Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
File: OQGfnAqym0Lg2xLprIezJ7_FWvk.mft (raw, json)
Hash identifier: g/t0StuJogSTtI4wVduKJj/EI5YXv+Gqc9T3Cfy1Kgw=
Subject key identifier: CC:84:2C:63:CC:DA:09:62:11:91:90:50:9A:54:D3:A2:2B:7E:A3:9C
Authority key identifier: 39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
Certificate issuer: /CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Certificate serial: 01964F6CE4EC5EEEA931609062CDAE01C4B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
Manifest number: 14F8
Signing time: Sat 19 Apr 2025 19:00:58 +0000
Manifest this update: Sat 19 Apr 2025 19:00:58 +0000
Manifest next update: Sun 20 Apr 2025 19:00:58 +0000
Files and hashes: 1: OQGfnAqym0Lg2xLprIezJ7_FWvk.crl (hash: xNyGxJSY5ApITfoA8bx4lgoYlXQmrrWjWzx0hzFH2TY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6c:e4:ec:5e:ee:a9:31:60:90:62:cd:ae:01:c4:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Validity
Not Before: Apr 19 19:00:58 2025 GMT
Not After : Apr 20 19:00:58 2025 GMT
Subject: CN=cc842c63ccda0962119190509a54d3a22b7ea39c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:22:b9:e8:3b:6f:5f:9d:2e:2e:ea:33:0b:01:
18:16:aa:c2:4a:7c:35:da:27:a1:cc:b8:66:08:34:
52:46:b4:28:7e:b9:b6:70:a9:84:ca:0e:55:de:d1:
a4:e6:65:4f:07:73:75:8f:c5:c0:67:d4:26:c8:7c:
59:60:ed:d5:94:6a:35:7b:e9:24:74:c8:2e:68:f9:
ae:cb:47:a0:df:37:99:0d:f6:4b:c6:52:8a:fa:86:
34:d2:2a:cf:49:83:36:06:be:13:85:5b:73:a2:63:
2d:e3:3d:42:cd:29:c7:8e:5f:d3:a5:1d:0d:a9:91:
1c:bf:a5:8f:22:92:1a:82:cf:b0:2b:6a:d8:85:9d:
9e:a8:d0:77:e2:fb:0f:c7:52:7f:e2:f4:36:35:06:
a8:04:3a:2d:61:5d:08:a7:74:2b:1a:bd:bc:cc:9a:
02:89:9b:be:90:09:19:52:cd:43:3c:c1:6c:77:79:
2c:48:bb:05:19:e9:8f:cd:5b:6e:6c:47:65:1c:47:
e2:4c:f1:b5:a4:0e:6d:2f:99:ca:18:fa:78:0a:70:
ad:68:82:50:1f:5a:b0:b9:d1:fd:90:58:68:67:aa:
81:c6:3c:a0:db:01:c7:35:9b:b4:26:9b:69:01:7e:
37:54:bd:f9:43:5d:c1:55:05:ae:1c:d4:f0:6d:6c:
2b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:84:2C:63:CC:DA:09:62:11:91:90:50:9A:54:D3:A2:2B:7E:A3:9C
X509v3 Authority Key Identifier:
keyid:39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:f5:14:93:05:15:97:8e:ae:c2:a9:ab:6e:0a:1f:76:bc:21:
af:13:b1:10:4d:f1:52:1b:30:3f:00:50:99:c2:a7:bc:9e:9f:
17:a3:bf:ea:13:11:d5:96:b5:1c:1e:2a:ad:f4:c4:81:96:51:
aa:87:7d:53:b7:45:28:c6:7e:44:d5:2f:65:4f:f7:49:61:92:
94:85:18:af:e7:12:6d:67:40:42:8c:14:05:07:cc:bf:66:8f:
b4:6a:ef:6c:9b:6e:2c:25:e0:5b:bf:cb:49:03:92:0e:0d:21:
f8:dc:93:ac:07:ad:04:1a:40:0e:e3:45:6a:da:5e:f2:2c:90:
c8:e9:85:20:eb:f6:ce:dc:d1:0f:1b:43:ea:c6:45:bf:ef:81:
7a:1a:ad:75:6d:50:8f:01:48:b5:cc:05:6c:87:f1:2e:2f:86:
2a:fe:75:10:e1:99:6f:04:b6:af:5e:fc:36:fe:d7:c2:84:61:
da:43:a0:7b:88:db:10:06:69:cd:fa:b6:07:76:77:71:eb:23:
b2:25:46:99:d4:70:c4:13:db:7c:c3:db:f5:06:ea:73:63:48:
88:2b:ce:39:5b:aa:85:0e:c2:d8:6b:3b:d4:9e:11:9f:ea:ee:
ad:af:1a:01:11:4c:e6:9f:78:9a:b4:17:ff:90:fa:f7:81:f2:
72:1c:b3:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:25:33 2025 by rpki-client