Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
File: oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft (raw, json)
Hash identifier: jz4ieKtyIj7Ujo3WJWFO1KBPC/hF0DNONz95AxS7grU=
Subject key identifier: A6:4C:D4:C8:96:42:01:F4:39:42:CE:AF:7C:6F:4C:EF:D1:98:12:17
Authority key identifier: A0:A2:2F:CB:54:A0:91:D6:91:3F:FE:9F:AF:B9:83:C5:7A:4A:C2:2C
Certificate issuer: /CN=a0a22fcb54a091d6913ffe9fafb983c57a4ac22c
Certificate serial: 019653B6F0FE1579A59FFFABAA3BB0C841D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
Manifest number: 0652
Signing time: Sun 20 Apr 2025 15:00:20 +0000
Manifest this update: Sun 20 Apr 2025 15:00:20 +0000
Manifest next update: Mon 21 Apr 2025 15:00:20 +0000
Files and hashes: 1: oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl (hash: D42kBU0fTBrWfQ1/KCP8p51bZ+8RydIzHgwmb0uV2XU=)
2: vVp_ERdrnRIqLCUsItb5VjVaAYU.roa (hash: qquI+vjzguENR1gQyNKb61rrA2a/ZfrzpGtiqom6A+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b6:f0:fe:15:79:a5:9f:ff:ab:aa:3b:b0:c8:41:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a22fcb54a091d6913ffe9fafb983c57a4ac22c
Validity
Not Before: Apr 20 15:00:20 2025 GMT
Not After : Apr 21 15:00:20 2025 GMT
Subject: CN=a64cd4c8964201f43942ceaf7c6f4cefd1981217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ae:8c:26:95:b8:ad:95:d1:41:3b:86:08:58:
d8:0e:4b:89:8b:bf:ae:c8:cb:ee:82:4e:fc:53:86:
f7:56:4e:7c:56:d2:20:49:b3:b0:d3:20:d1:0e:18:
64:58:7b:db:94:2a:9d:ec:0a:5d:8e:f2:4a:22:bb:
da:77:95:10:b4:60:79:95:e2:44:d4:d7:ab:3f:54:
fd:91:de:41:db:31:e8:e4:0d:13:ef:ec:25:99:f0:
3d:57:a4:6c:2e:59:37:5e:8c:2a:9d:8d:5e:3d:96:
ed:c8:2e:bc:43:4b:d0:cb:95:38:cd:08:2d:64:6a:
fe:e9:2f:e2:25:51:95:00:c6:9a:c2:9b:c9:bb:5a:
4f:a2:d3:df:2e:48:5a:c5:41:2f:df:d8:76:19:32:
f9:95:c3:5d:f3:a5:5f:ae:7e:74:17:48:cd:0c:94:
b7:ee:7e:3a:11:80:0c:68:ec:1c:1a:84:41:11:8d:
94:8a:50:70:29:19:0f:40:aa:85:a7:41:4d:75:ba:
d8:e1:9c:ce:7b:29:ab:80:bd:38:e0:4a:26:df:be:
15:ad:63:1a:b8:4b:0a:09:5d:41:2a:32:88:77:22:
4f:64:ea:fc:0e:90:84:40:48:4e:38:42:92:70:8c:
fd:56:c8:45:a8:8f:a5:2c:db:11:a6:5e:ad:17:a8:
4c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:4C:D4:C8:96:42:01:F4:39:42:CE:AF:7C:6F:4C:EF:D1:98:12:17
X509v3 Authority Key Identifier:
keyid:A0:A2:2F:CB:54:A0:91:D6:91:3F:FE:9F:AF:B9:83:C5:7A:4A:C2:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:89:99:3c:3e:4e:b8:9c:f0:cb:2d:09:87:56:f0:bd:84:32:
72:ad:cd:1c:fe:36:4f:69:68:3f:90:14:37:81:cb:29:c3:6d:
6a:1a:cb:08:59:f7:60:45:e5:24:6d:03:9b:68:91:a9:4a:2a:
56:c0:16:a0:52:f2:9b:83:e5:03:10:33:02:37:45:c1:f4:45:
ff:44:28:f5:68:4d:30:1f:26:58:9b:09:54:56:67:95:21:62:
3b:5c:61:8c:eb:85:44:50:36:bf:e1:ee:7e:c1:16:ee:88:fe:
16:8a:16:c8:45:4b:de:f5:92:19:3d:e7:cc:8c:e7:77:df:0f:
ab:a2:a7:06:59:4a:a1:39:77:d3:de:0d:13:f4:d3:72:cd:78:
54:33:9a:67:5b:49:5b:3c:9b:28:68:c4:72:dd:2f:22:1e:eb:
b1:70:fb:d4:18:0c:06:f4:0a:31:cf:cc:ad:a0:93:80:78:af:
a8:68:57:bf:ea:57:d8:4d:df:b0:01:4f:95:a2:07:fa:cc:73:
09:41:c6:9c:9c:96:03:f6:7d:b8:71:ad:8c:d8:ed:17:9a:dd:
65:da:f8:63:2d:dc:21:91:fa:0b:60:5d:26:77:06:8c:c2:7b:
1b:8a:fe:cb:7e:1f:0d:bd:80:60:e9:b0:65:b4:37:81:80:60:
b3:30:3b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:15:13 2025 by rpki-client