Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
File: OspQhYoYVv-gLpE1bxQjbnw4uFo.mft (raw, json)
Hash identifier: 1wzyZ8loZ8kbaZKm1zQp5ZqxgWmRS6/mdsvqdz7+McA=
Subject key identifier: A5:A3:CC:A0:0E:F5:41:43:90:7E:78:B7:DD:92:76:B7:48:BF:9A:E5
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 01965DCCE724CAFEF164772AC6A2C8510888
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
Manifest number: 1508
Signing time: Tue 22 Apr 2025 14:00:31 +0000
Manifest this update: Tue 22 Apr 2025 14:00:31 +0000
Manifest next update: Wed 23 Apr 2025 14:00:31 +0000
Files and hashes: 1: 0i27NjvnFtlwbFJL8brWgH_dw8U.roa (hash: YML80PmXT345DJiCwX4apNsJ7UtnB8nEMX5Dpv2Ctsw=)
2: 1kY2nGT8PP1V1pxbzH8gDFZHRGw.roa (hash: pbZtP+N8idLMQTinI/aHUKYzG+cdVac5nacfjqhyPdo=)
3: OfxxmNtzJcdCBkWeVovM4im8aiY.roa (hash: WRZK3jUR3eiSqkPuuJOy87KYkFs/X19TJQecAHmPTCA=)
4: OspQhYoYVv-gLpE1bxQjbnw4uFo.crl (hash: pzLXIz9HJqN/Ty9HUGtrkUGHBGpYFwjz/RGdCPex0cI=)
5: ct0UdU9tbjVu5vnRCDtuTGBSo4c.roa (hash: 2wetSh/WjuBgx0H+sbj7Aow3E9vqoUt+MG+BDwetShE=)
6: pZwUUb6x4Lez1tW_jvxd_X_PyY8.roa (hash: weF+c7Ta8anbMKz4f67ACPq7m1FTdbmyMymH/ZhAy3g=)
7: vFVZ9av3BvQ-ws_7EVciDYDt6Rw.roa (hash: 1s2dWFQ6yIEmp8FiTPqLYuMVpLoqmko/eqoHIt276/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:cc:e7:24:ca:fe:f1:64:77:2a:c6:a2:c8:51:08:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: Apr 22 14:00:31 2025 GMT
Not After : Apr 23 14:00:31 2025 GMT
Subject: CN=a5a3cca00ef54143907e78b7dd9276b748bf9ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5e:57:75:b9:81:7f:2c:3b:2f:a7:a4:27:76:
ae:8e:62:31:af:5a:d5:8b:dd:8a:0f:c2:9b:52:39:
ac:82:ca:ab:8c:e6:b3:41:51:9e:1f:a1:9f:03:a7:
96:47:b0:40:4a:bb:7f:de:59:31:d9:42:77:59:79:
9e:f6:87:ca:5d:5a:09:3c:b3:d8:5f:17:60:65:ec:
0b:ce:99:8f:78:4f:9b:9e:15:93:0e:4a:5a:2d:5f:
f2:ac:69:54:0b:f2:cb:89:f4:58:80:7e:3a:5f:46:
fe:2b:52:36:9e:ab:10:e9:3e:67:4d:a9:db:b2:e0:
29:63:ec:53:3e:9c:9e:1a:22:34:48:ff:cd:62:a4:
29:a9:aa:ca:d8:4b:26:a0:de:6f:e2:76:2b:99:ca:
ae:44:47:65:c7:69:49:32:0c:0f:87:83:02:36:de:
9c:99:e0:28:17:61:65:8a:9d:97:59:d5:6a:17:63:
88:16:d8:dc:97:99:56:7c:69:36:33:8f:4a:24:89:
09:98:62:f0:f7:f2:bb:79:82:87:60:91:50:8f:8b:
21:56:8f:fb:3b:64:b3:b0:d0:73:e5:68:85:95:91:
72:d5:7e:56:27:99:f6:e1:c9:b2:7e:18:91:8f:07:
3a:e6:5e:5f:58:32:0e:71:ab:9c:0c:eb:6a:de:67:
81:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A3:CC:A0:0E:F5:41:43:90:7E:78:B7:DD:92:76:B7:48:BF:9A:E5
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:24:dd:17:97:fd:4d:c6:32:db:82:e8:4b:09:8d:09:93:88:
cf:8e:59:4e:4a:fc:5d:a7:ce:9c:fa:72:b0:13:a3:7b:5a:4e:
61:5b:9e:d5:f6:0a:58:3c:bf:ab:7d:6c:36:72:12:ee:d9:b6:
0c:bc:1a:bf:5d:67:6a:7b:ea:98:7a:1e:f3:6b:f1:eb:74:bd:
13:9f:93:01:95:06:59:60:2b:91:ac:a0:6d:3f:9e:ac:77:9a:
53:44:e0:dd:6e:a2:3e:d0:1b:81:8c:0b:08:e1:d0:dd:9d:38:
9a:c2:1c:00:76:7b:31:0e:fb:0d:1d:8c:e5:8e:27:44:05:f9:
54:d2:15:81:44:ca:7a:d2:60:cb:82:11:d4:47:06:a4:2c:ef:
91:2b:d4:0b:6e:26:f6:a3:31:65:aa:4f:f2:fd:6b:ce:e5:50:
8b:7c:4d:42:b7:b1:a3:2a:b5:c4:ba:ef:c2:e5:f0:9b:cc:59:
cd:05:bc:73:fc:69:e3:4c:db:76:b3:c3:22:e2:62:b8:fb:7f:
08:c7:d7:80:2c:93:81:52:10:a5:f8:df:d9:cf:03:12:d7:d1:
50:de:92:b9:ee:9a:35:12:7d:91:4c:00:f1:46:32:8a:4d:d4:
bd:62:ff:70:70:20:44:04:39:fd:a6:ea:bb:b5:b6:df:7f:3a:
aa:e9:7c:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:56:52 2025 by rpki-client