Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: +sPLL7NbadgfVd17LbGms5V6kRopAq6so856+Faqa4Q=
Subject key identifier: ED:E2:80:CE:A0:50:D6:17:A5:42:AD:A7:78:F1:00:D3:0D:20:5B:BE
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 0196C2023DDAFE9A427DEA8B97BDAD3D6B4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0D2A
Signing time: Mon 12 May 2025 01:00:48 +0000
Manifest this update: Mon 12 May 2025 01:00:48 +0000
Manifest next update: Tue 13 May 2025 01:00:48 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: B7x5my4KoTOgdHBUqwaDIuS9ahm4PAHa3VMMc9As/hw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:02:3d:da:fe:9a:42:7d:ea:8b:97:bd:ad:3d:6b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: May 12 01:00:48 2025 GMT
Not After : May 13 01:00:48 2025 GMT
Subject: CN=ede280cea050d617a542ada778f100d30d205bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fe:b6:2a:60:af:ee:47:6e:02:0d:5d:8c:dc:
08:23:3b:f0:8a:22:0a:81:28:d3:8c:b8:36:09:13:
df:3f:bb:9d:47:ff:09:1c:b1:47:db:44:5d:03:a0:
70:f2:79:2e:4b:d5:e0:24:cc:b7:53:fe:9e:94:b7:
cd:10:43:bc:d9:53:60:81:b1:f4:c9:66:a5:a6:92:
c0:97:da:90:9f:b6:6f:86:e3:23:5e:07:b3:8f:08:
59:77:14:35:c0:bc:40:ed:a8:fe:c6:e4:0c:53:2f:
b9:de:a0:37:11:1f:1a:c2:52:b2:ab:25:32:58:fe:
27:3e:ac:d6:a5:74:62:61:b2:84:36:c0:b3:06:d8:
21:5c:d6:d7:fc:12:07:3b:91:9c:22:9e:3f:ef:1f:
3a:dc:f6:9f:cd:87:38:df:a5:24:c0:3c:a4:b9:1e:
57:cd:10:06:69:72:b4:85:49:66:b2:a9:4f:6e:ce:
85:3b:c7:15:39:af:68:a9:ff:c8:b0:ac:e8:77:f4:
63:db:dc:dd:fa:39:11:71:88:93:eb:4e:2a:c7:39:
f3:8a:5e:b3:ad:27:48:76:a8:74:fa:6c:50:df:20:
00:31:e3:3d:f2:67:56:da:20:7f:cd:be:12:6a:bc:
d5:1a:e2:a5:6e:ab:31:ef:e3:f1:05:96:b0:cd:51:
d4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E2:80:CE:A0:50:D6:17:A5:42:AD:A7:78:F1:00:D3:0D:20:5B:BE
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:dc:94:59:c1:05:83:d4:7f:0a:17:96:4a:e1:d0:c2:45:0b:
8a:74:a0:79:a7:2b:df:f9:ea:5a:d1:19:01:9a:ee:d2:74:ed:
9a:76:d4:dd:fc:21:8c:e1:7b:0f:d8:86:0f:ca:35:91:7b:29:
5a:a0:87:8c:79:4c:57:db:f9:b3:e8:fa:88:4c:f7:59:6f:af:
e5:3b:8d:24:4b:f1:a7:fc:dc:77:21:1c:d3:b3:fc:1e:57:94:
b5:7d:ff:bc:88:78:8f:68:b6:f1:ee:44:4f:05:f1:81:44:bc:
05:c1:0e:d6:5e:ed:15:4f:03:86:1c:e9:60:8e:3d:27:e9:36:
13:40:87:0e:c9:97:c3:b1:f8:29:74:49:79:1f:2b:54:b9:c2:
e3:1c:4d:b6:e4:b5:2f:31:63:a7:9c:a7:3e:ee:45:a2:32:0f:
c1:77:33:ac:59:c3:28:c0:5f:67:45:3c:d8:80:9d:c9:04:56:
9c:3d:e1:1d:77:d2:a6:94:73:31:d0:2b:28:a6:5c:d7:3a:6d:
9c:d4:b2:9a:85:3c:92:56:9e:58:d0:ce:d6:50:56:d1:13:36:
53:2c:40:5c:e7:c2:26:47:35:76:7f:ce:55:d8:78:12:21:24:
e6:5c:cf:8f:c6:c6:6a:c6:87:d6:6a:bc:cc:c4:82:70:b4:4d:
af:26:61:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:43:18 2025 by rpki-client