Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
File: OXbmqwhMnu7ehuKva95yFSdLlac.mft (raw, json)
Hash identifier: 64vQk0tQ3Xdvforc5MH1SG1ebVmXeY/MLCmyojUegTk=
Subject key identifier: E7:E1:2E:9C:2E:F6:23:01:0D:BC:7A:B7:24:C8:EB:02:E5:1C:CD:06
Authority key identifier: 39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7
Certificate issuer: /CN=3976e6ab084c9eeede86e2af6bde7215274b95a7
Certificate serial: 01964DB4F1C0467F0E59E21B146E410018DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
Manifest number: 14F8
Signing time: Sat 19 Apr 2025 11:00:25 +0000
Manifest this update: Sat 19 Apr 2025 11:00:25 +0000
Manifest next update: Sun 20 Apr 2025 11:00:25 +0000
Files and hashes: 1: OXbmqwhMnu7ehuKva95yFSdLlac.crl (hash: aF/BkjQ8fxCJwaTarSMKxRWTEkMRlxe4d0XijAb+h5w=)
2: bS8D5tTeBAXDkMQSy-j-MAcdPro.roa (hash: R+yA1y5Nb8S44doc/dttKyd8pVatx4WMIyAI41rpB+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 11:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b4:f1:c0:46:7f:0e:59:e2:1b:14:6e:41:00:18:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3976e6ab084c9eeede86e2af6bde7215274b95a7
Validity
Not Before: Apr 19 11:00:25 2025 GMT
Not After : Apr 20 11:00:25 2025 GMT
Subject: CN=e7e12e9c2ef623010dbc7ab724c8eb02e51ccd06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:be:b0:cc:89:49:8f:54:c6:3c:97:32:89:42:
e3:aa:03:36:a0:e4:f0:7f:d9:b0:d5:04:50:5e:ea:
86:28:c8:da:f2:1d:41:e1:d3:10:a0:50:a5:ec:9b:
3d:15:aa:3c:b3:cb:0c:bd:0a:11:0e:69:1a:e8:22:
a2:8a:89:92:92:91:97:b7:3a:ee:18:06:13:08:f2:
17:c0:d8:3e:c9:d4:82:75:8e:9e:3d:7d:8e:a7:53:
84:7e:0a:b9:be:74:81:1d:76:dc:77:e5:7f:72:b5:
a8:36:9e:7d:3c:b0:be:68:69:f3:fc:b8:a6:75:f9:
a6:c0:77:b0:64:25:a2:f4:35:30:99:1e:28:90:f0:
52:54:b7:93:e0:1f:63:95:e3:f7:f6:31:54:07:50:
4b:c1:3b:85:c6:90:98:a2:53:84:8b:57:61:19:04:
dc:27:bc:96:00:5b:07:47:6f:05:d3:78:08:67:23:
74:6d:eb:94:50:d1:b1:a2:24:f1:15:6b:a6:ac:52:
c7:6b:9e:85:64:e6:64:ef:47:31:1c:29:b0:ca:3d:
41:4f:df:4b:28:2f:ce:39:b7:5d:27:cc:9a:15:89:
16:01:92:98:42:8b:d2:23:be:02:8c:08:47:00:1f:
3a:20:7e:a5:88:d2:aa:ce:b9:8f:01:82:0b:35:34:
d3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E1:2E:9C:2E:F6:23:01:0D:BC:7A:B7:24:C8:EB:02:E5:1C:CD:06
X509v3 Authority Key Identifier:
keyid:39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:8f:7e:65:99:31:99:dc:f9:22:17:a4:9f:cd:8c:6e:54:79:
a3:25:ac:3d:9d:a5:62:d2:33:68:86:64:7b:52:eb:fb:13:c0:
f3:1c:c9:42:ef:94:8f:03:be:c6:c2:d6:76:72:a1:c3:b8:2d:
01:c8:95:ff:2b:a1:a6:ee:4b:c0:77:89:04:66:0d:5d:42:e9:
58:d7:d0:0e:44:97:b6:e5:d3:ec:13:97:38:bb:8c:e2:15:c4:
83:f5:ad:aa:73:65:e1:5b:4b:e6:01:fa:c6:59:e7:99:7f:eb:
28:9a:a2:82:86:eb:59:e5:58:c0:5e:51:cb:1c:e7:66:be:c2:
51:80:0a:56:56:6d:21:a1:76:cc:5a:61:e0:79:07:62:4e:6a:
62:e5:86:98:89:4f:70:29:e0:7d:a3:18:46:9c:a0:fa:ad:3d:
60:0a:98:b7:56:3c:29:f7:09:f1:40:9b:93:0e:db:b2:b6:ee:
a3:da:7e:66:82:db:bb:8e:b2:88:90:d6:9c:a8:b2:73:01:1d:
a0:6f:e3:1f:7d:14:4e:6f:3c:9c:7c:46:82:f5:1e:72:a6:35:
42:7c:3d:19:4b:c0:8b:4f:9d:dd:15:ad:43:ee:fb:50:c6:0c:
81:d0:dd:b3:a6:84:4b:d2:c4:05:07:3a:db:9f:40:56:7b:20:
99:5e:bd:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:35:18 2025 by rpki-client