Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
File: oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json)
Hash identifier: T/Ivry1iA/xjTamkEt6HgV80mwgJppTOdOeg8/aBJx4=
Subject key identifier: 1B:9B:CD:8B:3E:72:78:64:EE:5C:8D:EA:EF:1A:BB:C4:26:22:23:CC
Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
Certificate issuer: /CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Certificate serial: 0196B66BC9DA6DF0DA5497CAEB27176A21F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
Manifest number: 027A
Signing time: Fri 09 May 2025 19:00:39 +0000
Manifest this update: Fri 09 May 2025 19:00:39 +0000
Manifest next update: Sat 10 May 2025 19:00:39 +0000
Files and hashes: 1: 0BmC-81HN_hGVStiVWyBsG7yPOQ.roa (hash: 1DBUkLbwQ3sH8OPXtfdrx6wa0RdQ3lqLVqMY8QCHCK8=)
2: 58QzCphRddJsBqi71H5oisOTtGM.roa (hash: K7oZA9oPzuB3kuDmCdohN1gPlNbeKKgYedD/MB4pxbM=)
3: K5VqopWIERNLlg6XYIHxbSMQwf8.roa (hash: 6CqhTE0o4WqNXO4cXlNrVv+QBipio9ZfLg1pbcvRhvU=)
4: Qt9hOGMkdfDH8ID_bHwfLmJlE60.roa (hash: ARZiY2rT8rE43lKmT9EIHjzaS4HpYkA+YcbbFMZTS4E=)
5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: FJFT26NwhDDmvoXU2CCRZA8cTqv/86D0hChFQ7Zjnmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:6b:c9:da:6d:f0:da:54:97:ca:eb:27:17:6a:21:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Validity
Not Before: May 9 19:00:39 2025 GMT
Not After : May 10 19:00:39 2025 GMT
Subject: CN=1b9bcd8b3e727864ee5c8deaef1abbc4262223cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6c:9d:ed:44:2f:b0:1b:9e:b5:dd:3d:77:e5:
72:19:75:7d:4f:70:5b:5b:f2:8e:0c:0f:e9:51:b5:
1b:09:b7:59:47:02:02:26:be:30:13:9e:e8:ad:8d:
d4:ed:f8:c6:c7:03:d4:b2:61:ef:1d:97:19:cd:17:
c7:51:76:95:69:59:39:1e:73:22:8b:26:3a:bb:26:
0a:0f:da:01:f4:7e:7a:8a:9a:9f:6d:fe:c0:2f:84:
db:b5:a2:9e:ee:49:ab:f3:d6:8b:ce:c8:1c:b4:4e:
5c:14:09:a2:e7:8c:12:0e:10:9e:f8:25:05:15:dd:
6a:0e:e9:ce:07:8f:c6:8a:0e:0a:15:b3:eb:7c:84:
73:8f:98:a4:70:f6:9c:f2:06:4c:1e:16:bd:cb:53:
46:71:4c:3a:34:6a:5d:89:99:d4:36:64:12:bc:03:
18:bc:5b:61:3a:d2:ee:1f:eb:40:67:73:b0:24:4a:
45:62:61:d4:4d:0d:5d:1b:4d:13:f8:96:08:8f:ff:
56:54:77:85:cc:42:52:18:ea:b9:49:da:96:c6:82:
5d:79:ba:27:07:68:53:3d:9a:be:2c:2c:56:45:8d:
6c:0e:38:d1:6e:b8:52:97:09:bd:16:e0:48:b2:58:
af:7a:15:0e:b6:ee:39:c3:6e:9e:35:43:ba:f0:a2:
2b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9B:CD:8B:3E:72:78:64:EE:5C:8D:EA:EF:1A:BB:C4:26:22:23:CC
X509v3 Authority Key Identifier:
keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:79:cb:94:8e:9e:45:d7:b2:b0:f4:47:27:50:e7:7e:55:73:
74:07:52:84:d9:02:19:7c:43:90:ba:c7:af:84:ed:b1:02:a5:
c3:2f:80:f7:7b:00:32:df:6f:ae:8a:bf:71:e7:18:c0:f7:07:
2b:d2:c4:02:e3:31:dd:64:59:b3:c8:36:0b:82:6b:99:1d:39:
a0:64:ef:5d:0e:dd:31:d8:c1:34:f6:45:89:76:b8:52:59:b4:
85:d3:2b:ea:8b:78:ab:68:1d:09:12:1f:d6:0b:5c:42:50:79:
fa:3b:1b:80:bc:7c:62:20:59:8d:2f:36:05:e8:ce:5e:1b:76:
5c:ae:94:71:88:8a:f3:74:f3:fd:f8:28:41:79:0c:5e:81:1d:
b4:09:fa:75:69:d9:e3:64:9f:76:a8:d3:26:a8:9a:4c:08:43:
da:d2:29:91:ea:0b:0e:68:e9:16:a8:2a:ea:7a:41:41:f7:60:
ae:21:97:76:a5:7f:e9:b7:ea:3e:de:ec:b8:7d:9c:ae:71:a2:
cf:af:9c:6e:57:42:57:76:9d:2c:a9:25:dd:c5:e3:05:f2:3b:
f9:60:a2:15:79:29:9d:e6:01:cc:f0:5d:9f:37:12:a7:80:44:
ff:b6:fa:2f:e2:ed:76:9d:3c:d6:8f:ca:9c:b6:8e:41:35:1e:
97:40:ff:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 01:01:40 2025 by rpki-client