Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
File: OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft (raw, json)
Hash identifier: zfDhGFvtwcjp1g5IeOmffEoPHAFacxOX+l1aWXc/dv8=
Subject key identifier: 37:EE:D2:45:A8:42:63:43:85:AB:96:91:C2:2A:77:F3:91:FB:83:06
Authority key identifier: 38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58
Certificate issuer: /CN=386ab970bfb6947597e97cefb916ec76a0c56858
Certificate serial: 01962FAB35BA6B74EBB39D0309B0EC7957F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
Manifest number: 14ED
Signing time: Sun 13 Apr 2025 15:01:11 +0000
Manifest this update: Sun 13 Apr 2025 15:01:11 +0000
Manifest next update: Mon 14 Apr 2025 15:01:11 +0000
Files and hashes: 1: I01Lo7qwhvaLI2U54ucZ10pkExs.roa (hash: mTrGRc4f1Skt/0lHfZ3XZbVEvrQ9mBUuWZXJpIXORz4=)
2: OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl (hash: aX3s9KxdYnOl+wFtSajauL2yTmSTjA/FsMh7nxavyTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 15:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2f:ab:35:ba:6b:74:eb:b3:9d:03:09:b0:ec:79:57:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=386ab970bfb6947597e97cefb916ec76a0c56858
Validity
Not Before: Apr 13 15:01:11 2025 GMT
Not After : Apr 14 15:01:11 2025 GMT
Subject: CN=37eed245a842634385ab9691c22a77f391fb8306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:52:82:00:b7:73:98:d5:d0:3e:75:b9:0b:31:
45:3b:22:6a:56:3a:0e:05:36:dd:8b:dd:c2:bc:32:
15:c6:fb:8b:fa:30:61:c1:4b:e9:a0:10:6e:62:2a:
25:6e:cb:6a:7b:07:25:6a:43:6d:79:8b:71:72:db:
71:c9:7e:a0:0c:ed:42:86:ec:8e:d6:b2:fc:0f:74:
ef:03:5f:b3:0c:16:49:ec:55:74:70:79:fa:28:c6:
64:a5:15:46:f3:41:16:f0:71:44:ff:fc:be:c5:f8:
11:b5:d5:fa:fb:d8:52:5b:02:fe:b9:2e:7a:bd:ab:
ce:ff:a3:3f:a4:4e:2f:fd:e6:d1:a5:b8:ea:74:56:
16:82:7c:b4:8e:f9:57:f9:6e:b4:9a:3e:a0:4c:ea:
f9:d8:d1:67:fb:f5:6e:b0:77:e9:21:88:f2:58:8c:
34:84:7b:fc:2c:59:e0:de:ac:bd:e2:7f:08:18:36:
62:0f:6d:fa:97:28:0d:78:26:b8:e9:a9:9c:62:0a:
e2:ce:7b:1a:5c:b3:f8:71:3d:13:7b:85:db:73:c2:
0e:c4:12:89:4a:9d:d7:a9:3a:b4:46:10:25:76:ce:
c7:f4:60:18:d2:fd:92:b9:a9:0a:d1:12:21:da:b0:
97:d3:d5:17:01:ea:24:6a:19:bb:ca:dc:51:4a:4f:
5b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:EE:D2:45:A8:42:63:43:85:AB:96:91:C2:2A:77:F3:91:FB:83:06
X509v3 Authority Key Identifier:
keyid:38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:d4:55:b0:89:12:5c:7e:67:89:c7:f4:88:79:c2:23:0e:ce:
ad:78:42:44:07:65:b5:49:c9:05:50:f3:f6:45:80:4f:2b:ff:
55:4d:93:69:62:5d:a8:1a:77:18:88:38:6b:99:2b:b8:37:97:
b3:27:a5:84:a2:d2:33:67:a7:99:09:a2:d4:c6:76:85:ea:91:
65:4a:50:5f:12:db:fe:00:39:e0:b1:4f:d8:09:d7:0f:9a:d5:
ea:db:57:96:0a:9e:0c:6b:73:5e:45:03:c9:55:7f:51:f5:65:
01:55:93:bf:16:95:45:76:ce:27:a8:38:fa:13:4d:ea:14:3c:
96:80:57:ea:64:4a:f7:00:73:e8:32:1a:2b:26:f3:56:9c:e5:
60:4c:17:ae:7a:28:86:e1:8d:b1:64:d4:00:03:ff:df:ca:39:
fe:8f:a1:94:12:0b:62:50:66:7a:9b:57:83:af:db:00:7f:e5:
7e:bd:19:2a:b2:a1:3b:46:0f:c4:30:64:36:7f:43:1c:11:dc:
bf:cd:da:31:e0:28:b7:4d:58:18:ab:0c:3a:a8:eb:fd:37:3b:
c4:8d:47:07:49:f4:2a:c5:7a:48:b8:0d:8a:a0:3f:dc:43:64:
f6:ab:05:dc:2e:9b:cc:7e:3a:f8:c1:b1:be:37:d2:85:dd:e4:
a9:f6:9a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:04:38 2025 by rpki-client