Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f052ee-76b1-422f-8719-215eecb3df93/1/oFZPeYAZBRh04Czu4_0hy86rSuk.mft
File: oFZPeYAZBRh04Czu4_0hy86rSuk.mft (raw, json)
Hash identifier: 8MfJnQgLL073pO2uqOdpsdJOnFxkWREmbzcRC4FrWrI=
Subject key identifier: A1:EF:00:5D:40:7E:E5:97:06:7F:C6:7C:92:C2:8A:99:98:39:EA:94
Authority key identifier: A0:56:4F:79:80:19:05:18:74:E0:2C:EE:E3:FD:21:CB:CE:AB:4A:E9
Certificate issuer: /CN=a0564f798019051874e02ceee3fd21cbceab4ae9
Certificate serial: 01965D5F9AB704337A99109CC49773C3CDE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oFZPeYAZBRh04Czu4_0hy86rSuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f052ee-76b1-422f-8719-215eecb3df93/1/oFZPeYAZBRh04Czu4_0hy86rSuk.mft
Manifest number: 0A08
Signing time: Tue 22 Apr 2025 12:01:08 +0000
Manifest this update: Tue 22 Apr 2025 12:01:08 +0000
Manifest next update: Wed 23 Apr 2025 12:01:08 +0000
Files and hashes: 1: oFZPeYAZBRh04Czu4_0hy86rSuk.crl (hash: q9CFZoiVs9OMBbhrTGjwie2jBiH3u4aLUP9WXXO0ZeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f052ee-76b1-422f-8719-215eecb3df93/1/oFZPeYAZBRh04Czu4_0hy86rSuk.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f052ee-76b1-422f-8719-215eecb3df93/1/oFZPeYAZBRh04Czu4_0hy86rSuk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oFZPeYAZBRh04Czu4_0hy86rSuk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 12:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:5f:9a:b7:04:33:7a:99:10:9c:c4:97:73:c3:cd:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0564f798019051874e02ceee3fd21cbceab4ae9
Validity
Not Before: Apr 22 12:01:08 2025 GMT
Not After : Apr 23 12:01:08 2025 GMT
Subject: CN=a1ef005d407ee597067fc67c92c28a999839ea94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:79:af:af:de:f1:fe:08:ca:83:cc:2d:25:27:
28:ae:a3:0e:2a:2f:79:28:6b:8c:29:e4:90:d1:4c:
42:2e:54:42:61:c9:2f:68:05:89:5d:6f:55:47:16:
d2:26:90:d8:41:52:54:cb:fe:8e:40:f4:3b:68:69:
83:d8:c2:57:fa:ee:cf:95:64:9f:17:9b:1f:51:e3:
64:6c:fc:8c:80:1e:ee:d4:9c:8e:39:27:5c:01:89:
94:8f:6c:64:4a:60:67:c3:a1:8c:c5:a3:52:d2:06:
6e:c7:87:2a:0b:7a:74:79:1d:4a:3f:6d:b8:0a:10:
62:1c:6d:92:fc:0a:b2:ab:38:e8:45:0d:b9:f1:38:
3f:96:81:d9:3a:ed:c4:c9:0f:bb:89:33:34:c1:37:
69:96:a1:c4:cb:bc:a3:f8:20:a8:81:ec:a0:cf:d4:
1c:a8:3b:83:67:5a:6d:6e:3e:a9:48:5c:f5:a6:c3:
76:36:46:64:5b:2f:d0:e5:ec:71:f6:5f:80:ec:57:
50:00:f7:f4:7a:c7:d6:e1:c0:e9:be:1f:8d:b5:32:
21:21:87:00:d3:0a:db:17:68:fd:79:f7:4c:9a:15:
66:5e:a5:69:e1:6f:58:53:72:1f:8d:2f:b2:eb:42:
df:b6:3d:55:af:f6:47:74:2f:f8:1f:3a:4a:a1:d0:
bd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:EF:00:5D:40:7E:E5:97:06:7F:C6:7C:92:C2:8A:99:98:39:EA:94
X509v3 Authority Key Identifier:
keyid:A0:56:4F:79:80:19:05:18:74:E0:2C:EE:E3:FD:21:CB:CE:AB:4A:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oFZPeYAZBRh04Czu4_0hy86rSuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f052ee-76b1-422f-8719-215eecb3df93/1/oFZPeYAZBRh04Czu4_0hy86rSuk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f052ee-76b1-422f-8719-215eecb3df93/1/oFZPeYAZBRh04Czu4_0hy86rSuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:1e:e7:b7:82:53:50:7e:08:b2:02:d8:86:c4:57:b1:72:74:
0f:2f:46:0a:64:c2:4f:01:dc:5b:01:48:00:86:02:5a:6e:b5:
27:13:88:9e:00:9d:65:c2:30:c8:09:05:af:36:5a:be:db:dc:
f2:77:1b:62:06:c6:3a:e6:6d:a2:65:a4:65:92:ba:bc:0e:4e:
c5:03:e8:51:b8:0e:0d:2e:b6:28:05:13:84:50:df:a4:4d:9b:
87:00:f2:42:93:02:52:c3:7e:4f:93:ff:21:90:a4:c2:b7:07:
85:8b:4b:ac:e6:dc:bb:2b:8e:63:5f:d3:15:c5:09:44:5e:fa:
b7:6f:b6:4d:81:ef:c5:92:5f:f5:77:e6:f9:7c:c5:36:be:38:
07:bd:eb:35:fa:35:0b:54:c1:64:ec:83:ad:ed:0f:d5:3b:a3:
83:61:b2:01:e7:08:a4:fa:ef:e7:2a:6e:66:68:57:e2:c3:87:
ef:71:4d:ea:0c:a4:41:f5:a9:78:f0:80:08:7b:9e:88:c8:c9:
ed:d9:f4:81:cc:28:9a:ba:1f:e8:47:85:0f:67:e1:d4:05:86:
06:39:de:a3:23:2e:d6:84:c4:12:20:8a:1d:a6:27:24:38:22:
ca:c7:ae:71:d3:f0:fb:c6:19:3a:06:a0:26:39:aa:66:93:aa:
1f:42:44:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 17:07:14 2025 by rpki-client