Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
File: Ony1ktfk7HG2eFXR38VdnQZwVHE.mft (raw, json)
Hash identifier: chuOB1wQkpxn3wvWi/09AWWLir1RMzmXe6aKAwn+lF8=
Subject key identifier: 86:76:97:79:2B:DD:91:BA:8E:3B:B2:F5:23:B0:6C:4E:8F:04:4D:F2
Authority key identifier: 3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
Certificate issuer: /CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Certificate serial: 0196BDEE5D5FB852BB8A697638AAEC8F76F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
Manifest number: 0C1B
Signing time: Sun 11 May 2025 06:00:37 +0000
Manifest this update: Sun 11 May 2025 06:00:37 +0000
Manifest next update: Mon 12 May 2025 06:00:37 +0000
Files and hashes: 1: 5FA6usbApR1_cX5AgsEzHiEcMB4.roa (hash: 7OuczURaJl5BP/q53z8kXUiqcwX3Z4OY7NVnaBx1Pg0=)
2: Ony1ktfk7HG2eFXR38VdnQZwVHE.crl (hash: tQuDTWrgz4qQUkpl6CpNn9tbSecZ7bApWz30SZLtnb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 06:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:ee:5d:5f:b8:52:bb:8a:69:76:38:aa:ec:8f:76:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Validity
Not Before: May 11 06:00:37 2025 GMT
Not After : May 12 06:00:37 2025 GMT
Subject: CN=867697792bdd91ba8e3bb2f523b06c4e8f044df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b4:c1:ce:cc:97:18:df:91:28:2e:42:4b:40:
7a:52:1c:60:32:b2:63:09:12:1c:cd:9e:16:66:e3:
ec:02:d5:fe:8f:92:08:71:93:ff:19:af:37:e9:8c:
40:0f:c4:6a:61:34:4d:8f:e8:31:4e:83:50:db:8e:
f6:ec:d8:54:0f:75:93:58:f5:e5:26:91:84:2b:f4:
fa:76:42:1d:80:d0:4f:3e:37:39:e6:61:06:56:d5:
e3:75:28:8e:f5:65:ce:05:9a:6e:b1:bd:70:ac:00:
c5:28:13:45:bc:d6:30:6f:08:3b:9d:fa:18:9c:b7:
ff:04:61:4e:48:9c:d2:83:40:c0:bf:b5:eb:8b:23:
98:9f:dd:07:ee:92:c6:ee:ec:72:e1:77:3c:6f:3d:
59:e8:05:78:88:2e:3b:e6:f8:69:cf:4c:8b:da:11:
10:c5:16:c4:59:5e:e0:ef:5e:f6:f2:09:47:32:19:
e4:22:b5:6e:56:d0:5f:f9:a1:2e:32:c7:74:37:a9:
df:1d:53:1d:04:8e:74:19:83:8b:c3:0f:61:d0:33:
60:8f:a3:0e:20:bc:8f:68:62:38:60:9e:c3:6d:d7:
f9:e3:7b:75:9b:53:0a:b9:40:c1:04:48:24:c2:dd:
86:35:f1:da:5d:6d:c3:9b:e5:46:73:24:77:88:00:
b2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:76:97:79:2B:DD:91:BA:8E:3B:B2:F5:23:B0:6C:4E:8F:04:4D:F2
X509v3 Authority Key Identifier:
keyid:3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:83:cd:47:f4:a1:28:e1:ec:55:33:0c:4a:8c:d7:2d:f2:5b:
13:3f:26:ad:52:a7:23:89:4e:53:4e:d7:c4:56:96:ee:8b:ed:
4a:7f:33:00:88:22:be:fd:c8:f0:68:0a:2c:d1:11:ee:15:4a:
2e:63:d2:95:27:d9:98:24:7d:97:1e:f9:a6:93:69:97:e5:a9:
dd:c4:dd:ab:a7:d9:bb:27:7e:d8:03:c8:4e:4b:7d:62:5b:e6:
cf:eb:e5:cf:e6:48:47:ce:22:0b:5d:79:85:d4:26:95:45:6e:
56:3b:04:06:e8:df:1a:11:23:04:bc:c9:56:c4:4a:62:97:03:
3f:0c:2f:e7:2d:3e:35:bd:c8:ee:8c:b8:c5:6f:87:6e:94:20:
00:ff:49:83:2d:87:5a:96:11:04:94:20:ca:92:ce:e6:10:f9:
47:da:28:ef:60:07:a7:50:53:35:72:4d:74:f0:f4:69:40:23:
49:8c:4d:68:6f:5f:ac:8c:f9:49:d9:f7:fd:fc:d3:df:99:60:
da:72:81:b7:66:e8:9b:51:a5:ab:ba:02:66:b9:cd:06:26:1b:
3f:57:df:d1:69:89:37:d2:5a:67:d9:43:1f:81:7e:d5:8e:8f:
cd:a7:f1:f5:cf:d1:aa:de:0f:a7:4b:d7:54:ab:e6:fe:31:9d:
ea:08:23:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:45:02 2025 by rpki-client