Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: 2yC6dysEXbxg7hozQjp3mqCvChsSAtoa+lUq4s/iERQ=
Subject key identifier: A6:B1:30:9D:2E:F8:F1:41:98:AE:D1:EA:54:A4:18:8F:11:5C:2F:CD
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 0196D2F5F2A7CB758001E246E2712D8E2628
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 049A
Signing time: Thu 15 May 2025 08:00:55 +0000
Manifest this update: Thu 15 May 2025 08:00:55 +0000
Manifest next update: Fri 16 May 2025 08:00:55 +0000
Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: 8au4gpm2g2NdD3PWF4Oys3q2hjXxOBNdxCXW38atyxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 08:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:f5:f2:a7:cb:75:80:01:e2:46:e2:71:2d:8e:26:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: May 15 08:00:55 2025 GMT
Not After : May 16 08:00:55 2025 GMT
Subject: CN=a6b1309d2ef8f14198aed1ea54a4188f115c2fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5c:a7:3f:a0:3f:b2:85:8a:d3:90:a6:b7:8b:
c8:33:dc:a1:f0:75:2d:91:70:7d:09:37:45:c4:61:
ae:3b:24:37:d2:ee:a2:1b:06:59:71:89:47:17:97:
79:51:db:2a:14:a2:75:66:ea:95:5f:bb:c5:5e:e4:
30:4f:89:bb:4e:3f:15:ee:7e:97:c5:4b:f1:8e:bd:
e2:6f:ce:3a:e3:38:82:2d:c6:85:40:83:a1:6f:51:
0d:fb:b5:0d:01:8b:6d:75:9d:7c:65:47:d2:25:f1:
1d:67:cd:1f:52:2f:11:83:6a:de:1c:9a:16:c3:c3:
cb:f0:60:ae:cf:6f:7b:80:0f:26:b1:c2:fd:e9:d9:
c9:96:cb:36:28:35:9c:ba:cf:58:45:f3:10:a4:3b:
f3:ed:17:fd:db:c9:76:e9:62:f9:19:14:36:2d:4b:
34:34:43:44:91:49:0e:99:04:be:a9:6f:2c:e4:f3:
04:3c:b5:57:4c:1c:54:0e:18:78:4c:ca:1d:35:61:
dd:80:42:94:61:33:8c:9e:1a:2d:1c:3e:34:ae:b5:
3c:38:84:5b:c5:2d:9e:38:a7:85:2f:fa:b5:25:7d:
0b:df:12:54:cb:a0:62:df:76:a0:0a:2e:f6:af:a6:
54:cd:1a:ce:d5:c0:1a:f0:93:4e:03:f2:8a:0f:f3:
5f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B1:30:9D:2E:F8:F1:41:98:AE:D1:EA:54:A4:18:8F:11:5C:2F:CD
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:43:6e:c6:15:20:81:a5:e8:6c:cb:7d:56:f6:7d:da:04:df:
df:67:db:4e:71:f4:26:83:1f:45:5d:03:d8:39:15:4a:1f:ce:
ec:b9:3d:9d:7e:44:ba:50:fb:ba:cd:06:f2:a5:06:68:54:1e:
af:3f:fa:aa:9b:38:91:65:9f:05:fd:15:4f:2d:6d:4a:be:98:
63:e7:6f:88:47:64:ee:27:8f:92:97:4b:9c:9f:b8:28:d6:b4:
a7:0c:07:02:1c:da:63:52:21:ba:ec:68:57:0d:2f:05:b1:6a:
be:ae:4a:bc:2d:39:59:ea:07:f1:29:dd:2b:d1:9f:40:43:a5:
18:16:bb:14:05:de:a5:60:e5:4c:dc:9e:6b:3b:7e:e9:cf:75:
b6:34:06:f9:50:bb:86:50:0b:eb:ab:0a:e8:2e:c8:a8:16:fc:
89:36:a7:05:be:71:13:24:f5:e0:9f:b3:64:31:49:f0:14:b3:
b8:14:63:64:b9:ca:6a:de:e8:ce:46:06:68:5c:3c:97:44:fe:
5e:ba:61:be:c1:ae:d7:5d:e1:ad:1d:92:36:90:d5:8c:18:c9:
97:b0:f7:b1:0d:cd:ad:fc:53:b4:92:e9:bd:9b:d5:05:b9:87:
d5:0d:a9:15:39:71:6a:03:c9:30:05:16:00:89:41:5e:01:3e:
22:c1:77:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 18:07:10 2025 by rpki-client