Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
File: OExBksVwSp65aPXPUzuaH3pmYa0.mft (raw, json)
Hash identifier: rx1xJsolB4S9L9FHjxdyjRQ8ej2B/AeCRgbLGErZvwY=
Subject key identifier: 4B:4C:12:62:78:85:11:78:B0:73:AD:08:B2:F9:2A:04:29:CB:5C:15
Authority key identifier: 38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
Certificate issuer: /CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Certificate serial: 0196ABB10F7A0D3329EFF0FBDC3FE4988CD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
Manifest number: 0104
Signing time: Wed 07 May 2025 17:00:29 +0000
Manifest this update: Wed 07 May 2025 17:00:29 +0000
Manifest next update: Thu 08 May 2025 17:00:29 +0000
Files and hashes: 1: OExBksVwSp65aPXPUzuaH3pmYa0.crl (hash: uS/Y9kf00Cs+PKJ4eBdT1cKhCDQVNnXEfiLSfQyBZKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ab:b1:0f:7a:0d:33:29:ef:f0:fb:dc:3f:e4:98:8c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Validity
Not Before: May 7 17:00:29 2025 GMT
Not After : May 8 17:00:29 2025 GMT
Subject: CN=4b4c126278851178b073ad08b2f92a0429cb5c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e7:a8:f7:e3:a1:d8:1c:0b:db:a3:7e:a0:3c:
4b:77:37:fd:2f:fc:e6:84:0a:2e:da:ba:2a:29:4a:
de:ea:c6:88:97:f0:b7:a6:89:a6:4f:dd:d5:a9:a1:
89:dc:c1:69:39:55:52:64:5b:45:a7:b0:12:6f:e9:
41:13:2e:83:b6:3f:c2:00:62:05:ad:17:b5:e3:45:
cb:f6:aa:57:1b:50:e9:36:23:ba:37:ac:28:62:88:
c2:97:90:f5:b5:3f:30:09:1d:6c:5b:88:c6:19:f7:
34:24:bf:d5:14:0a:37:51:39:fe:d9:1b:c3:41:13:
bb:18:09:f1:34:a6:c1:5e:7f:20:24:4f:db:d7:d4:
cb:89:c0:db:04:fd:f4:e7:23:ee:e8:76:77:04:fa:
dd:e5:27:8a:b6:58:29:3c:19:50:7b:e5:10:61:df:
f2:f7:bb:c4:ba:fc:89:71:d3:f3:59:a4:2a:60:27:
b9:50:78:77:5a:dd:70:76:a9:2b:e9:62:e1:c8:c9:
b7:ba:2c:80:5b:c2:e5:d9:2f:b7:28:62:07:35:0c:
af:5f:67:58:da:4d:10:39:cf:b0:d2:67:88:2f:33:
ec:51:2f:57:65:88:ea:21:59:55:b3:16:f8:17:99:
4d:77:71:d3:97:15:04:4e:cd:da:ea:1f:0f:26:4e:
a2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:4C:12:62:78:85:11:78:B0:73:AD:08:B2:F9:2A:04:29:CB:5C:15
X509v3 Authority Key Identifier:
keyid:38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:10:2c:15:71:3a:3b:fd:29:c1:27:84:94:5b:b3:25:7d:a4:
da:07:80:6c:b3:44:8c:62:6e:f3:50:92:ed:12:83:54:60:50:
87:65:2c:32:e1:c0:88:24:fa:2e:76:99:2b:fe:6f:35:f2:b1:
89:18:f0:0f:59:4d:5f:a4:7b:ac:cc:20:91:75:68:ee:ff:51:
13:86:e0:0f:39:1d:fb:d2:10:ad:c8:16:9c:ff:4c:24:a9:23:
17:8e:80:70:23:b5:d7:36:50:8e:96:0a:84:03:69:7e:29:c5:
bb:00:91:07:40:29:5f:11:17:ec:ef:79:58:9f:f4:23:c5:78:
46:b4:f4:26:0f:b4:e3:bb:1a:c3:1b:cf:60:af:12:4d:00:f7:
56:f7:95:95:fc:90:71:ab:16:37:27:30:ca:b0:c9:34:11:74:
b5:7c:73:52:e7:6f:d5:0b:1f:6b:6e:75:5a:35:02:42:57:e4:
80:fa:4b:5a:7c:b7:a2:db:08:20:15:79:88:32:d3:14:f8:96:
da:9a:55:3c:52:b3:fd:67:30:8f:41:85:f4:4b:9c:1a:f8:70:
45:b7:a1:11:a5:3f:2f:ce:3d:db:e2:84:4a:b2:89:e6:d2:53:
ca:12:ed:10:15:14:47:b9:a2:75:67:9c:27:41:98:92:28:77:
e4:bf:d1:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 22:58:56 2025 by rpki-client