Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: Sx5xucq65YX5kYtVNrj7d8u1Du6rHFHeBcIgAlTxW4Q=
Subject key identifier: 96:C7:4E:7B:04:1A:75:E1:4B:23:92:BC:E3:92:E6:7B:27:E5:50:64
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 0196B22154A236A23A13571179A3D02B97C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 1530
Signing time: Thu 08 May 2025 23:00:50 +0000
Manifest this update: Thu 08 May 2025 23:00:50 +0000
Manifest next update: Fri 09 May 2025 23:00:50 +0000
Files and hashes: 1: e7noKfAbhqxWKb_WV7vm2kP8eVk.roa (hash: hWpS0joUiL0TvCY+c8SO6LZjwhfmBfd8ch+Qp+RpKHk=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: K6pJr9O5KcKh3Dpo/yYw8q4YkvTLcb0GSIA78S6xQcA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 23:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:21:54:a2:36:a2:3a:13:57:11:79:a3:d0:2b:97:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: May 8 23:00:50 2025 GMT
Not After : May 9 23:00:50 2025 GMT
Subject: CN=96c74e7b041a75e14b2392bce392e67b27e55064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:96:61:1b:f2:e9:8c:88:2b:28:9a:80:f2:87:
d4:d8:31:03:82:a3:bf:4d:ef:e3:e9:7a:7c:c4:2e:
f7:aa:cf:1d:7b:7e:6a:ff:42:92:43:4e:9c:36:3e:
b9:55:b2:7c:61:96:9d:a8:d8:8a:54:d8:9b:f6:a9:
d0:d4:83:3c:d0:e6:bb:14:cc:be:df:13:1e:ba:5b:
8e:65:d0:b0:54:d1:dc:ca:7e:2a:95:13:a0:81:ea:
8d:67:f1:a4:63:26:de:1b:82:14:98:84:8f:d1:03:
b0:46:ba:c2:44:ae:2d:56:27:42:da:a1:d4:17:33:
52:c0:86:5c:42:75:7c:8b:45:37:da:13:a5:61:ce:
fe:79:ed:52:c8:42:bb:9d:1a:16:14:98:a6:8b:19:
d2:d4:33:9f:58:15:00:3d:1a:af:60:27:ed:f7:6e:
4a:83:e7:8d:e5:e4:62:cc:8b:79:a4:23:68:8e:e3:
56:85:22:54:62:ff:e0:00:83:ca:2c:2b:f4:70:c9:
b0:9f:99:80:c2:3a:23:f1:52:ac:49:62:16:33:cc:
ac:5b:2a:e1:b3:c6:92:a3:44:9d:29:10:a3:fc:cd:
98:73:9c:4b:91:f7:f2:e5:b6:01:8f:55:62:28:a8:
5c:12:5a:d4:6a:4d:94:34:5c:7d:2e:a7:e4:91:21:
de:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C7:4E:7B:04:1A:75:E1:4B:23:92:BC:E3:92:E6:7B:27:E5:50:64
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:f3:f0:44:90:e1:1c:24:c7:2a:ee:e1:f4:46:62:35:1a:52:
58:30:35:3a:10:a6:e4:9c:61:4a:04:ec:ea:9d:bb:31:e4:80:
8e:ea:0c:1c:6b:d2:fc:11:05:c7:1d:76:48:37:0c:58:e8:c1:
09:15:67:72:7c:01:6c:29:77:62:21:fa:f0:94:68:20:0b:34:
ff:22:6e:15:a3:ea:3e:de:3c:57:24:39:71:e9:89:8d:11:8b:
99:40:d0:f7:6d:66:23:b5:32:6e:8c:2d:0d:c7:63:17:c4:5b:
de:07:da:d9:a7:5d:dc:af:d0:9a:04:f5:ca:db:67:77:7e:12:
c4:2f:9b:de:6e:24:dd:0a:76:2f:79:cb:f4:02:12:79:fe:a1:
a9:dd:60:82:f3:b4:ac:c7:66:af:f9:5e:1f:73:e8:1c:81:8e:
1d:20:a4:f6:a0:55:32:b0:33:8e:55:4b:36:27:f1:ee:53:16:
e4:57:21:e1:27:be:d7:54:ad:28:d8:1e:59:69:1b:9a:56:2e:
bd:ce:b2:50:32:42:30:4a:7b:6d:f6:38:fb:47:af:12:ef:e4:
37:b3:76:60:a7:f8:73:a1:c5:6e:82:08:ff:b4:a3:de:93:c1:
5d:1b:46:49:a6:ab:68:a3:2d:ef:be:e9:44:37:c3:fb:c2:94:
f6:30:12:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 03:46:18 2025 by rpki-client