Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
File: oBZYi9HMst0iHG-Hg4VnR11-8ps.mft (raw, json)
Hash identifier: SXow0Tcbnaf53DVGTq2WbswHcrxjXizy+rKjsF6Pfwk=
Subject key identifier: 27:07:B0:17:7F:7D:03:C6:86:65:C6:53:C2:25:D5:53:52:57:68:4B
Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
Certificate issuer: /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Certificate serial: 0196C6160A944CB70DA96C3CDB51C868239B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
Manifest number: 153A
Signing time: Mon 12 May 2025 20:00:55 +0000
Manifest this update: Mon 12 May 2025 20:00:55 +0000
Manifest next update: Tue 13 May 2025 20:00:55 +0000
Files and hashes: 1: 7uBhUg1U8OiL4mgssHYwPwkKJrs.roa (hash: qe2rw9SjAhTjzWJWyO7/LvmX898Pe709+tHdC1jP6UA=)
2: P--cyCsEXWTpmdtjtbooGfKZW34.roa (hash: NViLGPpX2PnuVnmOA56Cf2Dp8n102H0opZdujn8vzcs=)
3: aUv0oKe6R2btvCdtOSYfT8WFAF0.roa (hash: lEgJxjlP6AlXHpqLTYKzkLDQsVq+Pi3xpQibZH/Rsds=)
4: gAUG9nMSNjQsq1tequutH3immt8.roa (hash: LCBTiYiGcwL+NIVJ6V4OXpEoNBb3bNUukyOlGZ8oVgM=)
5: kx7UofzIMm_m_XlnrQs2X_ZwrTs.roa (hash: FMY4CRQkCPFhXww6V/ELCA3IQUBWPklogLha1wHTo1w=)
6: oBZYi9HMst0iHG-Hg4VnR11-8ps.crl (hash: 9r8FS4A0TupCObywqXKz0qQv38IgrJr1hfGkwp4W46w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:16:0a:94:4c:b7:0d:a9:6c:3c:db:51:c8:68:23:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Validity
Not Before: May 12 20:00:55 2025 GMT
Not After : May 13 20:00:55 2025 GMT
Subject: CN=2707b0177f7d03c68665c653c225d5535257684b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a1:f8:cc:44:c8:8b:15:55:93:91:8e:1c:e3:
7a:df:db:7c:71:34:2e:c5:29:47:f6:e7:61:9d:ec:
06:8a:fb:55:4b:82:1b:2e:e0:14:d9:da:93:0f:64:
f9:75:e0:fb:57:ec:75:44:d7:3d:9e:46:0f:d1:d4:
65:30:c6:68:a1:02:3d:3b:3c:b4:5b:46:c9:82:06:
b6:08:95:6f:2d:83:68:d2:a2:c4:41:d1:65:68:aa:
a9:99:ac:81:14:7b:cf:e8:86:fb:b8:55:c1:06:14:
94:34:99:55:1f:f3:61:64:c9:85:b0:c3:4b:28:24:
a3:89:e7:20:8d:d1:96:6f:5d:0a:c5:7a:f0:45:6a:
57:de:15:f9:41:a3:95:f7:f2:55:f1:95:03:2c:22:
2f:c3:e0:7a:da:9b:31:2f:4d:d6:45:64:37:98:17:
38:64:c7:ae:7a:40:63:39:34:ee:f1:70:9c:c9:d5:
58:0c:26:78:36:df:31:0a:bc:35:85:a9:6b:2f:54:
e3:33:67:2b:2b:15:6a:41:d8:09:53:c1:05:5c:16:
fc:f9:bb:68:d3:2d:ee:b5:bd:5e:8b:19:eb:59:91:
74:69:0a:82:37:91:68:6b:47:29:af:cd:1f:32:5d:
e8:c0:c0:65:38:33:42:f4:64:27:86:4b:e4:d7:72:
71:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:07:B0:17:7F:7D:03:C6:86:65:C6:53:C2:25:D5:53:52:57:68:4B
X509v3 Authority Key Identifier:
keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:e4:51:e9:14:32:de:be:77:ec:06:02:69:b2:ce:f2:35:8f:
6d:56:5d:2c:6a:ec:c7:c7:b9:d6:3c:26:7d:9b:77:ed:66:fe:
fc:ea:66:73:a8:b7:a2:2f:51:9c:2f:ca:12:a3:76:e0:5f:ef:
3a:d3:35:d2:33:8d:b9:e6:ee:44:37:c8:72:b3:1f:43:02:ca:
22:7a:bf:2b:c8:ba:42:12:25:82:19:7a:ab:8d:49:c9:6d:bc:
e9:8b:24:f7:f7:3f:4d:51:14:19:f5:d4:91:86:12:15:36:f1:
47:a4:c8:78:67:ef:c9:d8:81:c3:48:65:31:f4:c8:64:3c:db:
5d:6b:87:97:bc:aa:1f:3c:60:a9:f5:e9:1f:0d:ab:b6:70:cd:
ac:ab:eb:18:06:0a:fb:ee:8a:3c:ea:a9:3b:de:fe:f5:96:a3:
aa:ad:2c:a4:72:f2:11:7a:eb:80:9c:cd:c7:2d:78:a0:a7:bc:
aa:f0:14:ac:35:52:03:9e:79:1d:6c:25:06:05:42:36:27:36:
f5:ed:63:68:62:d0:dd:71:70:46:b4:bb:aa:95:2d:81:f0:29:
ae:0d:d9:a0:bb:36:a6:c6:d3:99:31:65:e5:f2:26:ed:dc:a2:
ea:37:f2:8c:4d:68:eb:33:8c:b5:c9:e5:e5:92:8a:59:41:c4:
38:be:f3:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:20:36 2025 by rpki-client