Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
File: ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft (raw, json)
Hash identifier: TpBNq9kR3rNgCHu/iV5svZ/dCnCaQhay/xMtoa7P3yk=
Subject key identifier: AA:DD:42:89:99:EB:4E:39:08:EB:19:CE:96:69:AD:06:C9:BB:6E:60
Authority key identifier: A2:33:A6:AF:5F:68:84:32:87:9C:7E:0C:07:72:CD:DD:8F:17:6D:B5
Certificate issuer: /CN=a233a6af5f688432879c7e0c0772cddd8f176db5
Certificate serial: 0196470E73E14DF3EC2ADCB44717293053BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ojOmr19ohDKHnH4MB3LN3Y8XbbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
Manifest number: 14F4
Signing time: Fri 18 Apr 2025 04:00:51 +0000
Manifest this update: Fri 18 Apr 2025 04:00:51 +0000
Manifest next update: Sat 19 Apr 2025 04:00:51 +0000
Files and hashes: 1: ojOmr19ohDKHnH4MB3LN3Y8XbbU.crl (hash: FU9rpqY5lMYxEF2fC81ZEZG63TtqDvv/1SHpPatPEeY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ojOmr19ohDKHnH4MB3LN3Y8XbbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:0e:73:e1:4d:f3:ec:2a:dc:b4:47:17:29:30:53:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a233a6af5f688432879c7e0c0772cddd8f176db5
Validity
Not Before: Apr 18 04:00:51 2025 GMT
Not After : Apr 19 04:00:51 2025 GMT
Subject: CN=aadd428999eb4e3908eb19ce9669ad06c9bb6e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0a:3d:c7:ab:dd:6d:85:6b:ef:9d:73:75:02:
80:9f:34:95:43:98:52:a7:0c:dc:e0:cf:50:4d:03:
0c:03:ae:49:b1:7a:45:4e:1a:c7:bf:ca:ad:64:05:
c9:ff:52:9c:c9:50:08:e8:79:fa:3d:7b:e3:52:e6:
5d:de:58:a3:08:94:8c:ad:0c:70:d9:93:7d:81:81:
83:5b:61:97:16:71:21:5b:2f:26:e7:e6:d1:0b:a1:
cb:07:4a:aa:b9:48:6d:70:a6:e0:62:6d:a1:29:1c:
bc:ae:ff:05:1a:02:62:bd:40:c6:35:82:8a:06:6d:
85:5c:28:0b:f2:24:03:8a:30:fa:ed:9f:4f:07:ca:
e3:72:3e:02:d1:45:dd:04:8b:3f:8c:9a:0c:56:c3:
10:4e:8d:7c:1a:f8:39:23:a6:2f:b5:0d:fa:78:0d:
da:f4:27:dd:0a:ac:d1:00:31:44:83:ac:cf:1e:87:
c9:98:52:46:8b:79:53:0c:96:bd:1c:02:96:f3:a9:
c5:7a:31:96:8c:fe:c7:49:1e:c0:6b:7a:c0:ea:ea:
23:ef:a7:a0:48:99:b1:b8:9e:a5:b3:f1:e4:c7:aa:
6d:22:44:e4:03:e9:3d:1b:c1:e7:b3:4e:9b:cc:91:
8e:f8:12:ee:fa:6d:24:d7:e6:3b:7c:5b:c4:48:c6:
6c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DD:42:89:99:EB:4E:39:08:EB:19:CE:96:69:AD:06:C9:BB:6E:60
X509v3 Authority Key Identifier:
keyid:A2:33:A6:AF:5F:68:84:32:87:9C:7E:0C:07:72:CD:DD:8F:17:6D:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ojOmr19ohDKHnH4MB3LN3Y8XbbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:32:94:81:10:1c:74:05:2b:28:54:b0:5f:ca:a8:dd:c3:39:
cb:8b:91:e4:82:f1:46:58:6f:b9:22:17:80:2a:a7:1e:9a:af:
32:22:ad:2b:6e:72:ed:e7:3c:fc:3f:59:a6:16:b9:df:dc:c0:
42:c0:b8:78:e4:2c:80:9b:df:31:08:19:d1:eb:51:46:f0:dc:
40:2f:c8:30:d0:6f:d8:05:27:f8:fd:47:c2:75:ff:0c:ed:f0:
cf:89:7c:b2:fa:ef:d6:03:fe:a5:74:dc:40:9c:97:30:35:22:
25:82:40:f1:dd:cf:87:09:1e:90:e3:33:01:d8:c0:ed:d1:9f:
54:6e:07:de:7c:a0:6c:92:0f:3f:05:18:a2:dd:55:20:8c:9b:
4f:6d:ee:97:01:80:56:17:27:ea:70:29:b3:f5:bd:21:65:d8:
9f:e3:9f:f8:08:ba:ed:44:44:57:e7:61:b6:c9:5e:17:32:ca:
90:1f:31:e2:47:a9:5d:32:df:70:4d:ef:03:ad:db:6b:77:f6:
81:63:06:88:72:0b:c3:a4:2d:ee:d1:12:f7:69:83:03:bb:f0:
ec:23:1f:04:96:e3:8b:5b:5f:97:fc:46:0d:a2:c9:4a:05:c4:
8b:71:d4:1b:a1:a6:c2:b4:89:72:7d:70:73:70:74:54:ad:ba:
a6:02:68:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:44:31 2025 by rpki-client