Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
File: oqodRGKTg8rfx1F9733ikpWuObQ.mft (raw, json)
Hash identifier: CccMF2sYUUMATbr+kDp7IjXkjIEY0KtMIGIVapYaBF8=
Subject key identifier: D1:BE:78:36:0B:03:3F:74:3C:53:A7:2B:52:4C:D3:3D:30:17:D6:55
Authority key identifier: A2:AA:1D:44:62:93:83:CA:DF:C7:51:7D:EF:7D:E2:92:95:AE:39:B4
Certificate issuer: /CN=a2aa1d44629383cadfc7517def7de29295ae39b4
Certificate serial: 0196C014286A98D2EC85FEC3303174515135
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oqodRGKTg8rfx1F9733ikpWuObQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
Manifest number: 0CAB
Signing time: Sun 11 May 2025 16:01:08 +0000
Manifest this update: Sun 11 May 2025 16:01:08 +0000
Manifest next update: Mon 12 May 2025 16:01:08 +0000
Files and hashes: 1: oqodRGKTg8rfx1F9733ikpWuObQ.crl (hash: Y16/lOTAwbLfkYIW02PvzJ+q2xEpV4CwR26tXq1LINg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oqodRGKTg8rfx1F9733ikpWuObQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:14:28:6a:98:d2:ec:85:fe:c3:30:31:74:51:51:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2aa1d44629383cadfc7517def7de29295ae39b4
Validity
Not Before: May 11 16:01:08 2025 GMT
Not After : May 12 16:01:08 2025 GMT
Subject: CN=d1be78360b033f743c53a72b524cd33d3017d655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:86:e5:b3:86:43:d7:53:7a:e7:f8:e9:62:01:
1e:d8:5b:e9:25:fa:f0:fa:f9:ab:7e:e4:21:26:7a:
3d:59:bc:19:7f:ca:9b:c1:ef:12:4d:e6:d5:3d:cd:
c5:4f:21:55:7b:f5:5c:c1:bf:70:87:15:4b:99:53:
08:0e:79:0c:b6:19:1a:ff:7f:db:45:3b:2c:bd:9e:
c9:14:23:f2:2a:c9:8d:b5:03:3d:c2:ca:33:80:a0:
5b:e3:4d:08:fc:8f:8c:98:88:fe:bd:94:91:ed:50:
6b:88:0f:56:79:23:e9:6d:54:47:87:74:e6:13:e7:
54:74:0f:0f:a9:2d:16:b0:47:1d:e1:69:94:ad:c5:
8f:9c:76:f0:f7:bb:5b:07:03:a4:a4:47:4d:2c:31:
f8:8e:e6:6d:68:4b:b4:95:3f:32:3a:78:7b:f3:ba:
2a:da:49:0b:f1:cd:62:07:45:af:c1:22:d6:6c:e6:
66:64:ca:0f:e8:f3:15:e7:1d:a6:e4:d8:4e:5a:8a:
3e:e1:5b:d5:5c:1c:0a:27:aa:eb:f9:fb:b8:6d:72:
81:8b:1a:45:cf:5b:d5:21:da:ae:3e:dd:9f:e0:e8:
87:c0:19:73:5c:8a:f4:d5:28:92:84:c3:57:9d:12:
de:fb:2d:19:ff:f5:3f:d1:e4:5e:53:88:8c:04:ea:
a2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BE:78:36:0B:03:3F:74:3C:53:A7:2B:52:4C:D3:3D:30:17:D6:55
X509v3 Authority Key Identifier:
keyid:A2:AA:1D:44:62:93:83:CA:DF:C7:51:7D:EF:7D:E2:92:95:AE:39:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oqodRGKTg8rfx1F9733ikpWuObQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:3b:58:f3:53:49:e7:09:37:e8:80:4f:3b:6e:3d:f4:ed:6d:
a5:c8:36:0e:3e:f0:fc:51:de:a3:0d:27:a4:d8:a6:25:5b:fd:
b4:01:1c:ff:96:7b:97:e8:7f:cf:a6:36:63:f7:1e:1d:bf:0d:
29:68:3d:b1:c0:68:6d:4b:da:e5:c2:d8:7e:f6:8a:3a:81:c2:
a9:c4:34:75:f5:ae:00:11:42:ca:6a:4c:b5:58:6c:95:56:bc:
f9:94:60:74:65:5b:f5:81:42:c4:0e:44:0f:eb:42:3f:03:ee:
14:8a:b3:57:a2:01:78:47:07:0c:3e:a1:b5:79:e1:2c:7c:ce:
2b:22:75:d9:f6:74:76:3d:f4:b8:39:4d:9c:98:44:ef:2f:39:
c5:e4:ba:62:ad:58:53:37:5d:ee:41:e4:79:97:1b:0e:d5:ac:
44:cc:06:4f:c3:a7:55:e3:f5:45:35:47:0f:95:d7:e1:3e:55:
3f:cf:fb:22:4f:c9:57:58:1a:3f:3e:f2:fe:48:85:4c:1b:ec:
f9:fe:76:b0:96:69:8a:86:c9:00:75:db:93:4d:42:f9:2a:3d:
3f:62:3b:f9:60:7a:d2:b9:59:36:1e:b4:84:6a:66:23:01:6e:
4d:43:df:2d:73:5c:11:7a:30:27:af:d4:ab:06:fe:fa:a6:c6:
e7:f9:df:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:08:30 2025 by rpki-client