Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
File: oYhrwvjZOpz8WoN-LydS7knyJHQ.mft (raw, json)
Hash identifier: 40Y8/X8OUyygep34uaQ3Wr012DfQdVtg/Y8kIZj8e7c=
Subject key identifier: C1:E6:CC:BB:70:F4:C1:2A:D6:97:6F:39:83:4D:F3:80:9C:70:9B:56
Authority key identifier: A1:88:6B:C2:F8:D9:3A:9C:FC:5A:83:7E:2F:27:52:EE:49:F2:24:74
Certificate issuer: /CN=a1886bc2f8d93a9cfc5a837e2f2752ee49f22474
Certificate serial: 0196E48E8C22C70E35D02894F6778664C53B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
Manifest number: 1544
Signing time: Sun 18 May 2025 18:01:09 +0000
Manifest this update: Sun 18 May 2025 18:01:09 +0000
Manifest next update: Mon 19 May 2025 18:01:09 +0000
Files and hashes: 1: oYhrwvjZOpz8WoN-LydS7knyJHQ.crl (hash: EPyooOGHSS1WZkN4F8/pFbXcdngbTqE0BUOd9Qv0cFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 19 May 2025 15:15:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e4:8e:8c:22:c7:0e:35:d0:28:94:f6:77:86:64:c5:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1886bc2f8d93a9cfc5a837e2f2752ee49f22474
Validity
Not Before: May 18 18:01:09 2025 GMT
Not After : May 19 18:01:09 2025 GMT
Subject: CN=c1e6ccbb70f4c12ad6976f39834df3809c709b56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:86:d4:c1:25:ec:df:3b:8b:45:b2:cd:2f:c0:
35:46:65:12:9d:5b:29:6a:18:b7:89:f0:42:0a:d1:
f8:5e:74:22:19:84:78:de:1a:b0:20:1d:e6:4e:dc:
0d:85:d6:11:47:bb:5f:c3:1b:ef:0e:58:df:d5:ee:
25:77:5f:79:89:8a:41:52:a8:33:dc:c4:c1:2c:d4:
64:71:dc:ed:12:cb:05:c9:cf:69:02:ff:2e:f9:5c:
05:af:c9:db:31:04:17:8b:5d:b7:ba:f7:77:d1:c1:
3a:87:64:11:39:a9:7c:29:7d:96:14:21:68:0f:30:
ec:9d:2b:17:9e:c9:7f:0d:69:0b:4a:a3:3e:1c:3b:
c6:e3:30:53:d9:d4:35:2e:0c:ca:c9:00:f1:67:b6:
77:f2:dd:ec:94:01:ae:e8:50:ef:3c:3f:4e:b0:f0:
90:8f:a7:d1:62:85:55:84:0c:21:14:27:db:00:78:
fb:50:eb:80:ff:84:09:e6:03:b0:3d:66:e1:d4:14:
99:b3:5b:0f:66:20:a6:3d:3f:95:d1:04:85:8a:1d:
75:7f:04:05:7a:d5:fc:99:85:a1:47:ec:18:50:a3:
17:ae:da:e2:28:a6:c5:5f:81:dd:91:27:aa:5c:0a:
79:32:40:db:1e:c3:e9:c1:cc:a3:ef:84:82:b6:65:
0c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E6:CC:BB:70:F4:C1:2A:D6:97:6F:39:83:4D:F3:80:9C:70:9B:56
X509v3 Authority Key Identifier:
keyid:A1:88:6B:C2:F8:D9:3A:9C:FC:5A:83:7E:2F:27:52:EE:49:F2:24:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:7f:e2:3e:0c:07:15:39:6d:5e:66:bb:e3:40:e2:8b:5f:0e:
f4:c0:56:bc:f3:5d:11:6f:1d:e3:bb:84:16:dc:b0:3d:07:49:
7c:ca:03:75:64:4c:a7:77:c6:ad:44:57:ff:15:4a:ef:4f:ee:
8f:6b:9d:29:3b:27:68:04:00:ac:ee:e4:31:e4:5a:c8:3d:8c:
a2:2c:d8:35:f0:cf:3f:90:48:8b:29:0d:9b:50:28:16:75:fa:
07:5e:0e:d4:39:ed:9c:00:f7:c3:20:98:47:1f:81:45:6e:cf:
16:d2:70:4c:7a:cd:d4:fc:0d:62:93:cc:3c:1d:94:a7:89:0c:
c9:bd:90:90:eb:c7:be:f7:3c:4d:86:fc:c7:74:92:f3:68:b9:
f2:09:64:37:9a:02:3c:26:be:65:84:37:fa:ab:07:91:28:92:
4c:97:02:52:6b:23:f7:2c:da:c3:f6:e0:01:30:45:ec:10:b8:
42:f6:51:c7:68:dd:9a:c5:3b:2a:ba:ca:7b:31:42:30:21:de:
d8:ae:0c:8f:11:d4:e4:90:53:02:f8:2d:53:7a:d5:d8:79:8c:
97:ea:d9:34:dd:41:44:2e:35:4f:a4:7c:43:e8:04:1d:79:de:
5c:9a:3b:3f:ce:fb:6f:af:b7:0b:79:0b:20:f3:26:16:bc:e1:
5a:ea:1d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 19 00:36:08 2025 by rpki-client