Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
File: Ooz8_rg-iPNror8kRduewegvDVQ.mft (raw, json)
Hash identifier: z/nYSXWhROSBH1T3vxHdMUzQxt2PhioftO/bNp+napE=
Subject key identifier: 88:E1:52:89:AD:4D:ED:5F:F3:68:17:E1:DD:FF:35:0A:B9:66:D3:2F
Authority key identifier: 3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
Certificate issuer: /CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Certificate serial: 0196AEE8EF7F3B7E96BF52C03A782BFA9D1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
Manifest number: 152E
Signing time: Thu 08 May 2025 08:00:23 +0000
Manifest this update: Thu 08 May 2025 08:00:23 +0000
Manifest next update: Fri 09 May 2025 08:00:23 +0000
Files and hashes: 1: 26TbrymsKsZjBkQHIbbRRWaFR8Y.roa (hash: SWIdCtaxTysSBJj/hZn1IHZ7qzsZ9zOqjJPPtoUQNGw=)
2: Ooz8_rg-iPNror8kRduewegvDVQ.crl (hash: /iU1D5PaOb8iDo6Wl43Ua1yXL80spkjJRu1Qp4QHa98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:e8:ef:7f:3b:7e:96:bf:52:c0:3a:78:2b:fa:9d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Validity
Not Before: May 8 08:00:23 2025 GMT
Not After : May 9 08:00:23 2025 GMT
Subject: CN=88e15289ad4ded5ff36817e1ddff350ab966d32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ef:fc:4a:bd:d6:3d:5c:c4:c0:34:c5:d6:30:
3d:5c:03:27:68:7a:95:c0:53:4a:9d:f7:fa:d7:bc:
fb:94:0c:1e:6e:43:9a:51:29:12:4a:64:bb:4b:87:
51:cf:2d:60:20:b1:d6:75:22:10:39:94:49:e1:e2:
19:d1:04:21:ce:84:51:3b:57:45:9d:ae:28:60:58:
9b:bb:90:92:98:b9:32:c4:03:45:6b:2a:cd:e7:a5:
ba:ff:61:a0:18:ee:5d:06:b3:44:be:b6:f4:8d:7a:
d2:1c:53:7c:df:45:5d:bd:56:ac:aa:18:b9:41:c1:
d1:09:09:af:e7:de:47:4d:5f:fb:df:56:d4:c5:8c:
e5:90:d2:60:ec:79:89:b7:be:97:fa:54:c8:61:fd:
c3:3f:f5:84:4a:c6:ff:8d:49:31:a2:e5:c7:61:ac:
d8:52:d0:b5:81:d4:a7:29:54:28:d9:2c:92:cc:8f:
c3:7e:c0:12:d6:d3:9c:17:b3:df:17:2f:dc:2b:0d:
2d:c0:c3:9e:36:28:19:19:ed:15:ea:7c:81:98:c9:
63:bd:23:78:73:f7:e5:fd:40:50:22:78:b4:b6:92:
6e:68:5c:5f:79:7a:ab:51:79:ed:a3:40:cf:ec:04:
f5:96:c4:6f:85:f2:02:e9:37:49:8d:cc:31:ee:c9:
db:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:E1:52:89:AD:4D:ED:5F:F3:68:17:E1:DD:FF:35:0A:B9:66:D3:2F
X509v3 Authority Key Identifier:
keyid:3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:43:93:15:98:66:4b:e0:50:fe:1a:86:3e:d8:5f:8c:52:0f:
49:d5:30:1d:19:d3:92:1d:e5:82:25:9f:a3:ff:d3:de:2c:00:
20:ce:f7:19:2a:d9:28:9b:c9:12:1f:21:4b:a3:2d:57:4d:2e:
24:7a:a4:4b:50:c0:44:5d:18:c7:ed:e2:84:f0:8f:17:52:bf:
6d:9c:e5:66:e8:39:72:46:ba:1e:09:0b:8f:4c:a7:a2:07:92:
b0:ee:8f:16:00:e0:3a:5f:4c:9a:d7:e4:21:3c:1d:f1:1d:7e:
20:7b:b5:c6:0e:77:e5:ae:39:92:23:6a:7d:fd:76:fd:a3:b6:
20:30:1c:aa:ec:ec:a1:fd:4f:39:be:fd:06:7a:97:71:7e:fc:
e5:01:81:7b:90:e6:ae:e9:69:bf:89:79:6f:83:4b:df:f4:54:
52:19:1b:89:05:ce:6d:cd:7e:8a:ef:08:c6:81:5b:83:cd:4b:
6e:dc:e4:85:d3:95:09:16:78:7c:23:37:9c:0e:c9:ac:09:89:
bd:89:1e:40:3c:36:87:fc:23:39:74:88:16:4e:5a:6c:06:db:
c8:a6:d1:ff:d2:4b:aa:e9:53:5e:d8:6b:26:40:93:d6:d4:16:
d8:f2:c3:d2:9e:ca:65:f7:44:e6:24:e7:84:f9:58:cb:dc:bc:
5d:3d:e1:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 16:20:42 2025 by rpki-client