Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: JKN0uFBWIDUBSPs7wZ3b8IZzAlXAwBcZRw5VBvdsHdE=
Subject key identifier: DC:F0:18:6B:8B:54:75:4E:1D:CA:C9:2A:7C:D7:34:FC:0C:F1:94:AC
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 0196C570F7B167B79BBEF0C89763FB3DF5FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 04E3
Signing time: Mon 12 May 2025 17:00:36 +0000
Manifest this update: Mon 12 May 2025 17:00:36 +0000
Manifest next update: Tue 13 May 2025 17:00:36 +0000
Files and hashes: 1: lG9M0ytelOsltsM45OHzpDj8VA0.roa (hash: NbXxBP1wpUJzGfc6WpWH6JS4IiG1rIjC9o+D9ASG5hQ=)
2: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: uZT7Aak0BR8gmQiEBolUt8T3nlliNVa+X0d2qbPgngQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:70:f7:b1:67:b7:9b:be:f0:c8:97:63:fb:3d:f5:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: May 12 17:00:36 2025 GMT
Not After : May 13 17:00:36 2025 GMT
Subject: CN=dcf0186b8b54754e1dcac92a7cd734fc0cf194ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4b:91:e2:8b:9d:ef:e0:52:38:53:a6:11:3e:
8d:30:82:4b:6b:ef:24:23:e7:76:b9:90:10:41:b8:
85:35:f2:e9:59:e7:5d:85:8c:70:fc:c9:74:62:a5:
4d:eb:c8:84:bd:2b:e8:1b:0a:21:6e:9e:12:bd:44:
38:85:a3:f4:d9:8c:f2:95:ca:0d:96:26:51:a5:55:
cd:a7:57:b1:3c:f5:92:61:7a:c6:18:e6:b6:1b:7e:
a0:f9:e5:4b:31:d0:fb:28:26:48:10:8c:cd:da:48:
6e:18:7c:30:78:1c:53:f0:58:bf:87:ca:58:a6:0a:
4f:b2:d0:34:09:a5:27:d9:b9:43:a1:45:59:b9:ad:
9b:72:6c:d8:10:1f:30:3f:fd:1b:85:47:1d:cb:d8:
90:0a:e0:59:3a:99:05:d8:90:86:17:5e:c7:7f:51:
04:d1:16:d4:ed:33:7f:2e:e5:0e:71:3b:81:df:dc:
62:cb:0e:95:72:7e:f0:ee:10:85:f7:a1:8a:7a:73:
1f:fe:aa:03:3a:2a:46:c7:7a:64:7b:94:38:95:b5:
f3:95:69:c7:37:ae:5c:a4:b7:6a:75:30:b1:56:88:
4a:46:af:b6:03:c5:ca:36:6f:f4:1c:6a:92:4f:9e:
06:7c:79:53:b8:b4:e9:7c:35:e9:40:b3:c8:d7:d3:
df:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F0:18:6B:8B:54:75:4E:1D:CA:C9:2A:7C:D7:34:FC:0C:F1:94:AC
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:f7:d1:67:85:9e:04:23:cc:89:cc:a4:bb:00:2c:ed:87:92:
3e:4c:fe:0a:f0:6e:30:61:5f:bb:9b:07:65:e2:fb:c4:53:2f:
0d:65:e0:0d:19:0a:3d:a2:ec:cf:84:85:57:c6:6b:ec:9c:b2:
79:7b:50:ba:d6:ca:20:d0:ec:c3:88:28:f0:3d:fe:7a:62:fe:
5b:5f:34:64:47:20:05:bb:7f:e5:94:e2:51:d1:61:bf:d1:70:
8f:55:aa:21:b6:0e:73:03:bb:60:f7:e4:87:15:5b:eb:8e:f2:
94:32:df:23:7b:18:19:e9:65:9c:65:a7:13:87:d4:91:ac:3f:
16:ab:4d:af:a9:08:5d:3e:8e:aa:3c:13:0f:77:b1:71:01:0e:
47:d4:9b:b0:f3:e3:0b:17:5a:46:60:3c:f5:78:7a:c3:3a:20:
6a:52:bf:c1:61:89:f5:69:67:5a:d5:5f:1e:c9:1e:bf:af:3d:
5a:9f:ed:4c:cb:14:7b:d8:a8:40:c6:bd:6b:71:ca:e6:a6:b9:
8f:00:76:fe:25:6e:48:c8:a0:a9:e7:ae:f0:84:3d:09:94:65:
20:62:66:59:d1:fc:c5:65:3e:e2:5f:eb:06:73:5c:8e:6d:0d:
a0:87:d7:b5:55:af:8b:b7:43:f9:e9:1e:a1:b1:1b:50:6d:bf:
52:36:25:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 00:10:21 2025 by rpki-client