Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
File: oUIVlcmI-yZTZeucofo_F_xXB28.mft (raw, json)
Hash identifier: OUxiEGM0Dy+nFqIQSsUXcZdg8kIrLUE2nLK+MhTcAVs=
Subject key identifier: 21:77:B8:CB:62:35:6E:CB:19:C7:00:49:5D:E5:DA:21:4E:FF:BF:6B
Authority key identifier: A1:42:15:95:C9:88:FB:26:53:65:EB:9C:A1:FA:3F:17:FC:57:07:6F
Certificate issuer: /CN=a1421595c988fb265365eb9ca1fa3f17fc57076f
Certificate serial: 0196C61582DA53CCD628DFCFC36BC65559A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
Manifest number: 1536
Signing time: Mon 12 May 2025 20:00:20 +0000
Manifest this update: Mon 12 May 2025 20:00:20 +0000
Manifest next update: Tue 13 May 2025 20:00:20 +0000
Files and hashes: 1: oUIVlcmI-yZTZeucofo_F_xXB28.crl (hash: ATrwIEFvylFyoZLnjMngcpBCeuogBjSyLePfQ0RPlAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:15:82:da:53:cc:d6:28:df:cf:c3:6b:c6:55:59:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1421595c988fb265365eb9ca1fa3f17fc57076f
Validity
Not Before: May 12 20:00:20 2025 GMT
Not After : May 13 20:00:20 2025 GMT
Subject: CN=2177b8cb62356ecb19c700495de5da214effbf6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ca:2b:31:f8:b0:c5:02:b3:74:15:e1:2c:83:
df:b7:9d:20:bd:ab:a4:54:5e:71:c4:0d:52:43:58:
6f:3a:0b:a6:eb:ee:2e:c1:32:c9:23:0e:17:80:ec:
b9:39:f8:5f:4d:c1:5c:c6:2e:9e:2b:b0:38:3f:0a:
fd:43:43:cc:7e:7a:8d:93:93:c7:ad:0f:d0:3a:b9:
6f:e9:12:58:a4:95:5c:4f:0b:6e:71:05:0d:dd:55:
0c:a0:26:25:ca:65:e6:f4:3d:36:07:9e:fc:f3:55:
58:1b:e2:df:e9:c8:f2:22:c6:5e:2d:81:a9:d4:74:
3d:99:78:68:f0:2a:da:06:b7:33:fa:98:db:1b:3e:
17:4c:59:52:55:66:50:cf:ce:30:08:6a:89:0a:ba:
1a:d6:17:e3:65:a2:52:e4:69:7b:d9:27:8a:52:1e:
ee:6e:cb:dc:01:7d:05:b3:6a:7e:9d:55:bd:37:5f:
66:7f:22:4b:f4:e8:ef:d2:75:7c:7e:c1:d1:7c:2f:
6e:57:57:f1:fb:15:5f:6f:60:26:e5:19:d9:c5:39:
49:ab:70:ae:11:b3:e4:32:ac:21:e4:de:2b:63:c2:
d3:c5:91:0d:c9:16:3d:f2:78:4a:ce:14:c3:bd:af:
3c:06:5d:11:d8:7d:c2:c5:29:5d:96:85:73:dd:b0:
b5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:77:B8:CB:62:35:6E:CB:19:C7:00:49:5D:E5:DA:21:4E:FF:BF:6B
X509v3 Authority Key Identifier:
keyid:A1:42:15:95:C9:88:FB:26:53:65:EB:9C:A1:FA:3F:17:FC:57:07:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:6a:ab:a5:13:ff:fa:d2:58:9a:d4:89:c4:a5:4f:ce:c0:a5:
98:c1:b9:ab:aa:29:78:bf:f1:2c:7b:c0:72:93:53:32:bd:16:
72:e5:81:73:83:8f:38:c1:ec:34:ba:e1:57:d0:9b:6d:76:00:
95:07:f2:aa:47:db:4d:ee:bc:08:f6:f8:08:26:d9:bf:9b:75:
c2:2d:36:50:1d:cd:3f:20:45:11:71:d7:8b:54:cc:9c:b7:75:
19:f7:f6:3b:3e:a3:fe:66:10:59:71:9b:e0:73:eb:c4:0f:64:
e6:2f:ee:f4:d4:6e:c7:a5:d9:e6:03:04:3a:0d:44:57:2b:a8:
2e:27:d9:fb:1f:8a:51:4e:a4:64:42:d6:94:be:bb:fa:20:4f:
cf:ed:62:df:a4:81:ad:d8:d4:5c:84:7f:fc:d3:f8:2e:f0:1c:
6d:c2:58:a0:f9:a7:bf:f2:d9:aa:d4:c8:47:f9:05:60:49:c0:
31:01:d9:48:a0:de:e1:4c:2c:7d:7d:da:af:a1:05:b3:3c:1a:
01:a9:e3:39:30:d6:58:ea:9c:a6:57:43:fc:0e:e5:46:57:7b:
2b:33:fc:fb:cf:bf:cf:99:80:88:0c:cc:ef:e0:72:89:c7:75:
b7:c0:8b:00:5b:c4:66:17:8a:bd:70:cc:7c:59:d9:96:33:bf:
fc:e7:44:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:51:25 2025 by rpki-client