Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: M8EnnVcHGVLLqaMpuMMYQpoiZm/40zX5lHolckbcaF8=
Subject key identifier: FF:C6:90:C4:88:3F:AD:D4:17:19:D9:57:84:78:10:6E:AA:D3:58:A8
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 019610C4C8D75326CAF3054D00CECEF93356
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0B17
Signing time: Mon 07 Apr 2025 15:00:53 +0000
Manifest this update: Mon 07 Apr 2025 15:00:53 +0000
Manifest next update: Tue 08 Apr 2025 15:00:53 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: UCLsosXABw/yHREGNTnmg/hBzxvW7O5MbaZkHtKHmXw=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:c4:c8:d7:53:26:ca:f3:05:4d:00:ce:ce:f9:33:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Apr 7 15:00:53 2025 GMT
Not After : Apr 8 15:00:53 2025 GMT
Subject: CN=ffc690c4883fadd41719d9578478106eaad358a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a5:4c:49:f8:54:72:07:8a:70:ba:17:66:18:
24:26:ac:8c:dc:85:87:cb:96:99:12:5f:7d:d7:92:
91:fb:50:fc:c0:ad:66:cd:5f:38:c2:01:b6:2a:a9:
d9:df:1f:7b:3b:40:d6:3e:18:43:97:e7:6b:31:ad:
24:4f:4c:0d:ec:3f:b5:2e:56:d5:31:af:d7:f0:d9:
97:ec:55:cc:1d:8a:2f:02:e7:36:80:8a:b4:c5:55:
f2:11:22:07:de:da:aa:3d:82:b0:6e:87:83:84:cb:
f9:1c:73:cd:21:b3:eb:a9:be:a6:e4:2f:0b:8f:68:
f9:34:f4:74:bc:97:f9:36:b5:9f:89:97:38:39:aa:
f9:03:fd:8d:f0:7c:51:21:10:8c:53:4e:25:89:5c:
ad:46:32:0b:39:54:15:dc:c8:bf:a0:b6:b3:7f:bb:
1d:c4:9e:cc:f9:ff:93:7f:68:bc:6b:c4:11:99:aa:
dc:c6:84:8f:06:91:8b:cc:46:5c:80:85:56:7d:94:
8e:e7:2e:59:d2:1b:35:c8:6c:82:67:b8:6e:82:99:
8c:9a:92:72:c5:a7:08:d3:b2:aa:7c:01:62:7e:9b:
a4:d2:81:d7:f0:cf:f8:20:b1:bb:f9:9a:02:de:4c:
45:9a:ae:33:71:e2:f3:97:6f:89:bf:0c:e4:7a:8f:
40:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C6:90:C4:88:3F:AD:D4:17:19:D9:57:84:78:10:6E:AA:D3:58:A8
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:72:80:41:86:bd:8a:1f:e9:e1:3b:15:6f:f2:b4:12:15:5b:
39:5e:82:0a:0b:b4:01:5b:9e:ad:22:58:c1:68:88:52:c9:16:
05:32:83:a4:cf:81:2d:d9:93:ac:f0:d8:1c:b9:7f:14:75:80:
81:2a:9f:7d:57:e6:4b:81:bb:7b:f3:97:5e:82:6f:95:18:2f:
e7:97:d5:05:00:86:9d:86:39:42:ef:2e:86:1f:07:03:a2:17:
03:4e:79:f6:b8:8f:3c:2a:26:25:25:e6:8e:b6:f3:5e:8e:4f:
76:28:3e:6d:45:c2:ed:91:c7:1d:ea:4f:ef:82:71:bd:48:05:
c2:21:b3:47:49:8c:87:da:30:fe:3e:5a:24:87:02:82:c8:9d:
3c:6b:03:41:b8:fc:26:f1:84:dd:75:65:32:d6:e6:02:99:8f:
38:ba:28:b7:47:b7:cf:3b:df:3f:66:0b:27:55:d4:e6:2b:57:
0d:a8:80:aa:5d:95:9d:28:62:7c:94:d6:0d:ec:2a:8b:c5:d5:
8f:71:1d:56:eb:91:d6:c4:26:6e:03:55:ae:c2:6b:cc:6f:51:
09:49:7b:3e:80:30:06:0d:2d:c8:49:f2:69:dc:4f:19:5a:02:
7e:02:4f:35:bd:ad:b0:7a:c6:88:8b:dc:d3:a3:88:6b:72:1e:
44:07:b0:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:07:29 2025 by rpki-client