Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json)
Hash identifier: 3EhDHtpbivKK/KSLTfMfoDCLEPWSgwFZuTFOtww5PXo=
Subject key identifier: 01:4E:8B:64:1A:21:FE:B6:64:34:2A:80:B6:C5:BC:2C:7F:F6:46:03
Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Certificate serial: 01964F35BA7E9C6AB3C21EE372C68849B0B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 18:00:43 +0000
Manifest this update: Sat 19 Apr 2025 18:00:43 +0000
Manifest next update: Sun 20 Apr 2025 18:00:43 +0000
Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=)
2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: xICsTa5nn1xIiO8JXUOpSMwHRwAteVnDZVh8EzFGVpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 18:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:35:ba:7e:9c:6a:b3:c2:1e:e3:72:c6:88:49:b0:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Validity
Not Before: Apr 19 18:00:43 2025 GMT
Not After : Apr 20 18:00:43 2025 GMT
Subject: CN=014e8b641a21feb664342a80b6c5bc2c7ff64603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c7:59:f9:74:27:59:5a:a9:6a:a4:bd:4e:c6:
cc:78:5a:3e:e1:d6:4b:99:83:90:e0:d3:5b:3c:a7:
78:c4:7e:30:77:96:ca:48:0e:1e:d1:09:01:d4:11:
92:14:4c:6c:08:12:9b:40:61:9c:e3:0f:ff:77:c6:
aa:cb:9d:a8:3b:5d:54:d6:d0:b2:cf:7a:03:82:11:
a6:17:0e:3c:5a:e5:fe:f1:9f:b5:1a:36:a7:bc:13:
39:7b:1b:5b:09:45:f7:5c:ae:22:97:30:ec:db:ea:
1b:70:09:70:80:56:0b:81:a8:ec:84:d6:1a:37:51:
52:d4:7a:81:55:24:19:74:6a:78:3f:9a:20:dd:66:
1c:04:d0:63:37:92:f4:e5:a2:98:d4:05:3c:10:c5:
93:31:dc:a8:ec:4b:48:a2:09:d0:5c:0b:ee:89:71:
e0:6a:83:5b:6d:33:65:fa:15:98:b4:5c:ea:0c:df:
ce:35:9a:69:ad:3e:ce:57:c4:5a:fd:77:48:4e:fa:
12:9f:0d:1e:14:bc:aa:b4:38:c7:8c:ad:5e:68:74:
45:ef:50:89:ba:01:3d:53:97:6e:a3:aa:85:ac:08:
a3:7d:da:04:9c:d8:e6:78:2e:64:56:f4:b0:26:d8:
6a:0e:7f:0c:33:ba:1a:02:90:25:c3:52:ec:e1:62:
06:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4E:8B:64:1A:21:FE:B6:64:34:2A:80:B6:C5:BC:2C:7F:F6:46:03
X509v3 Authority Key Identifier:
keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:d1:94:32:a6:62:9c:e5:17:43:52:f6:b0:69:e4:31:28:ca:
8b:2a:80:c5:d8:2d:ab:9a:aa:03:33:4e:95:15:af:e1:b4:29:
0b:b8:c4:93:bd:0f:1b:13:d3:70:ae:c3:a4:e4:c0:6c:2f:1a:
b5:08:53:4d:12:5e:f6:6d:b4:23:82:8b:73:07:b6:6a:5e:40:
dd:c4:9f:80:5d:d5:b3:62:a4:04:7e:28:42:f7:c4:4d:53:f0:
62:47:2a:51:79:7f:8f:4f:3e:47:6b:89:87:45:1b:79:ba:6e:
e3:3e:3e:a1:8f:b0:9c:59:be:90:59:bd:f1:29:ed:3f:ce:ca:
9e:02:5a:ff:1c:75:cd:d1:85:91:3e:ca:7b:69:3d:97:6a:bc:
18:44:6d:02:10:a7:f0:b3:70:56:34:38:1c:f1:ec:a7:77:3f:
53:1b:78:04:0f:4c:a5:32:46:f0:ae:b2:37:af:b3:d6:6b:42:
5b:51:3c:4c:dd:f6:c3:57:ec:75:10:8b:ef:86:cf:70:d4:80:
76:95:1a:b4:33:a4:1a:b6:ac:32:2d:9f:ab:b4:0e:48:c7:47:
58:f3:c6:88:ce:9e:2f:84:ff:90:b9:8a:cf:b6:43:4b:bc:ce:
f2:44:6a:16:dc:21:a3:a4:17:af:86:b0:7e:6b:3f:ad:a0:6c:
1f:22:ad:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:32:55 2025 by rpki-client