Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
File: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft (raw, json)
Hash identifier: btnZMom5l+ob4CTF/Nay6J5SZQlGVLI27oGHdZkQ+dY=
Subject key identifier: 86:49:89:ED:DD:D2:19:09:37:8A:7E:EC:55:4E:0E:40:C7:FC:51:93
Authority key identifier: 38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
Certificate issuer: /CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Certificate serial: 01964E59DC0996D1105917070D0D08650FDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
Manifest number: 14FB
Signing time: Sat 19 Apr 2025 14:00:33 +0000
Manifest this update: Sat 19 Apr 2025 14:00:33 +0000
Manifest next update: Sun 20 Apr 2025 14:00:33 +0000
Files and hashes: 1: BnrxL-Ur42kihA32O4JXiXZBN8E.roa (hash: au6tBTrdwYycWLV+cOCZ8jXfmlb22WJOhmDS5f3OYxY=)
2: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl (hash: HZP5xn1GknTIDx1c8zniszBU7/LcS77XcJ1F4BoeEag=)
3: eMQhZAA1BBjlcx0eTkggms08VQo.roa (hash: xi+ujT09IBX2cdfgWniCY7aqnXMFDpXhE7QErRO6YQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:59:dc:09:96:d1:10:59:17:07:0d:0d:08:65:0f:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Validity
Not Before: Apr 19 14:00:33 2025 GMT
Not After : Apr 20 14:00:33 2025 GMT
Subject: CN=864989edddd21909378a7eec554e0e40c7fc5193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6c:a3:86:40:eb:94:5d:75:1f:fb:e4:b7:2e:
0e:b9:f8:07:70:9f:ac:3c:e6:b3:b2:31:83:91:a3:
b7:ab:86:da:6c:19:dc:2a:b9:d7:27:79:f6:25:55:
5e:c1:6f:1a:e1:8a:db:66:ad:4b:34:3f:41:98:2d:
4b:46:f5:79:d7:8c:57:e2:ec:77:85:c4:5d:cf:ef:
3c:27:b5:64:da:af:f6:ad:9d:83:4c:23:76:58:ab:
99:76:3d:f4:e8:f0:ad:3e:7e:07:44:20:9c:e6:c4:
6b:33:47:b1:e6:23:ca:57:16:77:40:05:31:88:e0:
02:da:cf:b4:f2:63:d8:4a:de:c6:75:23:e6:c1:24:
62:d4:04:7b:a1:59:81:30:52:ab:50:33:e3:26:d3:
45:61:51:f9:28:61:18:a8:88:7b:0a:74:6a:8f:2a:
2d:74:78:f2:da:00:42:f5:e9:3f:36:e5:1c:e8:32:
70:b8:5f:d2:52:66:b0:c8:0e:c0:85:71:f1:64:b8:
73:a8:9c:0e:c9:6b:b4:ea:1a:6e:2c:4b:3f:15:1c:
e3:09:1f:94:e2:17:5c:2d:cb:62:5d:14:50:46:25:
0d:c7:ea:c1:ec:40:95:41:a1:a7:e9:82:20:d5:61:
78:63:3d:77:f7:a2:f3:db:98:43:b5:b8:51:46:ed:
8d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:49:89:ED:DD:D2:19:09:37:8A:7E:EC:55:4E:0E:40:C7:FC:51:93
X509v3 Authority Key Identifier:
keyid:38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:3d:89:91:90:50:3e:fc:8f:a6:57:8b:62:4a:9c:4b:69:10:
d1:b4:fe:98:88:06:87:02:02:bc:45:83:49:e7:e2:b0:f6:e1:
90:e5:05:26:2e:79:29:14:57:f2:cb:9d:28:0a:34:0e:76:1b:
f8:94:67:43:82:35:a8:0a:71:0a:07:ab:e7:59:bf:98:4f:eb:
c8:22:a1:ac:52:bc:51:0e:63:9a:f0:d4:91:48:65:fb:70:8a:
e0:88:ed:bd:28:34:79:4b:a8:fe:d5:94:89:5a:a9:e0:23:0a:
52:1c:b0:da:b0:1f:c6:5d:6a:54:be:08:90:8c:d3:21:5f:50:
64:2b:36:43:ed:d7:08:61:11:37:e7:67:5c:2a:75:c0:ba:13:
4c:c3:60:fb:16:5d:05:ef:d6:43:a7:e4:7b:80:f7:41:bb:1f:
f5:5b:45:47:59:86:3d:bd:30:ee:64:95:fa:8c:4c:b6:3d:39:
03:24:c3:56:1d:3e:36:52:40:3c:86:6d:bc:60:3a:43:52:0d:
ad:78:e0:75:97:da:f6:85:12:b5:ec:62:c7:b7:65:74:23:28:
4b:da:0f:e2:72:c5:86:49:86:98:14:61:cf:4f:fb:c8:3b:59:
01:ac:93:c1:ef:f8:1a:e2:a9:a3:5a:85:26:c8:9e:bc:23:54:
da:75:2b:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:36:47 2025 by rpki-client