Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
File: OYhH9wo15xCETpu4omK-3bQLfMk.mft (raw, json)
Hash identifier: MS0K+CTL0XJfZRU/pMx3Mqx3peBFp5phBkWUwaUOIE8=
Subject key identifier: 6A:17:F0:1D:1E:E7:76:1C:EE:D7:42:E7:BE:62:37:62:57:A1:44:87
Authority key identifier: 39:88:47:F7:0A:35:E7:10:84:4E:9B:B8:A2:62:BE:DD:B4:0B:7C:C9
Certificate issuer: /CN=398847f70a35e710844e9bb8a262beddb40b7cc9
Certificate serial: 01964EC7FAEC238E022EFB3F4D223BDF1FFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
Manifest number: 02BE
Signing time: Sat 19 Apr 2025 16:00:50 +0000
Manifest this update: Sat 19 Apr 2025 16:00:50 +0000
Manifest next update: Sun 20 Apr 2025 16:00:50 +0000
Files and hashes: 1: AKsS4j3-VaOHBWSMj23g7vx6Zz4.roa (hash: U4YaSKjxHoIRGGCP7ydVCxsh9Cu5QYl71iaS4zOmA2c=)
2: OYhH9wo15xCETpu4omK-3bQLfMk.crl (hash: eNgRXCxGABihT51OHaIH1Hpwtw7VvhsJaMUvLXrxP8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c7:fa:ec:23:8e:02:2e:fb:3f:4d:22:3b:df:1f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=398847f70a35e710844e9bb8a262beddb40b7cc9
Validity
Not Before: Apr 19 16:00:50 2025 GMT
Not After : Apr 20 16:00:50 2025 GMT
Subject: CN=6a17f01d1ee7761ceed742e7be62376257a14487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d0:42:97:5a:38:85:8f:26:7e:3d:33:6d:1c:
66:38:ae:eb:97:31:35:29:79:c1:e6:5d:05:65:d9:
5c:8e:eb:ed:c6:5a:f6:54:70:6e:40:28:50:18:5e:
9e:9c:61:fa:db:ad:73:ae:af:14:f3:fb:ae:d4:11:
84:eb:a6:fe:8a:11:81:03:aa:6a:f3:80:74:d1:c1:
8e:18:04:f8:6f:6c:a7:7d:b3:db:ef:5f:85:03:1a:
e8:bd:35:8d:cb:25:87:f4:0f:5a:b0:c1:6d:e2:d6:
68:c6:34:64:6b:5f:d8:7f:31:10:5d:c7:3d:ff:0f:
2b:c4:2c:14:e1:fb:e5:ad:bb:39:7c:59:63:6c:58:
88:d8:c0:0c:b3:0a:38:2c:18:c7:de:75:23:60:b5:
20:e6:2d:1a:6f:c3:aa:39:e9:87:57:e9:46:fe:12:
2b:13:9a:46:9a:9f:b9:70:c9:e0:46:4e:00:d5:e5:
71:42:b6:c7:9f:7b:ec:25:c3:bb:22:0f:0e:6e:c4:
94:ae:d2:b7:90:a8:dd:73:dd:f6:63:04:97:80:c1:
e9:be:12:b4:4c:99:1f:3a:48:fe:2c:df:8c:15:f4:
06:db:8e:a1:9c:2f:2a:28:4d:51:eb:59:6e:d1:ec:
96:a2:68:4e:a3:fd:72:43:00:df:c0:f3:bb:a0:ea:
cd:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:17:F0:1D:1E:E7:76:1C:EE:D7:42:E7:BE:62:37:62:57:A1:44:87
X509v3 Authority Key Identifier:
keyid:39:88:47:F7:0A:35:E7:10:84:4E:9B:B8:A2:62:BE:DD:B4:0B:7C:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:a8:14:af:33:d7:6c:5b:0d:07:a7:57:3f:bb:22:92:9c:0b:
d4:68:17:0e:bd:58:fe:20:8f:e8:9c:6a:e6:bd:f4:8f:53:1e:
d0:37:c1:4b:e5:25:4a:9f:b0:fc:b6:f2:47:f8:1f:4e:7f:19:
e5:19:12:09:6d:8e:7d:ae:44:05:f8:5e:33:81:8a:2b:c8:56:
43:ae:ec:2f:0d:18:6d:3c:21:9c:dc:52:33:42:18:0b:df:ba:
94:cd:04:f4:97:1c:0f:22:31:9f:ab:b6:00:1d:08:8b:14:10:
4e:b0:07:3d:f7:02:13:d4:ae:1f:6b:97:a3:55:7d:66:d3:82:
95:d5:8b:e9:0a:36:62:d0:1a:b7:7d:d1:97:6f:9c:64:4f:23:
51:72:7d:65:68:01:71:a4:15:7b:52:78:a8:80:9c:7d:8d:7b:
71:7f:22:5f:cc:ab:0e:34:6e:9e:a4:77:2a:fa:79:83:e8:35:
93:27:df:bf:e2:48:a6:f0:0b:44:5d:e9:1c:f9:bf:83:e3:b1:
08:0e:d4:7c:ab:40:bf:b4:6f:a5:a5:21:0a:e9:8f:4a:7f:e2:
0f:b2:38:23:8f:fb:66:bb:e8:65:0c:26:c1:aa:d1:96:87:ca:
0f:1f:43:44:a7:6a:2f:b3:2f:67:c9:03:12:06:85:f1:20:d5:
86:f8:41:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:01:12 2025 by rpki-client