Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json)
Hash identifier: 7aGZnQXDfEb4AOpihND04kvQ5J+BiA/5RqVmOksReAQ=
Subject key identifier: BA:0D:B9:BB:BA:A1:18:DB:6D:EB:CF:C1:DF:36:BE:B3:4E:51:63:0F
Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Certificate serial: 0196C3F0977E2BCFC1576813BD0E183346B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
Manifest number: 070B
Signing time: Mon 12 May 2025 10:00:46 +0000
Manifest this update: Mon 12 May 2025 10:00:46 +0000
Manifest next update: Tue 13 May 2025 10:00:46 +0000
Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: vw3QfhCxEmGnUClZwsC4N1kg+ounZDGhmBFKix9U4Bo=)
2: eEAcVM4h3e_6uLTwXzH2smck964.roa (hash: 2dyqSC4Nr999y8UdL9+8BtI2W3QPoxUvEaAKvO9sMtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:f0:97:7e:2b:cf:c1:57:68:13:bd:0e:18:33:46:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Validity
Not Before: May 12 10:00:46 2025 GMT
Not After : May 13 10:00:46 2025 GMT
Subject: CN=ba0db9bbbaa118db6debcfc1df36beb34e51630f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fc:ae:f5:2b:fa:e5:c0:7d:51:01:a8:50:dd:
41:41:29:2a:c0:b4:1b:5f:42:90:c2:a2:5d:f0:48:
12:73:7e:bf:13:c8:e5:20:ab:9b:b3:a3:5d:9a:7f:
e0:9b:c2:a8:3d:92:e6:83:07:b1:30:21:51:fb:06:
b6:ce:f6:8b:1c:d1:01:94:28:0d:c8:a7:47:2e:57:
3c:bd:de:f4:2e:bb:c8:bd:de:6b:ef:9e:09:ed:02:
61:1d:8f:b5:05:41:dd:75:45:78:2d:e1:15:e6:9e:
b8:97:34:65:c9:20:c5:14:13:6e:98:40:ac:ce:75:
b7:50:26:13:5a:33:6e:d0:aa:fc:77:cc:80:52:ca:
25:3d:3e:6e:0a:ba:c0:67:cb:e2:3b:d3:f8:ad:d2:
7a:dd:ad:e8:15:da:ba:bd:2b:aa:af:16:ef:29:46:
44:62:fd:73:06:0b:ca:eb:8f:99:52:5a:e1:2c:66:
75:55:14:ce:71:d9:c9:c8:8b:fb:28:db:74:d8:14:
ef:b7:03:9b:2a:2d:00:00:d3:4e:a7:28:63:5e:d7:
1d:2e:c1:5a:3b:5a:18:ea:9a:48:6a:06:11:00:07:
d7:a7:f9:25:61:15:0f:8d:6d:98:df:55:6c:22:d1:
2d:5e:91:fe:bc:fa:68:3a:41:f7:45:f1:9a:0b:5c:
c5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:0D:B9:BB:BA:A1:18:DB:6D:EB:CF:C1:DF:36:BE:B3:4E:51:63:0F
X509v3 Authority Key Identifier:
keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:6a:3c:1f:88:2a:bb:9e:6a:fa:b6:f9:be:2f:e1:e0:cb:b9:
af:d9:64:9d:9b:1c:79:f1:96:5e:74:56:83:65:c1:d0:1c:c4:
aa:08:f0:79:3b:d1:db:6e:f0:d4:4f:44:6a:e4:aa:60:eb:62:
6c:af:1f:13:b4:0f:76:95:14:4d:3c:b2:9c:0d:df:70:2b:da:
72:ec:08:0d:a4:75:f0:b5:bf:09:a2:2a:09:86:42:3d:7e:fa:
22:bc:3c:56:9a:53:94:c9:0d:84:3a:d7:08:ea:25:a4:97:42:
bb:09:40:b8:ae:ef:45:24:59:08:2c:8e:5e:b6:a2:8b:f0:9c:
60:1a:e3:b9:5c:e1:3d:44:41:d8:50:84:4d:e9:3e:5d:ae:a3:
6d:ea:71:0b:22:31:87:b4:b3:e7:75:b5:a4:ba:0c:ad:db:27:
29:cd:f3:3f:a9:c2:d9:2c:90:54:97:af:f4:4c:98:22:a1:f7:
92:37:76:6a:26:85:85:14:5f:2f:77:f4:b3:b1:28:ac:0a:7b:
e6:b1:92:74:33:cb:bb:4f:25:83:e7:1e:d5:b9:48:c0:8d:e8:
a8:37:b6:64:81:c9:ba:86:02:11:05:c3:7f:59:90:01:dc:b1:
17:0f:d1:57:2c:35:9b:25:78:67:a9:8e:98:8a:dd:78:70:61:
ab:b8:e3:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 14:27:56 2025 by rpki-client