Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
File: oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft (raw, json)
Hash identifier: h8VpGn4h4aJ9EF/pSvwROgh3onrDjRmPr8WDMXgnG/I=
Subject key identifier: DD:4E:A4:4F:A1:ED:D6:BC:B8:53:96:BD:32:7C:FC:5E:64:29:81:06
Authority key identifier: A0:F2:7D:4F:06:76:14:BC:BC:27:03:46:FA:0D:44:B1:5F:80:51:63
Certificate issuer: /CN=a0f27d4f067614bcbc270346fa0d44b15f805163
Certificate serial: 019641E77E0E8A6188A0AF04C51C5E8E63F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
Manifest number: 14F1
Signing time: Thu 17 Apr 2025 04:00:12 +0000
Manifest this update: Thu 17 Apr 2025 04:00:12 +0000
Manifest next update: Fri 18 Apr 2025 04:00:12 +0000
Files and hashes: 1: VpVmsYSCQdNXwRHKQt0NXlzsSG0.roa (hash: E6B6Bl1mDcetd5EsaNvc0boHcTeWIhqXRqGoFPj9kUc=)
2: oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl (hash: 2CmHU5rouOEoAVoC+bboVx9KtcuUZfavDKSK/QwSi2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 04:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:e7:7e:0e:8a:61:88:a0:af:04:c5:1c:5e:8e:63:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0f27d4f067614bcbc270346fa0d44b15f805163
Validity
Not Before: Apr 17 04:00:12 2025 GMT
Not After : Apr 18 04:00:12 2025 GMT
Subject: CN=dd4ea44fa1edd6bcb85396bd327cfc5e64298106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4f:01:a8:95:5d:40:1f:0b:4e:67:0e:35:aa:
bf:aa:a6:f9:b9:75:08:c9:77:fe:4d:36:ad:1a:6c:
ed:b6:8b:22:b7:52:a6:75:3a:e0:f3:f9:77:c3:94:
f1:cc:55:8a:57:e6:5f:1e:48:78:3f:cb:c4:52:4c:
8a:24:a8:1d:77:8c:c7:2a:9d:a8:d0:c8:66:1b:cb:
18:db:cc:9c:00:9c:d2:45:06:92:68:6c:d3:74:2b:
ff:9d:d0:c4:56:7f:93:15:16:84:94:5b:41:b9:0c:
5b:ab:ad:df:15:3d:56:4e:5a:cf:16:20:c6:de:eb:
29:c9:3a:d4:82:ec:7b:ef:eb:c4:cb:45:6e:c0:d1:
a9:05:4c:6e:ee:98:1a:a4:d1:9a:18:9c:6e:08:35:
03:99:79:67:c4:5c:8d:ea:8c:96:f6:61:25:86:c1:
3c:05:1a:4a:62:46:eb:6c:34:6c:96:91:39:3a:2f:
fc:47:82:e7:43:75:29:6c:ce:a8:90:87:21:6a:8c:
c7:b2:63:92:58:90:f5:2c:23:5b:20:62:3a:32:da:
79:c2:b4:d4:4a:3d:72:26:e9:33:d8:fd:0c:0f:d3:
e3:8b:42:7f:01:ce:1f:59:49:a8:52:f0:6e:0f:ec:
4f:1b:25:d1:c8:20:ee:f0:2b:61:df:ab:e2:1a:04:
b2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:4E:A4:4F:A1:ED:D6:BC:B8:53:96:BD:32:7C:FC:5E:64:29:81:06
X509v3 Authority Key Identifier:
keyid:A0:F2:7D:4F:06:76:14:BC:BC:27:03:46:FA:0D:44:B1:5F:80:51:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:86:f5:37:64:28:ab:51:ec:ee:6a:b9:af:b2:a0:86:bf:0a:
46:cb:02:41:5a:11:ca:83:61:f4:0a:23:6d:e2:f2:6f:f5:6f:
f1:fd:77:cb:0c:2f:82:f7:dd:74:30:bb:44:3e:ea:db:e1:2a:
e2:cc:e6:f9:5c:2b:ba:6c:4d:cd:4b:7c:71:c8:89:d5:e2:88:
35:cd:30:7e:1e:0a:a6:83:00:44:94:a8:5a:22:33:86:4a:87:
13:a4:31:d2:d8:0a:9d:2f:b4:50:4c:e3:73:a9:45:64:f7:35:
85:d8:56:65:19:a9:d7:03:f7:a8:b5:59:2d:ab:24:c4:6d:31:
a2:05:a0:73:34:80:52:e6:33:ce:a6:b5:e8:91:1e:fd:0b:2e:
e8:fa:77:a9:05:df:f4:1f:ff:bc:6f:24:e7:36:24:95:15:ca:
29:ee:1d:3b:2f:f0:18:b6:da:9a:26:76:90:81:68:21:99:60:
b2:32:1b:3b:66:ab:81:96:ad:9c:76:29:53:94:85:ef:fb:cf:
b5:51:1f:eb:14:30:6b:37:d8:90:9a:36:4b:53:e5:62:98:5a:
5b:2a:9a:dc:f6:ec:b4:77:4f:d6:e2:fd:53:3d:b4:61:06:7a:
f9:49:ab:ad:c9:6c:af:e9:24:39:7c:5b:31:ed:88:fb:34:0c:
2e:b9:ed:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:44:42 2025 by rpki-client