Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: jAbisOwFGA8uZRUO+QHcW/ZMoEBrlVOFx7Zcx8GTPJ4=
Subject key identifier: 98:53:7F:03:7D:AD:DC:CC:F7:84:F7:C1:61:F5:5F:6E:03:00:CB:C7
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 0196A12D4B85FE651A1D652158B2A6B69AD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 04EB
Signing time: Mon 05 May 2025 16:00:22 +0000
Manifest this update: Mon 05 May 2025 16:00:22 +0000
Manifest next update: Tue 06 May 2025 16:00:22 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: O9/YRZ2x2+6paEpkRmV3OwdL8KqwtPL2hDqkUG7qt6M=)
2: Uw9JbudeiyQ7Eqq4TZWKYitXR5Q.roa (hash: PECjzeRoLCDiJc+fMhDdhpnjzdeMhIqjV/edQ5qJgEw=)
3: wU54z4fun2n9dhW1jQFZ_YTk2yQ.roa (hash: DU49T5R+7YoJZkuw0c2yae6qHjR70t2dzMX7X38YQ80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 16:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:2d:4b:85:fe:65:1a:1d:65:21:58:b2:a6:b6:9a:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: May 5 16:00:22 2025 GMT
Not After : May 6 16:00:22 2025 GMT
Subject: CN=98537f037daddcccf784f7c161f55f6e0300cbc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7c:ea:36:e9:9f:44:dc:f6:8b:2a:4d:40:b2:
1b:62:b4:1f:6a:7f:ba:e4:84:22:b6:a4:a2:e6:01:
8d:54:29:30:7e:68:76:44:ee:4f:eb:c6:3e:4a:98:
e2:e7:79:a8:b5:1d:8a:e9:d6:7b:dd:f5:16:70:14:
90:e2:4b:c3:b3:48:8f:ab:a5:ed:c8:b2:dc:24:9a:
8e:c5:d1:11:e7:89:bd:b3:e3:fd:26:3e:b8:33:07:
c6:c2:78:a0:a4:32:8f:25:f9:b3:bf:01:47:62:95:
24:31:9e:5d:42:83:0a:cc:9b:71:c8:97:25:17:c3:
49:64:da:cd:66:cd:b5:6e:c1:95:dc:f2:0c:58:73:
52:6f:37:32:fa:25:7d:6b:ff:c6:b3:da:34:d0:fa:
24:74:40:27:94:f2:f1:db:a2:eb:a3:b3:31:81:a0:
1d:06:5f:29:8b:5e:fe:50:26:53:69:bd:8b:ff:57:
59:b2:c6:d8:b8:4d:48:ce:28:c4:d9:c5:be:9a:70:
10:01:0e:fb:99:98:f8:ce:7a:09:5c:5b:9d:de:fe:
b8:3a:12:b5:8b:c9:51:21:20:d3:08:63:74:8c:d7:
ff:ed:b9:a1:33:5c:cd:1d:7e:81:12:7a:d6:b1:a5:
16:5b:ae:c9:d7:44:e3:c5:89:b4:29:d0:08:20:1e:
70:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:53:7F:03:7D:AD:DC:CC:F7:84:F7:C1:61:F5:5F:6E:03:00:CB:C7
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:02:53:a0:05:d5:b1:75:0f:34:f1:19:a6:2d:fd:6a:9e:00:
82:ac:c4:05:89:f5:8a:5f:97:00:56:f8:c1:dd:13:77:f2:3d:
86:c1:86:78:13:83:1f:b5:8a:50:14:26:a5:c7:7d:d7:07:0d:
1f:20:2b:20:66:ba:3f:1c:8f:8f:29:63:be:86:78:7b:05:d4:
b6:83:f3:7a:cc:8b:95:19:9a:d9:c8:ae:89:87:37:c3:16:3e:
a2:48:15:41:a0:d3:4d:9c:67:92:0e:88:24:b6:44:25:45:92:
f8:04:8a:a0:10:37:d0:51:6e:18:eb:c6:23:0b:5f:81:d2:53:
f7:03:25:db:67:29:73:59:c7:f5:80:3f:26:b2:a8:91:77:b0:
12:ae:07:2a:3c:31:d1:9e:4e:39:56:4a:41:3d:d9:33:c5:3c:
ba:d7:2a:88:f3:75:d1:32:0b:ab:29:4d:40:48:04:67:2a:36:
cb:b8:8c:99:bd:bd:e7:72:3d:54:3d:97:12:e3:13:a6:49:a4:
13:78:73:a5:21:f5:ab:1c:13:52:b0:a8:15:73:eb:b5:79:66:
a1:2d:3e:ab:12:d5:4d:c7:6f:96:5e:b3:a8:ec:be:04:18:8b:
3d:98:90:5a:b6:4b:87:c2:1c:ae:98:f2:13:e6:d1:c1:61:d2:
dc:b3:6a:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 00:46:36 2025 by rpki-client