Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json)
Hash identifier: pE0hx1V18ysQK3yYkDYHGlMcUF1YOWl2RU+MARzjk9g=
Subject key identifier: 4F:FD:23:F0:0D:4F:4C:22:A1:BE:6D:9D:4F:6B:7A:97:F4:67:92:5E
Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Certificate serial: 0196C6F16B5678E330739E5E8A52B9E80120
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
Manifest number: 1538
Signing time: Tue 13 May 2025 00:00:32 +0000
Manifest this update: Tue 13 May 2025 00:00:32 +0000
Manifest next update: Wed 14 May 2025 00:00:32 +0000
Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=)
2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: UV5lHFl/tG5iyXWvEomQaBM9bGqf4Y9lXD5jRePIj+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 00:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:f1:6b:56:78:e3:30:73:9e:5e:8a:52:b9:e8:01:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Validity
Not Before: May 13 00:00:32 2025 GMT
Not After : May 14 00:00:32 2025 GMT
Subject: CN=4ffd23f00d4f4c22a1be6d9d4f6b7a97f467925e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:07:7b:e0:9d:b4:20:be:df:1e:ea:c0:a4:e7:
9f:fc:bc:8c:73:b7:67:f3:35:59:ee:38:18:b4:e2:
2f:49:75:17:d8:3a:fc:c8:bb:de:fe:5d:2a:01:74:
52:bd:39:3a:d0:bd:76:db:51:12:33:9e:40:54:b7:
00:ee:b1:41:ca:c6:76:21:0b:95:12:38:09:3c:a2:
b5:26:a3:0a:48:95:6c:0e:37:2a:09:63:9a:e7:1c:
b5:83:46:f0:65:01:08:0d:f7:69:da:c8:25:f1:cc:
2e:43:51:c0:1e:3a:21:b6:d2:29:d6:16:33:f0:20:
3f:55:e9:e1:d3:c3:f2:ef:c4:76:54:dc:d4:13:5d:
d5:18:81:aa:6d:c5:7e:8f:e6:08:db:08:26:b1:58:
73:25:f9:89:88:6d:65:1c:50:9b:d2:cc:f6:f0:c1:
e3:14:4e:bd:37:07:17:8b:28:40:44:06:5a:cb:85:
ba:4e:b3:d1:84:68:a8:e2:c9:ee:61:8f:17:b7:aa:
ad:92:61:6a:46:08:dd:7c:ee:74:20:f5:0d:08:88:
4b:c1:e5:32:50:d8:40:9c:72:0a:1f:3c:42:fa:b6:
b0:ed:72:c5:cf:de:63:68:ef:dc:aa:90:8a:5a:e9:
e0:05:39:8c:c3:a7:a3:5a:70:84:bc:c1:45:30:bd:
76:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FD:23:F0:0D:4F:4C:22:A1:BE:6D:9D:4F:6B:7A:97:F4:67:92:5E
X509v3 Authority Key Identifier:
keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:10:21:1a:67:12:6a:b0:16:54:1f:cd:54:4a:07:a4:a6:a8:
39:27:43:c6:88:10:33:f7:1e:9e:3b:08:f7:c5:4e:ee:39:b0:
d1:8e:0e:40:68:13:e6:a5:7a:b1:5b:a4:8e:02:af:82:d2:2d:
83:b8:5a:6f:46:1b:b4:4c:2e:5f:4e:e1:e4:b8:9f:8d:19:f9:
f9:c3:be:c9:b4:ee:f2:f5:e8:3c:19:80:4d:73:0b:1b:5a:d1:
ed:5a:6c:06:a4:b5:4c:40:ba:a7:ad:4e:bf:d2:32:55:d2:00:
54:43:b8:ae:6b:8f:5c:ea:d1:e3:2e:2c:8d:dc:7c:51:99:f9:
52:32:2d:46:63:16:0c:72:fb:1d:b9:a8:2d:5b:fb:8c:a7:7f:
58:07:28:5e:a7:90:d2:9c:55:36:22:59:af:fa:44:83:c8:2f:
57:a3:64:15:a8:7e:5e:c5:c8:71:d5:cf:fd:5d:f1:79:1e:2f:
a3:c9:1f:b7:0b:71:cf:2c:3b:80:09:79:7a:b2:26:d3:86:42:
68:95:96:48:dd:32:e2:14:5a:28:64:37:8e:c4:fd:d6:8e:f6:
58:b5:f3:9f:76:0a:54:ac:1d:21:2e:20:63:44:cb:01:1c:01:
cd:33:03:de:3c:01:59:72:84:35:a0:df:c4:de:be:7f:02:a8:
e1:c6:0a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 09:51:57 2025 by rpki-client