Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
File: ogAYZIx6-hREZNR7seLLK6eG67E.mft (raw, json)
Hash identifier: r+mqHSD0ttGDCwU6uLUx1GGH9ofBTm3IpVeIHCynvBM=
Subject key identifier: 1B:14:F5:3C:AB:AA:E7:9C:CB:2E:41:A7:A5:F2:FD:6A:C0:6D:15:64
Authority key identifier: A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
Certificate issuer: /CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Certificate serial: 0196561332EB6B98C620578B0B1F74E134F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
Manifest number: 0207
Signing time: Mon 21 Apr 2025 02:00:20 +0000
Manifest this update: Mon 21 Apr 2025 02:00:20 +0000
Manifest next update: Tue 22 Apr 2025 02:00:20 +0000
Files and hashes: 1: Hg_LuWwF2PqnDP--QEmiR8s_JMw.roa (hash: pTVkg9vcSnhojGDdhaJdcSnTn9EzuAwvN69LeVjj+eI=)
2: ZyIFjDXNoQmTUrQTfRFil604EkI.roa (hash: w5vJh9LGNygfKftlkH12Umx5kIPwjNAoWDXEhQaobKc=)
3: ogAYZIx6-hREZNR7seLLK6eG67E.crl (hash: SUYbakpCOs/atdiyE+vv0AdkI7sxyFPj8V6hrDjsn0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:32:eb:6b:98:c6:20:57:8b:0b:1f:74:e1:34:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Validity
Not Before: Apr 21 02:00:20 2025 GMT
Not After : Apr 22 02:00:20 2025 GMT
Subject: CN=1b14f53cabaae79ccb2e41a7a5f2fd6ac06d1564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a3:c7:7e:f9:7c:b2:ed:6a:fe:94:ec:b1:9b:
a5:e7:f2:56:8d:7d:95:10:27:b4:05:03:c9:ae:dc:
1d:17:b8:2a:fe:3c:bd:37:d2:f8:fa:ed:b0:15:01:
1f:f6:e4:de:31:82:d8:74:a2:eb:16:67:a7:a0:93:
e8:7f:4c:ef:47:21:22:5a:ad:59:25:68:eb:53:3f:
58:d4:75:94:37:de:57:0c:e5:6b:b0:5b:d2:38:96:
7d:34:29:1a:fe:25:18:4d:01:52:91:f3:48:2a:21:
66:11:bf:8d:da:7d:a2:a2:aa:f5:6a:10:be:9b:fd:
70:50:5c:66:ee:4e:ce:a3:41:ce:8b:ea:20:fb:db:
b0:3d:29:4d:54:b1:68:c8:f3:2e:b3:88:57:2f:75:
a8:06:76:6a:cf:c9:39:6c:af:15:91:b0:3e:07:dc:
e3:69:ab:40:f3:42:bd:74:a6:42:b5:0e:53:cf:a0:
c0:38:07:d6:ff:46:64:b0:69:5d:d0:95:9c:b9:d7:
ca:30:ec:e9:b3:07:f6:55:96:d7:9d:92:34:d4:d8:
d0:ca:41:e5:8a:14:14:0e:88:15:75:bc:a5:75:e3:
a7:6d:5c:6f:50:c8:3a:59:7e:b2:33:15:5f:5b:f5:
23:c5:05:58:eb:f7:3b:b0:83:32:5e:60:61:33:01:
b8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:14:F5:3C:AB:AA:E7:9C:CB:2E:41:A7:A5:F2:FD:6A:C0:6D:15:64
X509v3 Authority Key Identifier:
keyid:A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:0e:9b:ff:c9:f9:e5:87:25:ce:58:d2:12:04:aa:08:28:35:
53:50:4c:2f:3e:62:63:55:34:e1:a5:17:b9:9d:90:96:53:10:
8e:35:16:93:df:b3:b0:0f:ec:1e:23:47:19:5d:6b:c1:04:d9:
c7:d5:ea:2b:f1:3d:b4:b7:5a:20:48:93:5e:4f:41:82:5b:fe:
4b:4e:f6:c1:da:ec:c6:29:14:ea:32:ce:94:27:dd:a0:07:b1:
57:02:cd:32:5b:6f:8f:39:b1:a6:22:c1:70:66:1f:e6:a2:9c:
f1:9f:7c:c9:03:03:dc:65:2b:fc:69:47:d5:e5:3c:8b:c1:92:
70:7b:66:1e:d7:3f:46:f1:a3:46:97:1e:fb:aa:d9:81:d8:d8:
81:c6:2e:45:7d:68:97:5e:69:16:80:81:97:35:1f:51:6d:5c:
06:b3:60:dd:a7:5b:30:88:03:b3:b0:6c:1f:86:c2:8d:aa:d2:
7e:b8:f2:76:0c:7c:83:0a:83:25:94:07:17:98:bb:5b:c0:e7:
f3:ab:48:cf:45:04:bf:b0:5b:3b:bd:05:f8:a8:a3:b8:8c:ca:
5f:9c:5f:c5:9e:c9:27:4e:cf:17:29:6a:80:90:4a:a0:0c:f1:
b8:17:84:a0:af:a0:ab:58:bf:9d:a5:01:81:c1:c7:0d:f7:2e:
c7:d3:0e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:47:32 2025 by rpki-client