Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
File: OneLgrqpeIoayvLsNothmB71HfI.mft (raw, json)
Hash identifier: QdwCUQYUt3BepbBa9F1JwGpnpvU1LXayCVKt1Wr/7t0=
Subject key identifier: 1F:3B:C2:76:5D:DA:38:95:A9:26:E8:13:DC:CF:82:FE:E6:01:86:D3
Authority key identifier: 3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
Certificate issuer: /CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Certificate serial: 01963F8B4732DBAE8DC272FCD418505F4D8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
Manifest number: 14F8
Signing time: Wed 16 Apr 2025 17:00:14 +0000
Manifest this update: Wed 16 Apr 2025 17:00:14 +0000
Manifest next update: Thu 17 Apr 2025 17:00:14 +0000
Files and hashes: 1: OneLgrqpeIoayvLsNothmB71HfI.crl (hash: dc1G5offAcMi9OblfQ57tNgpSlmNroV75mimpTvCC/k=)
2: tSdPmCF2mRPxF2tL9jrht8v9nd0.roa (hash: 25zx6oeH7z2ZyGM4y2LzPQiLw04ocTvL7Bq+gPKpw0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 17:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:8b:47:32:db:ae:8d:c2:72:fc:d4:18:50:5f:4d:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Validity
Not Before: Apr 16 17:00:14 2025 GMT
Not After : Apr 17 17:00:14 2025 GMT
Subject: CN=1f3bc2765dda3895a926e813dccf82fee60186d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:05:a0:08:42:c8:08:2c:0a:21:17:c4:0e:31:
57:8b:91:fc:67:96:c1:87:ea:0c:91:34:27:2e:34:
4f:51:4d:f5:0d:04:f5:4c:b4:eb:d5:6b:88:0d:e1:
3a:82:4d:53:bb:09:95:5e:1f:b2:2d:5b:c9:24:54:
a1:90:67:82:d9:c7:6d:19:07:4c:4e:d9:95:56:34:
07:ad:4c:96:db:5e:53:50:4f:04:a6:79:d7:36:bd:
10:a2:ee:4d:c6:a2:bf:6b:11:74:cd:43:18:b1:2f:
ca:84:b5:8a:51:a7:9e:22:ed:38:96:d4:91:e2:2b:
bd:ee:e3:83:b1:43:91:07:92:c4:b9:1c:2f:14:3c:
53:16:b5:f8:34:95:20:0f:61:81:f2:9a:65:0f:a2:
39:cb:e3:52:d8:d5:01:c4:16:25:82:5f:e2:68:61:
43:04:98:f8:c8:cd:81:28:a0:1b:23:79:c9:5a:85:
1e:a2:e0:60:a4:e2:a9:bd:92:74:5a:2e:84:52:35:
1d:ba:87:7d:34:8c:d0:49:8c:39:20:d6:36:fc:51:
a0:cb:2a:e4:dd:5e:e2:28:e3:95:ee:ef:f2:2f:61:
6a:c0:6f:6a:e5:a7:21:ff:cb:d2:1b:4a:5a:ef:90:
2f:09:8f:d6:86:63:a6:b7:17:f3:b7:f1:31:bb:0e:
2d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3B:C2:76:5D:DA:38:95:A9:26:E8:13:DC:CF:82:FE:E6:01:86:D3
X509v3 Authority Key Identifier:
keyid:3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:fb:13:bd:b0:8c:a7:bd:3a:47:5c:f1:1f:b8:83:b2:4a:ba:
08:d8:0d:25:d6:5d:17:85:2a:63:09:ab:03:19:b7:44:59:e1:
85:6b:af:e9:86:26:33:fd:f8:6e:a1:43:a9:67:ff:17:65:2a:
b9:e3:09:9c:45:d6:76:0b:45:62:31:d0:82:d4:29:29:5a:29:
95:9f:be:34:44:8e:05:a4:02:54:02:16:b3:c8:c0:39:d7:9e:
a4:94:c0:60:f2:ee:a9:94:b6:dc:ab:3c:dd:1d:99:89:99:59:
02:42:76:5b:01:dd:6e:fc:81:21:dc:52:db:f9:b1:81:18:81:
5f:30:21:f0:0f:e8:0b:a3:23:4e:e0:02:99:e0:82:0f:a7:6a:
a5:5f:32:06:19:2f:7c:50:73:ec:44:eb:ee:85:c2:82:11:19:
9a:d5:5e:db:51:c7:7c:30:f5:b7:bc:5e:b9:6a:62:65:a0:76:
e4:51:da:14:f5:fe:99:4c:88:72:bc:0b:a7:2d:58:21:9e:7a:
fe:9f:c9:f5:74:11:de:d7:d6:4e:e6:20:c7:60:44:0e:f6:ea:
56:1d:32:92:af:c7:3b:0b:71:7a:9b:48:8b:ed:5a:be:b5:67:
fa:f0:98:32:8f:ab:ca:19:62:5d:9e:ec:2f:77:fb:47:d7:f0:
6f:6f:56:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:57:29 2025 by rpki-client