Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: CZ47xrmGA+i9dI9RmZVM/tG+EKnNuS4PaLqInOuAQ14=
Subject key identifier: 62:22:CF:A7:56:38:2C:D8:C5:83:E3:C0:DA:18:A7:B8:03:1A:03:DB
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 0196B96CBCB017B832A35E0B66A825A84F92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 10AF
Signing time: Sat 10 May 2025 09:00:33 +0000
Manifest this update: Sat 10 May 2025 09:00:33 +0000
Manifest next update: Sun 11 May 2025 09:00:33 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: mmDeDhvfJynYm5oYKC036GlFUXRq5UWTANjmxUnYQtU=)
2: hbt7WcwBqBoPW6rBuDIQ3SNZmzc.roa (hash: gFxs6hHw3FxfMImk+yNCzFI6L94MQhx1psEtxtAsjbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:6c:bc:b0:17:b8:32:a3:5e:0b:66:a8:25:a8:4f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: May 10 09:00:33 2025 GMT
Not After : May 11 09:00:33 2025 GMT
Subject: CN=6222cfa756382cd8c583e3c0da18a7b8031a03db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d5:ff:4e:0c:a5:ba:c6:b9:35:e4:c2:b9:96:
8c:a7:21:bd:74:d4:15:47:d0:6f:bb:1e:0d:a3:a1:
9e:1a:80:0d:99:b9:2d:0f:79:7e:83:e8:bd:94:78:
6a:bd:a1:73:be:36:e0:16:48:68:64:07:21:42:80:
45:77:c4:09:1b:22:c2:02:4c:ec:bd:60:62:df:ac:
ad:7e:e8:09:60:9e:b6:81:05:c0:30:2c:0b:4e:d8:
0e:50:94:8f:13:10:26:eb:a6:13:cd:0c:a9:69:39:
44:7e:ae:1c:bb:4a:ac:a0:dd:f8:2a:77:02:7e:d3:
ad:b9:48:a7:83:7d:0b:3f:87:b7:8c:32:6f:dd:ba:
d8:14:ca:5a:94:b7:9a:bf:32:ed:a3:10:62:4a:ce:
70:7f:8b:89:cc:32:a5:44:3b:69:12:a9:8f:1a:a4:
e9:d1:f7:ab:10:01:f5:ed:d4:24:45:12:fe:17:30:
78:15:f6:02:d7:48:a1:45:40:9d:78:21:57:c8:51:
23:9d:74:98:cf:bf:e2:f6:ee:8e:33:e5:42:43:d8:
c7:ba:b7:f7:38:7a:14:88:e6:f4:11:f7:3b:18:2e:
2c:19:59:38:d1:38:1b:3b:cb:cf:3d:fc:18:b1:35:
98:0e:0c:bf:27:b3:da:63:76:ba:fd:c3:50:3d:e3:
79:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:22:CF:A7:56:38:2C:D8:C5:83:E3:C0:DA:18:A7:B8:03:1A:03:DB
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:c9:75:3d:fa:5b:d5:1a:71:4d:bf:bf:f8:0d:72:0e:27:54:
dd:9b:90:3f:45:42:2a:6f:6d:fc:e8:24:ed:60:9e:5d:38:5f:
71:1f:46:6c:c0:a8:e5:96:8c:ac:26:ed:13:31:fc:34:b1:be:
78:2f:ec:03:ed:79:a5:c3:b1:74:bd:d9:d4:57:66:88:f4:24:
92:5b:1e:73:fb:cc:27:d9:55:32:d8:59:07:a2:d6:c2:2a:6b:
62:28:0e:b0:da:15:43:d0:93:9e:0c:f1:9a:80:3f:f1:b0:c7:
52:15:5b:1b:74:ca:2f:3d:f5:82:35:a1:32:01:2a:3d:ec:12:
05:76:45:d3:62:f4:ac:40:5f:16:7b:fb:77:b0:d2:53:b4:3a:
32:50:7b:e9:a0:df:2a:ee:bc:e7:a3:ef:f8:e1:e2:4c:a2:55:
63:8e:6f:4e:e0:a1:bf:2e:83:8d:06:80:3b:41:7d:a4:f2:15:
63:14:4f:1a:31:e4:a5:55:9d:a5:10:4e:4a:2a:ef:61:09:c3:
76:6a:b0:b6:b2:dd:40:c7:47:09:18:b0:1b:f6:a6:99:bc:f8:
81:38:b1:49:00:04:01:c1:4c:e1:19:bf:87:87:5b:d1:8d:e3:
8a:c5:a9:82:a6:70:1d:ee:44:3c:4b:74:a7:5a:81:4c:8e:6b:
ca:35:11:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 14:46:20 2025 by rpki-client