Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
File: oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft (raw, json)
Hash identifier: HeE9BeW5F/dzOzptquQB4KYeDUL3UXGvhNaGhy1wo9E=
Subject key identifier: 44:DB:78:18:29:6E:A0:9E:B5:0F:6B:74:58:0F:11:6F:AB:46:29:A0
Authority key identifier: A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
Certificate issuer: /CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Certificate serial: 01965FBB965A29E73E05849635AA43FB8EC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
Manifest number: 0348
Signing time: Tue 22 Apr 2025 23:00:51 +0000
Manifest this update: Tue 22 Apr 2025 23:00:51 +0000
Manifest next update: Wed 23 Apr 2025 23:00:51 +0000
Files and hashes: 1: WacUruZTE83WEEePnyB3KKF0YFU.roa (hash: IGW0uLOK6yIPDXD8+jDEju++6EJZMklynz//i9x70Jo=)
2: oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl (hash: xJPQPjldAVDR8qy9CyqqzUY3KUrXurD2oJ9TgN3jZyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:bb:96:5a:29:e7:3e:05:84:96:35:aa:43:fb:8e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Validity
Not Before: Apr 22 23:00:51 2025 GMT
Not After : Apr 23 23:00:51 2025 GMT
Subject: CN=44db7818296ea09eb50f6b74580f116fab4629a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:7a:77:6e:1f:4c:44:ff:1d:42:99:7b:d1:9b:
c1:6b:94:47:43:91:4f:cd:9a:91:63:24:3f:28:89:
7f:4b:d6:a8:d8:9f:79:6c:33:ab:c5:df:2d:4e:fb:
3a:75:0b:54:e2:5f:7d:4e:a2:ee:8e:1a:6c:b3:bc:
ab:55:0d:37:0f:fd:94:82:fe:2e:ca:b6:3f:be:ab:
06:be:3c:ce:67:ac:ca:4d:88:be:9a:6b:d2:58:24:
23:e6:7b:30:63:98:0e:7a:8a:08:4a:57:87:c6:ca:
b4:25:14:52:d4:c4:40:78:29:f1:f4:5c:ed:59:55:
ec:7b:d7:eb:b2:e0:93:ea:8c:2a:2a:da:92:24:08:
4e:f6:c3:42:3e:fa:83:a4:cd:2a:ef:db:10:87:33:
d0:95:05:47:ba:6c:b6:78:b3:60:f6:7e:5e:08:8f:
91:9b:ba:7e:26:61:f4:13:aa:dd:f5:3f:9e:2e:37:
56:2f:ec:5d:56:2e:2e:99:9f:bf:3c:ef:08:a5:48:
19:0a:a5:f1:d4:21:e6:a3:06:3f:e3:38:72:00:09:
1c:cf:df:09:c0:95:06:1c:ad:a0:ff:77:f8:81:e4:
05:8f:92:3b:56:b0:fd:5f:f9:ab:16:02:de:17:70:
4b:36:98:7e:57:d1:28:26:66:96:ac:c0:16:b3:cb:
89:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DB:78:18:29:6E:A0:9E:B5:0F:6B:74:58:0F:11:6F:AB:46:29:A0
X509v3 Authority Key Identifier:
keyid:A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:e4:ff:84:52:1d:68:cb:e3:59:b1:1c:1d:f3:6a:f4:b0:3e:
30:3f:da:af:15:e3:76:07:f3:c3:cb:7d:29:fd:de:c1:81:e1:
35:77:ad:36:56:b8:9f:68:df:8e:2b:9e:b9:20:1b:18:cc:68:
20:75:b4:89:c8:05:48:40:16:c3:35:29:a7:31:ab:91:5a:05:
18:6c:27:04:16:4a:82:e5:1b:f9:e8:78:0a:5c:a5:2b:2c:b0:
98:31:3b:f2:e0:64:cf:77:a8:db:73:ee:52:04:e5:d6:63:ab:
4f:09:aa:f7:12:fe:ad:af:9c:21:e6:da:7d:08:99:63:84:92:
f2:0d:b0:41:e5:b7:cf:39:22:4a:66:97:7a:33:de:ac:2c:f7:
3d:10:28:5f:98:34:5c:0a:7f:59:6a:79:e1:3d:a7:66:3c:5c:
0b:14:ac:88:b0:7a:7f:80:2f:21:1c:fb:bb:28:b6:9b:60:5d:
0c:b8:fc:23:d0:f0:35:62:f7:fa:7a:c4:d4:64:74:1a:41:db:
41:7d:23:75:2c:9c:49:74:5c:d7:75:d5:26:6f:e4:43:00:ff:
d8:a0:6f:b0:b4:7d:48:a5:f1:1f:61:55:3a:41:51:ce:68:59:
88:d0:1b:09:cf:87:01:db:f5:46:e3:cd:e8:97:2e:79:bd:44:
e4:e3:b6:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 01:13:36 2025 by rpki-client