Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: cArVZh/EKP/85Yzp1rnpe0zTUL8w3Ye8u2EzjKekqWk=
Subject key identifier: 93:24:30:EE:AA:AA:16:B6:42:53:A2:7A:68:16:E4:5D:3F:86:88:45
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 0196DC6684DD02E0464417AB483E4F5527E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 14D4
Signing time: Sat 17 May 2025 04:00:28 +0000
Manifest this update: Sat 17 May 2025 04:00:28 +0000
Manifest next update: Sun 18 May 2025 04:00:28 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: UDvKjOnlSv9CwN5/zaI+9zfZx6R1qimOn3G6HSBX8Rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 18 May 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:dc:66:84:dd:02:e0:46:44:17:ab:48:3e:4f:55:27:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: May 17 04:00:28 2025 GMT
Not After : May 18 04:00:28 2025 GMT
Subject: CN=932430eeaaaa16b64253a27a6816e45d3f868845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e0:d6:f1:42:69:ff:49:ca:17:19:11:4f:e4:
e8:bd:50:ba:5a:dd:e7:9a:a2:d9:3f:55:72:07:3a:
02:d1:79:0a:0d:1f:19:09:27:fb:37:05:97:72:50:
51:92:dd:67:dd:4c:b4:ce:f3:22:5a:98:56:ed:3f:
3e:f2:cb:55:f9:d0:12:e1:c7:58:48:71:7f:4a:4f:
a4:a3:4a:38:e7:e8:24:da:5c:fd:a5:17:4d:44:b7:
75:d9:bd:9d:a1:52:2f:65:4e:ca:5d:4f:4e:64:70:
17:77:1e:cf:59:fd:62:21:86:e7:52:46:14:8d:21:
83:14:11:c5:f8:90:72:43:49:fd:d8:6d:25:f3:0b:
b4:a1:f7:04:74:58:a2:82:c8:da:9e:24:76:91:0c:
e6:7e:53:92:9d:53:97:4d:72:0e:95:35:ad:11:80:
24:9f:3e:e1:14:b9:42:cc:55:c9:9d:05:ce:fb:95:
21:1a:32:3f:f4:f8:d7:9a:45:49:8f:c1:05:0f:73:
95:f9:cf:61:5a:85:c2:63:da:61:b6:9a:ac:17:cb:
ed:66:e7:d4:1b:b8:cb:3d:d0:67:7f:f3:ad:73:51:
79:b7:4d:e7:0e:ea:64:bc:1b:0f:ee:d7:cf:ca:88:
c4:db:a8:43:e4:b0:56:4a:05:21:86:46:d1:10:1c:
86:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:24:30:EE:AA:AA:16:B6:42:53:A2:7A:68:16:E4:5D:3F:86:88:45
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:77:d7:ce:91:2b:d5:80:70:27:8b:94:a5:da:cb:3d:d1:c0:
27:54:e5:66:77:a9:ab:0b:4b:81:c9:f0:02:d9:c2:4a:e9:f9:
0f:02:81:e7:51:63:26:d1:b8:ee:d7:0e:b6:63:e8:38:a3:1d:
9f:aa:bc:11:13:ad:23:0d:bc:bd:71:60:0d:df:05:04:a2:8b:
51:c0:2f:0f:e8:fc:f0:15:58:76:b9:dd:36:71:ce:e5:a6:ed:
51:52:b4:df:d7:f5:e3:42:c3:4a:68:e6:1d:63:13:78:bc:ab:
d9:ec:05:14:3a:14:f0:59:e8:84:79:f9:76:06:8a:73:df:da:
09:14:fe:47:42:50:ea:fa:82:f2:0e:de:13:f1:35:d5:39:38:
f1:fa:55:7b:37:76:88:a3:d6:d0:30:7f:9f:9f:84:a0:3c:da:
85:c8:38:f4:20:e9:60:29:e7:30:65:be:de:38:c9:0d:f6:38:
c0:a3:3d:7a:b1:9f:a2:1c:06:e3:5a:c5:c4:ae:99:9f:3d:c0:
8a:d3:cc:95:4f:c0:26:70:a1:36:4f:bc:6b:2b:2f:69:f6:6e:
cc:61:f1:7f:3b:f2:85:51:56:ab:95:2c:4d:c2:9f:60:2f:fd:
46:6b:2c:6c:7c:2e:9f:95:96:e3:c0:83:1e:93:23:ca:e7:ac:
aa:1a:fd:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 08:32:10 2025 by rpki-client