11:4a:70:19:6d:ab:37:5d:3c:fc:79:bf:4c:
7c:d8:c9:1f:2f:4d:18:34:be:19:02:0c:dc:b6:f8:
31:58:61:44:ef:bd:68:37:ad:74:2d:df:45:bb:33:
d6:b0:59:88:4b:38:65:15:b4:30:b8:cd:d6:fd:e2:
e4:b8:11:53:dc:b4:b6:3a:a2:0b:14:8b:7a:af:75:
a0:05:d6:5b:87:d1:77:74:6b:55:a3:05:c6:6d:c9:
19:cb:a1:5d:33:a1:f5:7f:9e:ea:52:f1:5b:7e:eb:
54:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4B:21:98:7F:50:E5:E7:CA:5D:A3:02:B4:DE:F6:2C:C2:FE:7F:9A
X509v3 Authority Key Identifier:
keyid:3A:2B:50:79:9B:31:C0:B1:45:12:46:50:D7:11:BC:E3:83:D6:70:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:d4:b7:f1:8c:43:05:7f:cb:bf:98:78:63:2b:99:93:3c:48:
ac:dd:7d:08:3c:ea:a3:bd:c0:44:01:1d:b6:dd:3e:28:9b:d6:
b9:61:26:62:97:ba:67:ec:6f:eb:5a:80:6e:7b:d1:dd:05:5a:
54:e9:52:5d:58:39:13:f0:21:4d:71:9e:63:dd:e1:70:a0:5f:
45:34:35:75:4a:f0:5e:c0:18:7e:ff:1a:31:9d:97:da:48:97:
8c:7d:18:46:6a:23:1c:4a:c9:cb:1e:f9:90:98:da:85:09:c9:
c1:b0:a9:e3:c3:6b:01:68:11:e1:af:44:2f:c8:77:0f:36:e1:
4b:70:6b:52:03:d6:f9:e9:25:66:da:62:8c:66:ed:37:36:5b:
9a:b8:54:08:11:31:59:1d:20:6a:26:48:5d:90:8d:68:c0:fd:
88:0d:47:d1:ce:11:93:f7:c0:bd:ba:3b:da:00:55:82:d0:35:
77:18:98:6e:10:92:c8:a4:35:37:d5:4c:c7:a9:4c:24:06:0b:
88:0c:3b:7b:5c:e6:bd:ca:cd:5c:c2:c9:f1:fb:1d:97:66:0a:
a2:2b:7e:c4:ae:08:f9:e8:4e:f7:c8:0e:67:e4:80:c4:75:1b:
ef:6c:2c:23:9b:9f:1c:95:8d:44:ec:37:19:80:b2:b2:d8:93:
71:3a:ee:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:38:58 2025 by rpki-client