Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
File: Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft (raw, json)
Hash identifier: MYRKrFwrDoO7EbZi/MqqsRwvAvQNqyDQNXtIOdWQN6k=
Subject key identifier: F6:6C:F1:83:E5:D3:45:7B:CD:44:D3:F1:CD:C2:0B:9A:3C:99:32:DB
Authority key identifier: 3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
Certificate issuer: /CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Certificate serial: 0196B58FE25FA27BB4FDB2C98CC44280AF83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
Manifest number: 0EAC
Signing time: Fri 09 May 2025 15:00:27 +0000
Manifest this update: Fri 09 May 2025 15:00:27 +0000
Manifest next update: Sat 10 May 2025 15:00:27 +0000
Files and hashes: 1: N4CwZRnLnlumD-RJFVgkbIUrCBc.roa (hash: EtoC/NIHh5NhO9jyQ35IICnYchDtP+NYLu/Fs0pjNjc=)
2: Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl (hash: iSGCdOAQIprgMe/+jpPM2ukIL0+XumsX/cWs+rXMv6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:8f:e2:5f:a2:7b:b4:fd:b2:c9:8c:c4:42:80:af:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Validity
Not Before: May 9 15:00:27 2025 GMT
Not After : May 10 15:00:27 2025 GMT
Subject: CN=f66cf183e5d3457bcd44d3f1cdc20b9a3c9932db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4c:8d:a7:15:23:43:ba:4b:95:e9:e6:49:3f:
43:87:f8:32:4e:b6:99:9f:29:58:65:5b:43:74:2f:
4e:d3:d8:87:6f:41:5d:d7:6a:4f:62:00:a7:0a:1d:
b8:16:02:e7:5c:87:96:85:ff:39:df:b0:af:8c:82:
4a:7c:b5:e2:15:6b:5d:ba:3d:34:67:95:dd:4a:57:
91:f6:b4:46:28:6d:27:1e:8f:6a:0d:59:91:43:12:
c3:53:66:9a:70:c1:69:1e:27:8a:93:a5:de:bb:e2:
8b:52:b2:80:a2:a2:5e:e5:21:44:fe:48:0d:48:c3:
9c:58:c5:81:47:78:dd:1d:e9:3e:2b:e6:cd:c1:63:
5d:0e:53:1e:ec:16:80:e1:9e:e3:86:87:e9:c6:01:
89:4f:5c:d9:08:55:35:43:6f:80:d9:a4:2e:49:de:
36:e7:97:a2:c4:81:21:54:16:74:d0:49:28:12:4c:
b4:fe:85:4b:51:51:91:5e:fa:71:0f:89:ae:a6:6b:
4a:c8:41:d9:fa:b7:41:93:36:38:b3:31:45:42:d5:
67:c9:63:4c:0b:24:74:2f:c1:fd:35:f2:20:73:6f:
15:af:cd:1e:09:4d:ea:cb:80:f2:ce:0a:1f:bd:27:
41:db:e9:29:91:9b:b1:18:1c:94:db:ed:22:49:9a:
42:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:6C:F1:83:E5:D3:45:7B:CD:44:D3:F1:CD:C2:0B:9A:3C:99:32:DB
X509v3 Authority Key Identifier:
keyid:3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:22:92:ca:03:69:8a:14:46:a9:11:7f:38:e2:cc:43:e2:59:
29:bb:93:c7:5e:e3:f0:9a:a5:3f:db:1e:7d:36:2e:73:4b:24:
89:2f:a3:3e:a7:1c:b8:66:f2:ff:23:de:e5:ad:5b:bb:1f:35:
91:53:80:f4:7e:0b:7b:d5:75:47:26:29:89:2c:f2:17:92:2f:
52:44:72:fd:0a:c3:ab:7f:9a:cf:a3:4e:b6:c8:15:76:96:29:
91:c6:1f:16:f7:57:a3:4c:d9:a4:13:b4:5a:38:e3:3e:08:4d:
2c:e9:ca:db:6f:be:d8:35:a4:8c:f7:21:0d:61:7b:f8:c6:c2:
c9:c7:e8:90:3c:83:a3:5f:bf:5e:be:1d:ef:2f:1c:21:19:5e:
2f:e4:af:33:fb:4c:98:63:ca:2c:05:c5:02:d6:05:ed:5d:cd:
b4:4e:cb:7f:1a:98:44:8b:2c:d7:7f:a5:d4:81:55:b7:82:ec:
e8:c4:23:5e:94:dc:3e:1c:d4:5d:30:f9:7c:33:34:3c:0e:d1:
1b:4a:2f:45:88:30:71:4d:60:04:cd:e5:ac:c6:00:76:59:b6:
f8:36:4b:a6:5d:27:4d:d1:4c:6c:60:e4:9c:44:7c:26:58:ed:
5d:cb:e8:86:9f:15:5b:fc:59:61:b1:60:15:71:93:c6:b4:17:
f8:6c:e3:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 18:50:40 2025 by rpki-client