Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
File: Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft (raw, json)
Hash identifier: googX7sLBKHOUwrhqZv/PZX3oJHNzri1yGLaJyg67sM=
Subject key identifier: 2D:46:12:3C:08:2F:76:40:F9:98:8E:C2:B0:BA:22:28:47:B4:2B:14
Authority key identifier: 3A:19:35:B3:CB:C2:52:7E:AF:16:7D:69:B2:07:8D:33:E4:C4:DA:20
Certificate issuer: /CN=3a1935b3cbc2527eaf167d69b2078d33e4c4da20
Certificate serial: 0196C6BAC3417565A516378DC69B13A958C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
Manifest number: 067F
Signing time: Mon 12 May 2025 23:00:50 +0000
Manifest this update: Mon 12 May 2025 23:00:50 +0000
Manifest next update: Tue 13 May 2025 23:00:50 +0000
Files and hashes: 1: M82sfYNUsyqK13nZZfstvwDd7Fs.roa (hash: Pwd9phO+f2VaYBcGPbgT8icjGcqdGdD4Q6fe+fixav0=)
2: Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl (hash: hLD30P8zXA0UQmwvv8l2AbtM+veRGwXfNkGspBgc8J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:ba:c3:41:75:65:a5:16:37:8d:c6:9b:13:a9:58:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1935b3cbc2527eaf167d69b2078d33e4c4da20
Validity
Not Before: May 12 23:00:50 2025 GMT
Not After : May 13 23:00:50 2025 GMT
Subject: CN=2d46123c082f7640f9988ec2b0ba222847b42b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3d:46:7b:b0:fc:34:a2:1c:bd:03:25:5e:ae:
b5:8b:5a:33:2f:71:f0:e9:76:57:3c:05:a0:6a:40:
a9:cc:ac:95:63:77:77:a3:d3:fd:ea:31:18:5a:cc:
1d:48:96:c1:71:df:70:ed:0c:ee:da:03:d0:d0:8d:
d5:b9:bb:00:db:00:08:9a:32:42:f2:bf:fe:ed:93:
c1:fc:bd:c9:f0:5d:69:0c:54:ba:5b:69:8a:8b:00:
f1:bf:ba:26:f5:0f:b0:90:58:c5:cf:cc:40:78:77:
11:4e:15:98:04:f6:c4:1c:c6:88:67:23:80:3c:a6:
4e:da:f5:d1:42:a5:ce:0c:de:03:c6:b6:4e:05:32:
ae:26:39:02:21:47:90:19:e4:24:28:50:6c:5e:d6:
29:93:07:7b:08:10:4c:b7:e7:ad:f5:6d:68:b4:14:
f3:69:76:36:1d:72:88:b8:b5:fe:8d:82:c2:29:22:
a1:10:43:46:84:64:52:59:ce:bb:40:6a:04:c5:af:
53:f6:78:b4:9c:cf:17:31:45:bd:0d:4d:46:9f:45:
da:8c:71:ac:17:2e:2c:f9:61:ba:ad:38:20:f5:7a:
14:ff:08:0f:c0:1b:de:8b:ea:9a:13:43:dd:0b:60:
14:a4:3d:69:9e:03:54:c6:4d:65:28:88:52:a4:c9:
d1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:46:12:3C:08:2F:76:40:F9:98:8E:C2:B0:BA:22:28:47:B4:2B:14
X509v3 Authority Key Identifier:
keyid:3A:19:35:B3:CB:C2:52:7E:AF:16:7D:69:B2:07:8D:33:E4:C4:DA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:2a:00:2f:0e:16:f4:b8:ec:a8:21:fc:0f:a9:04:57:62:95:
fe:d3:dd:b6:b2:9d:c2:db:14:db:73:a7:19:b9:98:db:08:27:
c9:d9:60:b3:13:e0:8f:d3:be:2a:2d:1c:40:97:02:68:37:37:
24:9b:aa:b2:36:17:06:ab:c2:21:5f:41:3a:95:3f:3d:7a:f1:
23:50:e8:14:5d:29:65:2d:6a:a2:62:9b:05:05:56:83:aa:5e:
30:3f:e3:76:79:79:a9:13:bc:54:dd:06:e4:60:87:b7:67:a8:
c4:e9:04:a1:79:17:75:94:63:a3:2b:2e:e1:a1:e5:44:b1:11:
4c:f6:71:46:30:17:94:ce:b2:72:46:29:92:0f:8b:23:dc:e2:
48:01:56:b6:33:fe:47:2c:32:53:30:e9:b8:22:24:a2:9e:a0:
91:9a:c4:af:59:cd:f4:b6:e8:ae:c3:cd:7e:c4:7f:b5:1b:da:
bd:5a:54:56:d4:ff:eb:98:b8:38:36:ef:9e:92:e0:b9:39:03:
e9:f7:74:30:8a:af:54:35:f9:c2:e2:67:c6:ed:48:26:67:5a:
b8:09:3f:f1:5c:4a:95:24:8b:1e:25:84:00:67:08:1f:58:ea:
51:53:62:98:37:67:ed:be:72:eb:3f:18:ab:02:c5:be:a8:48:
10:3f:b7:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 03:01:47 2025 by rpki-client