Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
File: OX2fPb_DZTMuKCvRdqaAdURtHRs.mft (raw, json)
Hash identifier: L0NM0CKkHygMAMNvERX94ieOlu79BD/YdwJ71xNaZ6c=
Subject key identifier: E5:70:95:3C:22:F6:B9:92:E7:ED:60:A3:86:75:92:2A:7C:8E:22:B8
Authority key identifier: 39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
Certificate issuer: /CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Certificate serial: 0196C0EF333F7E7DF949598567B8654A5856
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
Manifest number: 0F5A
Signing time: Sun 11 May 2025 20:00:23 +0000
Manifest this update: Sun 11 May 2025 20:00:23 +0000
Manifest next update: Mon 12 May 2025 20:00:23 +0000
Files and hashes: 1: OX2fPb_DZTMuKCvRdqaAdURtHRs.crl (hash: vbQdam10VSCv3siIttdIcvaDneUBctQVIbg2mJMWPbg=)
2: PKmiIVXi-5ieWf281G2v09ZDGMA.roa (hash: 6UbdjRvfhwNfGfOQcI0HpEZ2pxwE+yP96jeW3uJG9VU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 20:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:ef:33:3f:7e:7d:f9:49:59:85:67:b8:65:4a:58:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Validity
Not Before: May 11 20:00:23 2025 GMT
Not After : May 12 20:00:23 2025 GMT
Subject: CN=e570953c22f6b992e7ed60a38675922a7c8e22b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:50:27:cb:35:9a:04:e1:35:f7:5c:40:6e:4f:
c9:96:31:3b:e3:9a:da:56:84:d2:4a:48:02:3d:e6:
c8:e9:a9:aa:8f:65:c8:68:dc:a4:48:76:21:72:6e:
c2:ba:c7:90:11:ae:f8:30:d0:ce:5b:7d:5f:6d:93:
3e:56:bb:63:36:06:ac:d8:c4:5e:0c:61:a5:d0:7e:
bf:ce:a1:35:52:33:df:60:29:54:44:b6:fa:dd:18:
35:79:dd:9b:53:f2:17:3f:a8:da:44:06:09:c4:21:
03:48:54:c0:0a:da:a7:e7:6e:4a:96:c8:a0:93:4e:
4e:f4:6c:66:75:5d:22:8f:7b:1d:46:a2:36:95:e8:
fa:8d:97:59:2f:7c:d3:f9:a6:13:c0:0e:5c:c6:b4:
99:cd:46:89:fb:42:65:09:06:16:b9:0c:bc:e7:a1:
1c:4d:5a:fd:3b:7b:71:b2:d0:be:f7:e6:60:de:4c:
3e:aa:71:23:d3:ea:e7:fd:15:9c:4f:e3:40:a3:38:
76:29:9e:8e:7f:85:d0:63:99:58:ff:c8:9f:a2:46:
89:3d:8d:e7:ce:c0:7c:ad:1a:f7:40:66:b3:a1:0e:
1b:cd:33:fc:98:fc:88:63:e3:86:11:f9:c2:41:ff:
4b:3c:4a:92:73:57:a6:cf:bb:6d:00:69:65:ef:43:
e2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:70:95:3C:22:F6:B9:92:E7:ED:60:A3:86:75:92:2A:7C:8E:22:B8
X509v3 Authority Key Identifier:
keyid:39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:7e:7d:f5:0e:ed:d0:c4:81:59:78:80:c8:8e:e2:39:36:9c:
d2:ed:36:a5:2e:2c:d6:6d:44:fe:0f:e9:ea:df:f7:a7:c3:34:
59:3e:85:93:c6:bd:4d:c7:89:16:bd:f4:98:85:b9:13:2e:7f:
16:5e:74:02:99:30:a3:84:96:ce:ce:5c:b6:ef:fc:cb:dc:5c:
bc:54:50:2f:79:f5:ef:2a:2a:7f:99:a9:57:15:7a:7f:8f:7a:
38:f0:d5:c6:a9:11:7b:ca:6c:77:65:84:95:d8:b5:59:38:64:
4c:0c:40:c6:c8:bc:a1:8c:f3:d4:cb:f2:56:40:58:6d:fe:78:
a6:cd:41:cc:7b:61:b9:62:78:e6:04:df:d8:93:98:1f:f6:c8:
f7:e7:29:df:5e:91:34:0c:d5:4d:57:8f:41:77:55:5b:60:82:
11:6f:59:83:55:ce:d9:04:9b:d1:ca:3f:1f:31:b6:1d:be:98:
85:23:58:2d:d6:9e:82:1d:84:ef:7f:e3:47:34:bf:4c:1f:2e:
34:c5:29:41:7b:b2:78:44:3d:3d:fa:be:b5:10:0c:b8:27:da:
3d:a0:be:d0:d4:7c:f5:ab:02:67:b2:db:ed:b8:51:9e:e5:a4:
7c:be:3f:c1:18:db:1c:d4:4b:6b:d4:1c:3b:27:c6:53:1b:37:
00:2e:9a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 05:16:00 2025 by rpki-client