Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
File: OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft (raw, json)
Hash identifier: 97XSn3z+Erlb4Nm7Qi+Ma0OVPEL04CpPJiAFFMZoQc8=
Subject key identifier: 5A:71:AA:EA:E1:F6:18:EB:67:84:DF:C5:76:B3:CC:DC:10:20:41:0A
Authority key identifier: 38:9D:D4:12:6F:8B:E0:7A:F4:54:49:7C:A0:F5:66:52:95:48:2A:D5
Certificate issuer: /CN=389dd4126f8be07af454497ca0f5665295482ad5
Certificate serial: 01964D7DEB09ACD7511DE1D07527C2D172E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
Manifest number: 0456
Signing time: Sat 19 Apr 2025 10:00:19 +0000
Manifest this update: Sat 19 Apr 2025 10:00:19 +0000
Manifest next update: Sun 20 Apr 2025 10:00:19 +0000
Files and hashes: 1: OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl (hash: 8dqwnwOMuBRaGpn/DPpXjecuox4sPOfmhw98Asv2KRA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 10:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7d:eb:09:ac:d7:51:1d:e1:d0:75:27:c2:d1:72:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389dd4126f8be07af454497ca0f5665295482ad5
Validity
Not Before: Apr 19 10:00:19 2025 GMT
Not After : Apr 20 10:00:19 2025 GMT
Subject: CN=5a71aaeae1f618eb6784dfc576b3ccdc1020410a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:81:10:3d:79:f7:8b:38:e9:db:09:d7:c8:01:
fc:f3:92:44:fa:db:16:d5:5b:6f:90:4c:80:7a:bd:
83:9c:12:37:9a:20:a5:a4:f1:4f:67:46:18:93:1b:
fd:4f:52:00:c8:d9:bb:65:cc:a7:5f:f6:b4:6f:33:
cd:b7:99:ab:b1:01:0c:6d:80:0a:91:71:29:27:81:
db:0b:3c:54:7a:48:7b:93:ac:0a:ec:26:3a:ab:d8:
56:c7:b0:3c:cd:b3:2e:a4:39:e2:36:24:8b:2d:ba:
13:60:3d:a8:9d:78:fe:81:b5:38:e3:7d:3e:9b:9f:
e0:ed:ef:1e:c9:bb:46:86:f4:59:a4:72:67:5b:a7:
10:6b:c6:9f:1b:a6:90:a4:e0:e6:fb:c9:bb:be:e3:
36:fb:91:e0:48:54:a7:79:ee:d5:85:63:37:30:2b:
d9:28:f3:f0:55:3b:79:93:61:d7:ac:86:19:de:6f:
71:df:56:30:b5:22:01:9d:32:65:63:66:23:01:5d:
ff:44:0a:79:a4:26:95:36:ff:6e:10:23:c1:08:3a:
2a:3f:cf:a7:e6:bb:fd:70:87:ca:36:c8:8f:2c:b8:
6c:32:62:06:26:75:78:9b:46:b2:15:e6:86:2e:55:
31:5c:77:ae:c7:45:cb:c6:39:37:79:17:73:5e:ec:
32:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:71:AA:EA:E1:F6:18:EB:67:84:DF:C5:76:B3:CC:DC:10:20:41:0A
X509v3 Authority Key Identifier:
keyid:38:9D:D4:12:6F:8B:E0:7A:F4:54:49:7C:A0:F5:66:52:95:48:2A:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:c1:00:5a:24:81:6f:da:c7:6a:e0:5b:e5:13:4a:db:9c:15:
47:47:6a:ea:6e:1a:1e:65:ca:af:1d:93:10:1c:1d:82:bd:20:
30:56:cd:69:66:b5:aa:1b:24:9e:fd:4a:b5:dc:88:d0:60:47:
41:c3:d5:98:93:07:f7:9a:c3:11:47:32:c7:af:2e:76:2f:4f:
98:d6:11:01:0d:ec:28:81:49:7a:14:b6:78:36:5b:71:a5:5d:
33:e2:34:46:2c:06:bf:eb:f6:b2:d8:31:b7:bc:72:07:97:0a:
34:19:56:b4:54:83:42:32:ac:a8:96:52:29:bf:29:31:54:35:
c2:70:0d:17:80:95:a7:99:30:42:8d:6f:ed:99:3a:97:a3:34:
4f:7d:b4:2b:12:d7:95:9d:d9:7b:05:6f:08:48:b8:7d:0d:c8:
a5:1c:2f:41:24:63:8f:58:74:f4:c3:ed:26:a1:7f:08:4d:dd:
ce:5a:b1:01:c0:53:c1:7e:50:9b:80:3b:53:f4:ff:eb:d1:bb:
97:3b:0a:93:ce:df:7a:0a:50:48:35:ab:2d:35:b0:e6:6f:36:
00:27:7e:02:0c:a7:b1:56:4d:b8:91:2a:d0:1f:74:a1:35:46:
20:ed:12:a2:a2:e2:d3:97:cc:d8:92:f2:a1:a1:24:cf:d3:62:
8e:a1:72:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:37:33 2025 by rpki-client