Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
File: o-zqyBJVNKV5R5YtsokD-tesOvk.mft (raw, json)
Hash identifier: tfOm45SRlvifefRZv6OZl1LdPcLkTORdQrOnxImUnrI=
Subject key identifier: 68:D2:8A:85:77:FF:9B:3A:94:67:A7:E6:96:03:6B:F4:30:60:39:E0
Authority key identifier: A3:EC:EA:C8:12:55:34:A5:79:47:96:2D:B2:89:03:FA:D7:AC:3A:F9
Certificate issuer: /CN=a3eceac8125534a57947962db28903fad7ac3af9
Certificate serial: 0196C5A84A8E6663C22D3F375249B0B1A877
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
Manifest number: 14B7
Signing time: Mon 12 May 2025 18:01:02 +0000
Manifest this update: Mon 12 May 2025 18:01:02 +0000
Manifest next update: Tue 13 May 2025 18:01:02 +0000
Files and hashes: 1: NZCcmWMu3SL4lvLRXGmLfuZeQm4.roa (hash: EKuPrmDOqjvIb0P5ALzTBFMc5GRcKpakwtWPyDrs5oc=)
2: o-zqyBJVNKV5R5YtsokD-tesOvk.crl (hash: FPt86DJBL6Q2500w9eQVYjwPUXUdbZq4uQrq7T6RYo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:a8:4a:8e:66:63:c2:2d:3f:37:52:49:b0:b1:a8:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3eceac8125534a57947962db28903fad7ac3af9
Validity
Not Before: May 12 18:01:02 2025 GMT
Not After : May 13 18:01:02 2025 GMT
Subject: CN=68d28a8577ff9b3a9467a7e696036bf4306039e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2c:ba:a0:b6:b3:6f:29:1f:21:93:4b:77:09:
6a:0c:c9:6a:2e:6e:2f:5c:2c:2d:05:67:b3:f2:2c:
c9:77:3d:7b:0b:89:81:bc:58:a6:08:9b:05:f8:5d:
a2:be:07:07:39:2e:d6:c8:24:81:df:57:de:09:3d:
ec:f4:d1:a9:90:75:c9:51:3c:bc:a4:a6:3d:fd:97:
76:6a:f9:fe:a3:2e:e8:cc:dd:86:10:b7:e6:ac:36:
d6:9d:bb:15:c6:cb:14:5e:18:1a:0f:5b:81:01:8a:
0b:51:3d:9d:01:ac:a2:17:7e:55:77:d5:fa:72:81:
7f:14:f2:60:1b:7b:5a:0e:48:0f:1c:91:ca:0b:d2:
fd:2e:41:31:1d:fe:52:d2:f9:14:d9:4c:96:95:15:
83:d2:51:01:11:97:35:07:ed:ad:77:b4:d0:06:9f:
98:39:5e:d1:4c:74:4f:e3:1f:62:8a:5d:31:f6:06:
84:71:d7:66:15:b1:06:b1:f9:2e:f1:46:6e:30:43:
5e:02:1f:be:a9:e1:46:04:45:2d:54:c4:cb:56:5e:
0d:26:77:6f:c5:f8:01:0d:af:f4:04:88:9d:3c:ff:
95:71:20:67:4e:2a:50:2f:9b:32:0d:45:77:51:63:
b7:26:ff:46:76:7a:60:61:ed:34:87:ef:0b:8d:c3:
7a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D2:8A:85:77:FF:9B:3A:94:67:A7:E6:96:03:6B:F4:30:60:39:E0
X509v3 Authority Key Identifier:
keyid:A3:EC:EA:C8:12:55:34:A5:79:47:96:2D:B2:89:03:FA:D7:AC:3A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:5f:69:a9:f7:7a:f5:f2:1a:da:d1:7b:83:bc:f8:da:35:22:
90:54:db:86:31:ff:c1:2e:f2:8e:35:05:eb:ed:5d:39:47:4d:
c1:37:6e:fd:a3:27:72:0c:2c:49:56:01:9e:e5:e6:83:d4:21:
ea:aa:ac:71:79:65:8b:c4:f0:b4:5e:73:89:2b:56:a9:0c:2f:
14:f9:8e:60:ca:3c:41:99:23:24:a0:56:46:87:09:d0:75:06:
a8:b6:5c:f5:24:ee:56:47:ef:7f:19:a0:f9:09:82:96:1e:ab:
b0:8a:bf:50:b9:85:d3:39:2e:24:76:3b:36:09:ff:48:3f:e6:
3a:63:d4:80:17:fd:c7:49:f2:41:5d:31:ad:f2:62:f4:fa:d8:
7e:e0:de:f9:88:c7:10:1d:6f:c7:4a:7d:60:51:14:96:dd:4d:
40:84:fd:a0:df:ce:96:25:c1:fc:e5:2c:9e:16:c5:8e:17:21:
18:7b:35:9d:fa:fb:49:22:bc:2a:41:fb:eb:4c:d2:31:e6:a6:
e6:3a:ca:80:8c:30:d2:ba:7c:80:66:d4:c3:fe:0d:d9:c8:a9:
a2:55:d9:5c:4c:31:05:40:f3:0a:2b:76:ae:29:4a:92:9e:30:
4c:c0:f9:e2:0a:42:cf:1a:33:99:be:fe:29:69:4b:0a:6f:67:
e9:d2:54:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 22:45:14 2025 by rpki-client