Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: y8rXCalLRvnge6ZpGVjfcrDpLzRc6s/q7lWeRNRfb2s=
Subject key identifier: 3B:B8:E9:CD:9B:30:23:F3:C0:E4:09:30:1B:E4:6D:C3:AF:7D:DD:3F
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 0196BBFFECA09054EE75EAE56E4FD9B8C29A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 0CCF
Signing time: Sat 10 May 2025 21:00:33 +0000
Manifest this update: Sat 10 May 2025 21:00:33 +0000
Manifest next update: Sun 11 May 2025 21:00:33 +0000
Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=)
2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: Q5pH/8usovmvTcVb16iXumumcOtBOyuMGFfZrEzBFkk=)
3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=)
4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=)
5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 21:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:ff:ec:a0:90:54:ee:75:ea:e5:6e:4f:d9:b8:c2:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: May 10 21:00:33 2025 GMT
Not After : May 11 21:00:33 2025 GMT
Subject: CN=3bb8e9cd9b3023f3c0e409301be46dc3af7ddd3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:be:e4:da:eb:92:99:38:60:41:1d:e4:2c:95:
52:4e:da:4a:89:40:5b:e4:58:f4:27:48:05:bd:7c:
44:90:d3:42:36:fe:f5:42:fa:91:46:11:cc:33:3c:
11:dc:c1:23:5b:70:0b:c2:eb:f5:df:b6:b3:49:f9:
27:ac:bf:3b:bc:ed:9b:76:59:df:20:71:b7:82:16:
81:79:93:b4:93:a7:74:29:63:1d:1e:0e:7a:db:e9:
80:54:ec:4b:0e:ce:ac:b2:09:89:da:fc:83:f5:b6:
1b:7d:9d:79:34:6c:46:b4:5e:22:2f:5a:0f:ca:3f:
cc:cf:09:2b:10:98:95:4b:59:45:6d:de:1f:c0:a8:
ee:e9:c2:01:ac:5b:0c:f4:4d:2f:a1:f3:0e:3e:00:
65:60:f2:d5:55:f4:8f:79:11:0d:e8:2a:50:31:c0:
cf:df:29:5e:d1:f3:eb:6f:52:8a:a3:1f:e9:23:e9:
51:7e:3e:07:c8:a4:d2:25:63:69:7b:53:fa:80:78:
a5:2b:06:79:01:d6:23:51:c0:a7:3d:49:fb:17:a6:
f0:68:bb:31:3b:74:fe:29:f2:3a:e5:3d:b4:d1:58:
55:70:50:bd:fa:0e:a6:04:ee:4b:34:ca:ec:55:a0:
e0:19:e9:2a:2a:49:59:dd:f1:97:d0:8f:5e:f6:30:
68:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B8:E9:CD:9B:30:23:F3:C0:E4:09:30:1B:E4:6D:C3:AF:7D:DD:3F
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:e5:9e:0c:c7:8c:54:08:98:f4:e7:c8:65:7d:12:cf:c0:6f:
0d:9c:79:79:13:8c:28:4f:df:29:1e:c5:05:91:0d:f9:aa:98:
1b:a6:9b:c1:fc:f5:9f:96:00:18:fb:9e:9b:e2:ed:52:0d:9c:
21:1a:b6:c3:5e:db:f8:dd:4d:d8:20:0d:38:ef:14:d1:8b:72:
e8:51:39:dc:ac:0a:91:18:36:f2:ce:85:49:72:d1:83:99:a4:
7e:8f:35:b9:43:a1:30:53:6d:6f:e2:a2:60:b3:c4:27:07:2a:
79:71:cf:17:9b:ce:63:2a:74:b9:33:b7:7b:22:43:bb:30:8b:
33:92:da:fe:9c:f3:fd:b3:1d:cb:09:40:01:e4:3f:69:0d:84:
54:c9:a6:8c:34:31:18:94:f7:a7:c0:2a:57:72:8e:b4:82:4e:
d0:f2:45:7d:99:93:72:65:a1:55:c8:00:57:38:60:3f:8a:4f:
f2:fb:b8:d8:08:7c:66:9e:17:b8:d7:62:34:e8:17:69:b6:60:
d5:9b:49:dd:b3:47:0c:58:72:96:33:a0:aa:90:af:c2:4a:a2:
37:dd:aa:14:e6:aa:b1:0b:68:e2:11:21:a6:b1:91:e4:af:d4:
df:a7:93:f1:89:f1:bd:bf:f8:8e:47:32:12:72:82:14:51:ab:
21:73:99:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 00:52:57 2025 by rpki-client