Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: aSZUZ33lXN+xfAWU0fXWhDfnN7luwRmduxMpaB2CX9E=
Subject key identifier: 9C:56:EF:E0:E7:03:81:2C:79:BF:A3:CD:A5:B7:7B:CD:50:23:98:9E
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 0196586F67761DB5326AAC9F2F7A5FB1BD6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1503
Signing time: Mon 21 Apr 2025 13:00:18 +0000
Manifest this update: Mon 21 Apr 2025 13:00:18 +0000
Manifest next update: Tue 22 Apr 2025 13:00:18 +0000
Files and hashes: 1: YZGMIvadW2xPxhoSXpNJb8SDWu8.roa (hash: jQfGmlQO1sTVXZe+wmgboQPBpNBgVW+6jbuLSLsW9ZU=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: NxnO8t1p1HVnmR3ZBxiUtVHYphLnisbfVbipjz+WQVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:6f:67:76:1d:b5:32:6a:ac:9f:2f:7a:5f:b1:bd:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Apr 21 13:00:18 2025 GMT
Not After : Apr 22 13:00:18 2025 GMT
Subject: CN=9c56efe0e703812c79bfa3cda5b77bcd5023989e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3e:7d:e7:78:ed:8e:4d:8c:54:51:19:8c:8a:
b6:8c:9c:98:31:2b:1c:15:b3:96:08:a2:11:e4:23:
d2:15:6a:fd:97:1c:e1:6d:bc:23:aa:83:44:63:d0:
5b:a1:b8:47:82:8d:95:e4:e5:51:ec:42:7c:3c:cf:
a7:78:02:cd:c6:7e:39:ab:cb:da:61:0a:2b:5d:ce:
c3:d6:07:9f:30:38:35:7c:5a:d2:13:6b:f6:76:98:
52:72:3e:a5:f6:59:e2:19:d5:cf:df:e4:1a:64:09:
a1:f0:9c:27:0b:8e:e2:f0:1b:e3:40:a6:b0:58:9d:
f9:d0:f7:bb:37:87:43:c4:19:5b:81:be:21:d7:5f:
34:69:8c:2e:bd:3e:12:d8:f9:b6:39:c9:d8:89:07:
43:0f:8c:7b:f9:d7:13:7f:fe:59:fc:72:05:4b:ca:
d8:f0:2e:55:68:36:0a:a3:36:81:17:60:c5:1f:e2:
07:30:1f:2e:3e:5a:77:8c:a7:8f:2c:d3:93:0a:e0:
4c:78:4a:06:01:bf:d9:9f:81:ee:2b:63:65:f4:5c:
a7:cc:f3:fc:a5:61:b0:06:46:40:31:73:1c:e1:3c:
61:d5:55:64:fa:e8:3d:d4:db:44:75:85:f9:36:0d:
27:09:43:18:87:24:70:70:c6:91:99:43:96:d2:ba:
4b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:56:EF:E0:E7:03:81:2C:79:BF:A3:CD:A5:B7:7B:CD:50:23:98:9E
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:4b:4c:13:5f:16:31:85:d1:9a:10:30:46:15:7b:48:1b:5c:
44:4b:82:c2:a3:85:78:99:e7:fa:25:29:2b:7e:a2:7f:ee:34:
9d:d1:88:2d:5b:e1:32:79:fb:6b:64:8a:64:29:af:a2:01:26:
74:93:49:3d:20:ad:cf:e4:1b:8c:f9:d7:f8:1f:a2:13:0b:5d:
d3:9b:25:c0:a4:53:2a:86:3e:3f:f0:fd:3d:79:09:17:6a:4e:
a6:e7:ea:4e:2f:0d:76:2d:ed:7e:3c:9e:ae:54:8f:40:dd:20:
ee:96:86:ca:1f:45:0c:07:ca:58:95:85:50:4a:e7:35:20:25:
d1:76:2c:38:76:c9:ef:e5:5f:7d:57:ab:91:11:3b:15:ec:18:
a2:69:16:67:70:78:44:d3:8a:88:38:d7:78:31:6b:34:09:d7:
99:a3:19:f5:1a:c8:07:c2:89:64:34:2d:97:dc:b5:78:43:94:
23:09:8f:e4:ff:56:c9:7f:b8:75:cf:6a:bc:c3:21:ca:5d:58:
b0:fc:5b:2a:7a:c0:13:9a:0b:42:da:ec:c0:64:64:f0:61:7e:
59:3b:6f:2e:9a:c7:4a:89:76:0d:37:0c:d9:50:f8:49:45:b5:
b9:ff:5a:ca:2f:4a:a6:57:54:1a:13:5e:b6:41:cf:7f:1e:fb:
66:55:ac:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:07:01 2025 by rpki-client