Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
File: OPnFTxkZPgZUgWP4lcOka5-L-7U.mft (raw, json)
Hash identifier: GeSO+nP5j7+M2i1f6O+3qWVpYSBsnmwdPhv1nYHUuIk=
Subject key identifier: 17:8B:E4:64:B2:32:39:DD:0C:6D:6B:00:F7:33:1F:7A:3A:E0:1D:D4
Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Certificate serial: 019652DB87D171F81B35F8F74D0B1AF1792C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
Manifest number: 1502
Signing time: Sun 20 Apr 2025 11:00:40 +0000
Manifest this update: Sun 20 Apr 2025 11:00:40 +0000
Manifest next update: Mon 21 Apr 2025 11:00:40 +0000
Files and hashes: 1: 06fKvJ6DXtLQkPRF_5x6h3y4T5U.roa (hash: pwXaDGNXY2yyDJWetIQvjmX4OTShxo8fPOC9bn7nYwE=)
2: AI-T3-zIp1DMrSXD4vBKYCDZBV4.roa (hash: KlOk/fF1w7EKHSk+04TQtjgBWQMEvMF/JZ8yxyO3hC4=)
3: IPfQIXhx-EVpYevUCH6nRlI1vEk.roa (hash: aoDfqoJzdh17Itb5jDuQwg4ZtT6PxaA9lD3xjUMRLF4=)
4: OPnFTxkZPgZUgWP4lcOka5-L-7U.crl (hash: tIUgh5PUiWCyAkjPUWSHVkazTWyHvflp/dzoA5LOPn4=)
5: S7F8i1yEfNMFg3wpeOW0-FZBtwg.roa (hash: Rx3B3lYVZPumB8Nlts1azVOM9+RgsZGpcLJHsf7VfhM=)
6: nd6lHNAwUs4ZI74-h5aLN2zFa-w.roa (hash: X+qt5MDK/JQj57z8c3vd0NZATrYmJ74WqiXy7QQvbTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:87:d1:71:f8:1b:35:f8:f7:4d:0b:1a:f1:79:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Validity
Not Before: Apr 20 11:00:40 2025 GMT
Not After : Apr 21 11:00:40 2025 GMT
Subject: CN=178be464b23239dd0c6d6b00f7331f7a3ae01dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:40:b5:19:27:85:43:f8:48:59:8f:7b:f1:cc:
5a:10:24:12:4a:56:14:ee:06:f9:8e:ee:70:36:f1:
d6:8b:38:f3:7c:72:2a:9e:36:6d:49:82:01:e3:68:
9f:05:5a:19:37:ab:df:59:5c:f8:85:07:e7:95:d1:
35:38:81:82:c5:78:a8:d8:73:b4:01:c3:18:b5:11:
10:4a:79:f2:4a:d5:d0:d3:af:c9:da:da:05:ee:a2:
3c:69:b1:d3:00:af:b6:5d:e5:05:4c:16:88:79:e2:
a7:33:74:9a:d3:29:39:4f:1b:23:71:c3:87:80:1c:
68:72:e6:46:26:30:be:cc:0c:f3:81:8d:57:5f:2d:
3c:90:d0:f4:66:d0:9c:b0:e3:8a:39:a4:23:d3:00:
57:81:04:a4:9b:f5:02:18:20:ec:f9:ee:e2:5d:70:
34:87:62:1d:e0:79:62:52:2f:f2:5f:9c:da:95:b3:
5c:9d:5f:24:92:e4:95:d2:43:71:32:0f:0b:ca:a5:
d7:fd:25:d5:cc:4d:d5:7d:b5:aa:29:65:a1:13:ba:
35:9b:00:4a:5c:10:44:6e:be:7b:9a:f1:72:33:64:
a8:d0:bd:14:4f:0b:70:25:78:2e:df:98:e6:49:55:
e1:f4:33:e7:7f:18:7e:f6:16:49:b2:7c:9d:2f:ac:
02:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8B:E4:64:B2:32:39:DD:0C:6D:6B:00:F7:33:1F:7A:3A:E0:1D:D4
X509v3 Authority Key Identifier:
keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:61:85:d5:f1:f9:84:f3:39:2f:c2:1b:ca:d2:5f:90:02:f6:
d4:c4:a0:e7:99:5e:03:96:40:83:db:d3:18:91:fe:6b:b1:fc:
95:33:48:2d:36:e6:03:d0:79:cd:93:dd:91:c6:01:35:f9:1e:
c1:25:f3:17:24:01:ac:e9:2d:59:08:b0:cd:75:ff:a0:c9:01:
a0:ec:ad:0a:d7:15:11:d5:94:04:23:1c:4b:1f:99:00:51:b7:
18:af:fa:95:37:39:52:6a:d9:2e:39:b7:4f:d0:64:e9:97:34:
54:fc:f7:c5:fc:3f:59:03:ab:04:e7:22:ac:ec:bd:5a:ea:26:
3b:70:11:c7:68:20:80:ee:b1:57:f3:33:03:66:7b:a4:d6:e2:
f2:c8:af:20:ef:c1:98:85:35:97:06:ed:20:f3:8b:9f:5a:bf:
f9:3a:e9:e8:16:56:0b:74:53:93:54:83:c7:19:ed:1d:42:a9:
96:c5:65:bf:8f:58:60:a0:4d:3d:77:9f:62:32:6a:6c:4b:75:
bb:12:0f:98:34:18:d5:b8:50:0d:d2:85:89:2d:f7:78:9d:68:
7f:a9:c4:e7:19:93:c1:98:f1:d2:67:77:a0:e4:f6:d4:40:44:
10:4b:89:87:7b:86:6a:51:78:2c:f3:be:ce:33:24:c8:52:ec:
89:3f:eb:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 14:09:54 2025 by rpki-client