Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
File: oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft (raw, json)
Hash identifier: 9RrvpidVEKJMtUVhg6vfJQkL9+saJUtQQWvBAT6g/lo=
Subject key identifier: 3F:6A:8D:3D:A5:77:A9:60:9C:34:CB:12:3A:91:FC:B6:48:35:DD:9E
Authority key identifier: A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
Certificate issuer: /CN=a1655282be419d21222b506fb7a368c3fe5db23d
Certificate serial: 0196564A76F9341A3C17C055C7DB4E9F872D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 03:00:42 +0000
Manifest this update: Mon 21 Apr 2025 03:00:42 +0000
Manifest next update: Tue 22 Apr 2025 03:00:42 +0000
Files and hashes: 1: SxgKNPaYJVhAK36SOSTuyxJmYzI.roa (hash: iBEUhnRScZ+rajzC9bqU9rcXbnYIQMvrpQOY+tW8FQc=)
2: oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl (hash: CRjsuXomKwx0kViGEou7xqn5JQ/lx2drWNwWXf4+mdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:76:f9:34:1a:3c:17:c0:55:c7:db:4e:9f:87:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1655282be419d21222b506fb7a368c3fe5db23d
Validity
Not Before: Apr 21 03:00:42 2025 GMT
Not After : Apr 22 03:00:42 2025 GMT
Subject: CN=3f6a8d3da577a9609c34cb123a91fcb64835dd9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1c:c4:7f:8d:43:df:e5:ac:ce:f2:7c:29:85:
92:0a:0c:c9:5e:3a:42:7f:68:84:69:28:69:64:e8:
af:5d:b3:3d:7e:4e:c3:3d:f6:83:34:c6:bd:41:be:
68:78:1e:eb:0a:07:e5:ce:dc:0e:c4:ca:65:43:b1:
0e:96:3e:fe:6f:e4:61:b1:0a:a7:a6:b4:48:07:dd:
d8:7d:1c:e4:86:62:57:a7:5b:ca:f4:bf:3c:5e:ad:
72:a3:b7:29:99:54:8e:01:1b:62:c5:85:7e:87:23:
90:aa:d5:0d:69:43:de:2d:94:bb:6c:be:83:c9:d4:
9c:dd:1e:b5:e6:38:7c:37:40:85:a8:de:8b:fb:2f:
d1:83:a8:58:ea:6f:1b:8a:64:6f:81:16:a4:a9:80:
ca:ec:99:9f:62:e4:80:ec:7e:6a:4e:18:82:f7:8e:
3a:0a:fd:0c:a0:94:21:0e:cc:eb:cc:3b:52:c5:71:
b9:87:0f:5c:1b:0a:eb:2f:21:de:20:7f:e6:99:af:
b7:cb:2d:56:be:11:fa:23:f3:5a:ed:79:a0:8d:e5:
e6:10:ba:9b:61:37:b1:0b:35:f3:04:0c:fe:b4:58:
6f:1a:95:41:27:83:c5:40:ab:2f:9c:cc:99:d4:21:
54:51:53:f9:38:63:12:59:06:80:3f:5e:ac:50:2f:
b1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6A:8D:3D:A5:77:A9:60:9C:34:CB:12:3A:91:FC:B6:48:35:DD:9E
X509v3 Authority Key Identifier:
keyid:A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:7c:b1:d8:9a:d6:16:c8:b8:cb:f8:04:f0:15:1a:82:1c:d5:
fe:70:bb:66:a7:4e:0d:67:fc:84:67:cd:42:ec:e1:20:9e:6f:
ab:0e:fe:af:77:ca:a8:ce:78:09:51:9b:76:12:66:b6:b9:2c:
c5:d7:c3:44:b5:8a:c1:9e:db:57:d9:00:e8:fc:ac:0e:34:a6:
a3:eb:1a:0d:7a:30:bd:b5:ee:3f:af:19:d1:52:d5:58:3e:22:
60:a8:eb:a4:86:4f:45:ff:72:b3:db:9c:e6:2b:c3:20:02:45:
19:13:6b:37:d9:ea:b1:65:27:8b:d9:b4:4d:ab:df:60:f6:2c:
54:66:76:3a:87:0e:73:32:62:24:7b:f1:b8:ae:69:fe:64:39:
de:41:42:d9:9b:3e:f4:d0:fd:e8:66:45:7a:02:da:ee:32:dd:
bf:16:ed:7d:8e:c7:54:bb:b9:2c:65:11:20:ec:0b:0d:68:85:
46:82:a3:0b:50:ed:f1:fc:30:85:ab:24:f5:8f:6c:1a:a7:e7:
bf:f3:45:9c:c1:22:db:d8:5f:62:cb:cb:12:17:c2:ca:bf:86:
8c:ea:e2:0b:9c:11:72:9a:fa:21:94:ec:5d:2e:00:89:8c:3d:
29:ed:23:32:9e:5f:a0:51:cd:d8:cc:22:11:a5:08:b9:d1:37:
56:b7:4a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:56:13 2025 by rpki-client