Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
File: 0KOFQs_bHubgdermsQHnu1sUxDY.mft (raw, json)
Hash identifier: pJ946yOz+vzXq96myw7Wnp3ufpOr1ru272oT8HSYkWs=
Subject key identifier: 4C:D8:E2:4A:0E:11:C3:94:02:3E:3F:03:C9:F1:A4:31:05:FA:68:73
Authority key identifier: D0:A3:85:42:CF:DB:1E:E6:E0:75:EA:E6:B1:01:E7:BB:5B:14:C4:36
Certificate issuer: /CN=d0a38542cfdb1ee6e075eae6b101e7bb5b14c436
Certificate serial: 0196553826B9DB211EAA24F0E54845A526D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
Manifest number: 1196
Signing time: Sun 20 Apr 2025 22:01:05 +0000
Manifest this update: Sun 20 Apr 2025 22:01:05 +0000
Manifest next update: Mon 21 Apr 2025 22:01:05 +0000
Files and hashes: 1: 0KOFQs_bHubgdermsQHnu1sUxDY.crl (hash: BFboXPvNtxiP2rzcMGm81N2fZt1P8hRuSXaxwwDDck0=)
2: KrQvju8wsP_1pgegWQDfP_dBbsE.roa (hash: 41ILiMyCbiBXLBStCWRCt8ZnN2evNZdt0aku7rFi6gM=)
3: MT4hr9PSkUajZkci1pWS9v2orok.roa (hash: qezGbt2cfl90iVziKgXNGmy2fO9q+dUTbPbEn9xA5FQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:26:b9:db:21:1e:aa:24:f0:e5:48:45:a5:26:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a38542cfdb1ee6e075eae6b101e7bb5b14c436
Validity
Not Before: Apr 20 22:01:05 2025 GMT
Not After : Apr 21 22:01:05 2025 GMT
Subject: CN=4cd8e24a0e11c394023e3f03c9f1a43105fa6873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:11:eb:61:a3:aa:52:36:39:01:e9:60:4c:ec:
e5:b2:84:8e:19:8f:dc:a0:a3:6f:3e:6f:1a:ff:38:
76:65:39:a4:3d:c5:a9:ab:83:0e:d0:42:81:43:e2:
ce:16:64:9f:cd:7d:23:a1:ea:80:33:73:91:8d:88:
74:81:c8:a5:a0:26:95:69:f8:9b:46:8a:bc:db:05:
4b:4d:63:be:51:b6:29:c6:54:d5:7c:c4:af:5b:a3:
e3:ae:74:d1:e3:ee:0a:2f:c6:9b:9b:de:32:bf:d0:
bd:55:e1:a8:aa:47:ad:86:fe:8d:52:21:7e:65:e4:
4a:8d:7e:ea:2e:99:60:3c:23:d9:e1:b6:c2:34:8d:
6a:3a:9c:48:4b:c8:1f:be:fb:d9:9f:1f:13:56:1d:
26:e9:9f:1e:db:46:04:4b:ea:34:47:d3:4b:b5:0d:
60:f6:69:aa:c5:3f:13:1f:a3:dc:0e:b3:bd:1a:4d:
7c:fd:92:65:27:d2:a7:08:73:0d:59:2e:52:cd:de:
30:b1:35:9c:91:e9:ca:88:f1:de:d1:5d:41:c0:ca:
9f:7e:2c:bd:5e:d2:3b:ce:b6:74:85:6c:62:86:5c:
d1:73:be:f9:79:12:82:34:c4:a6:18:ec:b9:68:b0:
04:3e:ee:dc:bb:48:8a:d1:5d:1f:4f:f9:59:66:f8:
25:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D8:E2:4A:0E:11:C3:94:02:3E:3F:03:C9:F1:A4:31:05:FA:68:73
X509v3 Authority Key Identifier:
keyid:D0:A3:85:42:CF:DB:1E:E6:E0:75:EA:E6:B1:01:E7:BB:5B:14:C4:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:f9:97:b4:77:a2:60:51:ef:77:0f:20:d5:c4:28:8d:4c:cd:
25:d1:a2:aa:fd:a9:09:ed:b2:4c:0b:5c:d6:1e:c2:71:a3:ef:
59:f6:66:f7:81:55:99:50:5b:d2:78:ca:21:dc:3f:f1:6f:2e:
25:10:41:c1:fb:86:80:c0:2b:4e:23:e0:e2:f7:bf:cb:db:77:
3f:72:50:4a:22:ef:d5:75:28:ed:02:53:37:1d:f3:ea:5f:eb:
6e:71:f6:51:33:f3:cf:01:87:7d:fd:86:96:76:39:91:d5:25:
86:49:7d:27:1f:60:ea:31:b4:6f:43:6a:27:f3:3c:46:50:14:
b3:4e:6f:08:da:a1:86:c7:fb:b5:8f:9f:45:2c:02:6f:f8:0e:
3f:c3:23:f6:26:55:f0:a9:00:a5:11:a0:3c:ed:96:d9:52:3f:
5a:95:49:cb:b7:ac:be:99:ea:aa:20:10:18:e3:1f:f0:ff:10:
15:2a:d4:b5:28:54:4c:08:88:aa:23:83:4c:b6:68:85:48:87:
a6:18:ac:30:cb:42:a9:aa:91:59:87:11:bd:13:b4:e7:d6:ed:
d6:5d:b8:8c:51:2c:9d:1f:ca:35:ed:8b:a5:ec:c3:05:70:2a:
e2:2f:2a:3e:e2:76:3f:c5:aa:e1:71:56:d2:29:7a:aa:cd:71:
7c:30:49:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:26:12 2025 by rpki-client