Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
File: oixSeMS7sCbhL_12C-rFn8FV_CU.mft (raw, json)
Hash identifier: m0LmRMcldOEngJwb/Nr1CR/n49gBIxXpt6DrJNGgjnI=
Subject key identifier: D7:62:14:09:88:69:27:2D:32:E2:01:0E:EC:75:08:08:CA:8D:A9:2E
Authority key identifier: A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
Certificate issuer: /CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Certificate serial: 01969E633D5A5DB6781128098698C4F381E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
Manifest number: 0990
Signing time: Mon 05 May 2025 03:00:25 +0000
Manifest this update: Mon 05 May 2025 03:00:25 +0000
Manifest next update: Tue 06 May 2025 03:00:25 +0000
Files and hashes: 1: P8h8nlnz4dD4fkTghoS9unFyKig.roa (hash: MYpmJNo5HIfucuzKcNdlv0aQadbbtMqL8vbh/XHclWY=)
2: oixSeMS7sCbhL_12C-rFn8FV_CU.crl (hash: 3ixw6TSiyEELn8Re/CYTG7onwB4hOpyGpIaC2o/gH50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:63:3d:5a:5d:b6:78:11:28:09:86:98:c4:f3:81:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Validity
Not Before: May 5 03:00:25 2025 GMT
Not After : May 6 03:00:25 2025 GMT
Subject: CN=d76214098869272d32e2010eec750808ca8da92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fd:26:24:fb:d9:69:99:24:51:5f:3b:b7:7f:
57:9a:33:cb:99:62:7e:02:78:0d:55:1c:28:6f:ce:
18:cc:07:f1:fe:b4:1d:21:aa:18:42:b8:07:d2:70:
f9:65:d5:cb:aa:43:35:a6:db:4a:6b:52:8a:bb:6f:
e3:52:e9:cd:74:30:92:ff:af:63:1a:31:d2:4a:c9:
f9:e3:09:ef:99:9f:4a:5f:31:f6:57:1c:37:4a:a4:
45:38:13:cd:0d:c6:dd:43:86:7b:b7:8c:41:85:ca:
9c:5c:21:74:63:53:5d:75:85:16:3c:0e:40:a5:ab:
28:c5:0a:d1:a9:0f:b2:73:93:78:30:3f:77:4a:b0:
56:2e:9d:b1:5a:ba:fc:b1:fa:07:64:1b:54:a2:c1:
13:ca:cc:43:85:48:72:27:da:ec:f2:10:91:66:5f:
fe:21:74:a9:fb:f5:96:c2:ff:ef:2d:19:d6:51:78:
b3:ed:a9:b8:f7:d6:9d:58:3c:28:b6:54:c9:2f:cf:
02:ff:7c:bc:99:f5:94:9c:ee:5f:66:ba:65:b3:4d:
32:af:0b:eb:34:f9:87:46:37:22:23:ff:b0:e1:53:
10:b1:5f:bb:e1:4b:af:01:db:cd:f7:d1:ce:70:25:
d6:d8:6a:84:48:c9:36:7d:4a:9e:4b:f9:90:39:4e:
ff:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:62:14:09:88:69:27:2D:32:E2:01:0E:EC:75:08:08:CA:8D:A9:2E
X509v3 Authority Key Identifier:
keyid:A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:52:b2:35:92:cd:31:30:4b:71:35:9b:d8:54:55:a4:6d:9c:
9c:35:ef:4f:08:3d:10:b3:80:7a:70:b3:9f:a8:26:be:ee:b5:
12:da:2e:f6:76:a4:a4:44:da:98:97:e8:61:d5:74:1a:bc:72:
f2:cc:55:17:e9:c2:52:e4:71:2e:fb:e5:cb:c1:07:ec:82:90:
72:19:95:a2:9c:b6:56:30:33:8e:5a:ee:af:18:fb:de:a6:70:
b2:ff:c4:2a:37:db:8c:f3:cd:8a:a9:7d:05:d9:78:72:70:6e:
d8:82:e5:a9:05:cf:0f:1a:64:06:f2:4a:68:b6:a9:d7:54:39:
7a:cc:bc:01:dd:24:d8:ab:35:e5:5f:03:95:6c:17:fd:b2:56:
b8:9d:ac:4e:ad:8c:72:03:c8:e3:64:3f:0a:ed:1b:0c:85:f4:
30:fd:4c:6c:71:3f:42:ef:0a:a7:1b:85:33:df:5a:06:ee:4e:
3e:53:e6:69:16:db:72:38:5e:f6:ee:97:f3:d6:e3:7e:2b:c0:
2c:af:81:ef:78:ce:eb:1c:bc:42:5b:f6:16:37:0c:9b:4d:9c:
e2:eb:9c:c6:3d:60:42:c5:40:89:f6:af:da:ba:d1:2e:17:d7:
a7:3b:1a:26:15:bf:0d:d3:9a:10:a5:66:f4:41:b4:b4:3b:02:
0f:0e:ec:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 09:14:54 2025 by rpki-client