Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
File: o95MO22qWmmL8wfMORKCqymH1hc.mft (raw, json)
Hash identifier: mlcSIRAbvJFu72QswS3/OsffMbVnzX2BUNI0QFhm/vk=
Subject key identifier: E5:95:0A:52:7A:2A:E6:41:4E:48:7F:CA:E7:5A:6E:0F:E2:E7:D9:77
Authority key identifier: A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
Certificate issuer: /CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Certificate serial: 01958C29693553AE71A8E21756B7DE9C9374
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
Manifest number: 09E0
Signing time: Wed 12 Mar 2025 21:01:18 +0000
Manifest this update: Wed 12 Mar 2025 21:01:18 +0000
Manifest next update: Thu 13 Mar 2025 21:01:18 +0000
Files and hashes: 1: aaz13NJRzQSWik1cFJTAx8gsPnU.roa (hash: CsCDTEtayCoWB3zZSGEuzJzCmVEA7r5a08XAY8x/Hbg=)
2: o95MO22qWmmL8wfMORKCqymH1hc.crl (hash: 0hgv7fOTLMYVzirTB+TDYEHplj+XGmqjVRYbTf5Dpi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:69:35:53:ae:71:a8:e2:17:56:b7:de:9c:93:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Validity
Not Before: Mar 12 21:01:18 2025 GMT
Not After : Mar 13 21:01:18 2025 GMT
Subject: CN=e5950a527a2ae6414e487fcae75a6e0fe2e7d977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:63:b6:a6:72:82:2e:d4:fb:55:40:67:0e:24:
d7:c7:7e:40:7b:d6:0d:71:1f:b5:f5:54:ee:d8:d0:
43:ca:db:4b:b8:39:f8:a1:da:80:8a:1c:a3:15:6a:
04:9a:6e:3d:d7:64:47:86:b0:4c:8f:a7:fa:2a:ad:
b7:bc:3b:7b:b9:51:58:3d:2a:96:1b:1a:1e:de:a5:
17:cf:26:f0:ed:25:ac:51:d8:87:57:d0:78:2b:74:
2a:9c:96:f4:00:5c:8a:01:ec:d5:b1:0e:03:e4:3d:
5c:1f:b3:55:20:a9:5b:c7:58:94:ec:51:ac:cf:55:
5a:ab:42:73:6e:c6:cb:0f:b9:10:fa:a2:23:eb:1a:
86:7e:a3:28:b1:df:cd:db:fb:fb:1f:3a:32:92:df:
e0:2c:86:70:58:1e:29:80:81:12:d0:8c:76:22:c2:
65:04:b5:28:92:64:c5:6f:a1:39:df:77:bf:e8:0e:
47:75:81:1d:8e:a7:20:0f:29:c5:d1:ee:22:55:a6:
9e:a0:0e:cf:f3:41:23:91:11:15:3a:d5:c4:c8:fa:
0a:3c:7f:7b:de:e5:99:6d:e9:7b:ee:d0:1a:78:39:
46:85:a5:59:50:af:1c:dd:63:ca:53:91:ab:0d:93:
ad:fa:de:1b:c8:e9:ef:60:75:d9:34:3b:d9:16:47:
f1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:95:0A:52:7A:2A:E6:41:4E:48:7F:CA:E7:5A:6E:0F:E2:E7:D9:77
X509v3 Authority Key Identifier:
keyid:A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:02:b1:97:be:e4:14:5d:2a:f9:a6:a6:ca:17:eb:b8:bb:6d:
fb:9e:c0:72:12:61:02:b2:6e:72:47:dd:9a:89:4e:cd:93:be:
db:3c:14:11:2d:4b:ec:c6:07:3b:98:22:b5:da:87:aa:db:74:
5a:34:3a:0a:f7:ae:bf:97:a8:57:8a:59:49:cb:f9:10:e1:31:
a6:ca:01:74:e3:2a:af:0d:ab:5b:f8:25:13:e1:5b:99:d2:f5:
27:fd:52:3d:6b:2f:db:74:10:94:9e:4e:c7:29:9a:6d:1b:a7:
d1:1a:d4:9f:05:76:f1:78:c4:ab:f9:81:91:93:77:88:5b:74:
d5:ee:24:32:04:ff:ff:d6:d4:ea:e5:88:ee:15:31:e4:62:2e:
e4:f3:b9:34:50:ff:6d:e5:49:b8:f8:e5:a2:b7:cb:4d:f5:21:
cd:5a:e3:b7:75:50:2f:73:68:c4:65:7c:88:3b:15:ca:60:09:
aa:dc:99:51:1a:71:0d:1e:0e:13:47:59:ce:89:f1:fa:49:54:
89:5b:f2:26:74:25:3b:91:a6:da:a6:38:87:4a:df:3b:0a:1d:
0e:61:c5:33:70:ea:04:4f:f6:3d:8e:a2:4b:99:0c:bf:33:3e:
64:35:3f:8f:ea:76:a9:d7:82:28:af:9c:c5:8c:29:4d:83:b7:
92:37:41:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:03 2025 by rpki-client