Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: Yy7YtX+rpIjr/hncLhQBYVvJX7rijPWgVrrr/8RrVjw=
Subject key identifier: 50:B5:92:AB:A3:96:CE:19:87:E0:ED:7E:49:99:7F:CA:02:28:72:CF
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 0196C495504E6A381E80A15FFFEB331233A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 0749
Signing time: Mon 12 May 2025 13:00:41 +0000
Manifest this update: Mon 12 May 2025 13:00:41 +0000
Manifest next update: Tue 13 May 2025 13:00:41 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: iTW6oYpEGbHQTHCmk69FDamoJHMBs2gH2LOUvTdpK0k=)
2: _QTwS8nAMSFeKK0ZzzPsIxYgPqo.roa (hash: Q/O46iBV3y1aR3ABGTzdA2RTNwov3wLVP1w6lO4+h/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:95:50:4e:6a:38:1e:80:a1:5f:ff:eb:33:12:33:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: May 12 13:00:41 2025 GMT
Not After : May 13 13:00:41 2025 GMT
Subject: CN=50b592aba396ce1987e0ed7e49997fca022872cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9d:bb:3d:75:ea:19:20:6a:73:14:46:e5:00:
d1:19:74:96:1d:79:0a:ee:de:b3:57:89:43:17:d3:
9c:a0:c3:62:df:0d:e6:e9:9d:1c:4a:56:9b:23:64:
2d:ad:0b:9f:18:88:26:c4:37:03:cd:d0:2b:00:53:
24:e6:22:a7:92:b3:4c:f4:9f:9d:df:65:64:c5:38:
36:d9:68:d5:a0:22:ed:d3:e6:b6:77:f4:a9:ad:b7:
e6:a6:3e:c7:bb:e2:dc:9e:98:8a:f5:1a:fc:4f:e5:
83:5c:c6:56:97:0a:2a:fd:51:f3:ec:49:be:f9:37:
d7:a6:12:b0:00:f3:6d:f4:da:f8:fe:33:f5:1a:1f:
ca:a2:af:51:a9:92:ed:87:7a:a1:e1:d1:43:2e:e0:
b9:93:62:73:c4:60:e2:29:04:1b:c1:36:16:58:00:
34:1d:47:61:cc:a7:e9:8c:03:6d:44:83:3c:a0:f1:
6c:a8:94:b8:e5:da:ac:99:4a:fd:93:fb:c5:da:df:
0c:ca:e0:9b:e5:75:b2:48:a1:22:6e:fd:a4:31:9a:
f4:70:e6:d2:4b:36:90:cb:f2:3d:03:70:20:11:fe:
c1:8e:a6:17:9d:1b:2f:5e:f6:34:d4:b6:94:f9:8d:
11:0f:0b:3f:26:13:37:97:1d:ce:90:ca:94:02:17:
43:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B5:92:AB:A3:96:CE:19:87:E0:ED:7E:49:99:7F:CA:02:28:72:CF
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:b7:40:90:73:eb:96:9f:a9:62:c7:f8:7d:bd:47:fa:81:fe:
53:bb:04:27:12:07:66:33:4c:19:4b:f5:32:f7:56:16:19:07:
42:b4:8c:68:8d:ca:01:95:a0:cb:5f:ff:d7:35:f8:e1:6c:03:
86:09:b3:8f:b3:de:97:5d:09:84:85:b0:6e:a2:9c:eb:a6:97:
2d:c3:48:21:c8:d5:5d:18:41:38:50:6a:35:86:4b:34:d1:3e:
8a:55:9c:b6:19:0b:96:e8:8c:fe:87:3d:18:ed:99:e7:b1:7b:
87:10:c2:24:cf:89:18:06:72:a8:59:4e:bf:da:2f:1b:00:ed:
16:ed:e7:20:49:2c:d3:ed:21:2c:64:b0:59:f7:f9:3c:bf:79:
37:08:e8:82:22:46:bd:f7:ee:a8:35:42:43:0c:a7:42:c5:f1:
95:8c:2c:0c:47:8c:68:f4:20:a3:d4:f7:2b:72:83:dc:7c:6a:
f9:bf:f8:5b:93:5e:f6:32:fb:bc:1d:05:76:ac:67:d7:b2:95:
43:45:ea:7f:d9:84:ca:4e:27:de:ad:5c:72:b7:22:bd:a0:4b:
0f:41:ef:3e:b2:77:2d:8c:86:69:91:ca:83:55:84:d3:36:32:
f0:8c:a6:bb:3f:5d:9c:fb:dd:71:1a:6a:59:da:6c:8a:c4:b5:
24:e5:44:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 22:03:09 2025 by rpki-client