Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: sM7i2bvS4/pH6tjTtv4RV1A7UOzA7yYJSPHeGEedRIM=
Subject key identifier: 23:34:EE:FC:76:AE:28:51:28:22:48:F5:23:BF:40:CE:24:C0:3F:CC
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 01964E5A2C013F455603E713C1CC6F910D00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 14EB
Signing time: Sat 19 Apr 2025 14:00:54 +0000
Manifest this update: Sat 19 Apr 2025 14:00:54 +0000
Manifest next update: Sun 20 Apr 2025 14:00:54 +0000
Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: 1ml3vlEPYT2nsfXVr8vv9FWtjNenRN26YCyq9C9Kxj4=)
3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=)
4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=)
5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:5a:2c:01:3f:45:56:03:e7:13:c1:cc:6f:91:0d:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Apr 19 14:00:54 2025 GMT
Not After : Apr 20 14:00:54 2025 GMT
Subject: CN=2334eefc76ae2851282248f523bf40ce24c03fcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:51:54:82:43:29:e9:4c:65:7b:78:f6:19:64:
46:96:6e:a9:eb:56:42:d6:12:58:28:d6:56:ae:3e:
fc:ea:05:55:9d:8c:ca:03:3d:7f:7b:8c:27:2d:3b:
ae:de:79:63:84:af:bc:0d:7f:2e:a4:f2:f8:a7:3c:
1c:3b:6d:cf:36:98:08:9d:0a:ab:26:70:91:fd:ad:
46:58:67:06:f1:e0:04:cf:8c:f3:01:f2:75:90:81:
09:87:b4:70:36:1b:d1:6b:17:c0:cc:2f:0b:1e:c0:
5d:4f:92:77:05:1f:06:69:6d:f8:f4:1a:2a:e5:fe:
19:92:3b:8b:ff:59:bf:69:f1:16:08:39:73:ab:f9:
d6:d5:84:51:c7:c8:84:e4:29:b4:11:55:ab:1b:24:
22:22:4b:ef:6a:d4:b5:0b:0a:f7:a8:30:60:81:76:
9c:13:39:08:4d:d8:be:51:2c:e9:b2:f3:7a:76:7d:
a8:cb:e4:48:6a:ad:c1:c2:c0:3c:a6:76:1b:5d:d9:
1e:02:0f:44:0f:b6:90:c3:16:80:9c:7f:a5:60:84:
86:aa:97:0a:95:28:1e:a9:ac:bb:99:a5:44:5f:80:
77:7c:5f:c8:bf:2e:0c:7f:1f:70:bf:05:3c:ea:25:
4c:77:a3:89:e9:c7:19:2f:b8:9a:9b:19:a4:19:93:
c3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:34:EE:FC:76:AE:28:51:28:22:48:F5:23:BF:40:CE:24:C0:3F:CC
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:ff:14:0a:2c:94:0f:43:25:7b:e9:d5:b1:9d:b7:41:ea:86:
61:4c:9c:ac:5d:44:4f:58:35:ac:a8:02:ca:31:5b:05:38:3e:
7b:fd:fc:ed:12:8e:3b:3e:64:0d:15:a4:2c:87:4d:d2:58:a4:
b3:8c:af:af:e5:fc:5b:02:b4:fb:3e:7a:8d:d4:35:db:51:0a:
14:77:b1:f7:f4:ad:13:d1:93:d4:43:3f:36:ec:22:70:d1:4c:
2f:de:f6:fd:94:c6:3a:b0:69:12:17:2d:40:50:9a:49:26:31:
da:2b:d5:a8:f7:ec:eb:84:a3:21:73:98:dc:7c:6b:67:54:5d:
25:82:51:eb:98:bb:09:32:84:77:e2:c9:6c:b0:31:47:25:16:
f7:67:d5:02:53:e0:4d:1a:36:47:de:fd:6d:cc:bc:cb:41:64:
c5:25:fb:cc:69:d9:ad:29:45:c8:1d:b8:d5:5e:bd:8a:da:92:
d0:2e:7b:bf:fc:c5:dc:1c:c3:b9:fd:8f:4e:c2:a7:ee:11:16:
09:e5:7e:14:fc:5f:69:ec:86:1e:4d:49:90:02:3f:c5:3c:30:
dd:3a:c3:c2:f8:86:be:7d:b4:05:65:11:c6:34:2e:e3:9a:2d:
e0:35:4f:e8:a3:8e:51:fe:6c:16:d7:a4:69:a7:e4:9b:86:87:
c5:22:be:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:35:47 2025 by rpki-client