Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
File: oKFURB35Yj7rWhlhONIb71gktEE.mft (raw, json)
Hash identifier: 6eAu7R8Tj4qx/oebNDL/N5G2ZUNt/2hSHPq3Hql05zU=
Subject key identifier: A3:E5:4E:DC:7A:62:2D:6C:9B:8A:81:5B:4A:41:7D:7D:88:B5:03:26
Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441
Certificate serial: 019647E9B2429858DC6DDA27E7715B62FEC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
Manifest number: 14FE
Signing time: Fri 18 Apr 2025 08:00:19 +0000
Manifest this update: Fri 18 Apr 2025 08:00:19 +0000
Manifest next update: Sat 19 Apr 2025 08:00:19 +0000
Files and hashes: 1: cqMIZbZG_XjFMjyio64LoSb9JEM.roa (hash: xBYH5ZrjKUuPI62l0z0GQBA4FW4u95fkTkxgETr+i9Q=)
2: oKFURB35Yj7rWhlhONIb71gktEE.crl (hash: At0rgj8GZKyCwQa3+fUXH5xWiwelzlmC5QiYFrg9ARc=)
3: wlqxE5iuLQB304PN7hVNM4_5h14.roa (hash: xdHQ2e13Tky6CrFmxy2+w5Er25IzDfQGHtx/iyo+wSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 08:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:e9:b2:42:98:58:dc:6d:da:27:e7:71:5b:62:fe:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441
Validity
Not Before: Apr 18 08:00:19 2025 GMT
Not After : Apr 19 08:00:19 2025 GMT
Subject: CN=a3e54edc7a622d6c9b8a815b4a417d7d88b50326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:0c:7f:a6:96:00:c5:c9:b8:0f:27:c2:4f:6c:
40:90:23:5d:d5:88:1c:78:04:6c:f9:19:03:d0:7f:
79:73:22:74:bb:07:4e:c6:d1:fb:b5:64:ed:0f:39:
b3:eb:94:a0:44:70:ec:25:8a:90:f5:39:08:34:03:
a3:08:36:ac:68:8c:6b:56:c5:7a:6a:61:28:18:a8:
40:c4:db:3f:61:9d:0f:c6:5f:7f:9b:95:3e:33:e3:
a4:87:5f:7e:3a:50:4d:8c:f4:d7:9b:d4:f2:2a:b1:
85:1b:7c:44:c7:12:57:20:43:0b:0f:18:27:c6:33:
10:d8:05:e4:02:24:b4:e1:f3:52:41:ed:bd:fd:58:
e1:79:5f:3f:19:a1:84:14:f9:d1:c6:43:07:f6:01:
f9:61:0b:74:31:4d:f1:c0:58:8c:71:a3:90:96:8c:
30:96:c9:09:3c:c8:c0:0f:8e:95:8e:54:f2:a2:38:
9e:c8:b5:bc:af:bc:b2:71:97:a2:ee:33:9f:93:c6:
8a:13:9a:59:27:e9:d3:35:40:c5:69:30:03:d8:25:
8d:44:a0:2c:1e:f0:68:23:a0:61:04:ac:6e:98:4e:
27:ed:8b:4a:cf:78:59:67:46:69:f6:ca:3e:68:31:
c9:65:20:9e:bb:73:e4:a3:35:6e:a1:ad:c5:a3:27:
ad:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E5:4E:DC:7A:62:2D:6C:9B:8A:81:5B:4A:41:7D:7D:88:B5:03:26
X509v3 Authority Key Identifier:
keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:82:9b:d4:b0:09:06:50:7f:e3:d9:e6:83:52:52:0b:5c:a7:
bd:ea:4d:11:ea:5d:0a:10:8b:6d:ac:0a:52:22:c2:d1:b9:15:
86:c4:59:6a:bf:98:65:81:14:bc:e4:d9:7e:12:69:77:0c:c8:
3b:2e:2d:90:40:02:c0:f8:55:f4:0d:2c:7c:37:82:a5:53:62:
a5:f4:60:23:a5:c2:81:89:bf:d5:0e:93:1a:9f:2d:82:66:77:
01:f3:b6:bf:4a:76:0f:ca:d5:fb:25:f5:00:56:b3:bb:c1:8c:
af:0c:96:16:e4:24:15:08:40:25:7b:76:1b:a1:f8:5b:05:1c:
d8:b8:06:da:40:59:21:a4:44:7b:08:f6:40:88:34:23:c2:72:
00:ea:4f:33:6b:86:d7:fb:8c:15:09:85:b4:5c:5c:ad:3e:08:
03:e4:32:c3:3f:86:f5:ba:95:c2:cb:7f:be:d4:36:63:1a:5d:
d7:b0:4a:00:6e:f7:46:b4:ea:d5:2d:ca:37:b8:fe:14:80:7a:
f3:bd:5e:c4:30:d2:c2:b8:f4:59:75:43:d7:40:6d:15:fc:fe:
49:67:02:b4:a8:9b:ef:11:c7:57:c4:dd:83:63:90:ce:13:02:
b7:93:22:26:cc:37:bf:49:56:ca:69:86:24:a5:39:99:d9:3c:
90:d8:c4:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 12:36:24 2025 by rpki-client