Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
File: OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft (raw, json)
Hash identifier: 9M1RsNLhfxeFlO6r+gSnekH8qCp9ja3CRoLx7jJL2PM=
Subject key identifier: 0A:25:06:7D:DC:80:BD:B5:3A:CA:1B:BF:8E:DE:66:AE:62:5A:C6:99
Authority key identifier: 38:9D:D4:12:6F:8B:E0:7A:F4:54:49:7C:A0:F5:66:52:95:48:2A:D5
Certificate issuer: /CN=389dd4126f8be07af454497ca0f5665295482ad5
Certificate serial: 0196B5C6B8B269D73A04E5621C7904BEF9F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
Manifest number: 048C
Signing time: Fri 09 May 2025 16:00:21 +0000
Manifest this update: Fri 09 May 2025 16:00:21 +0000
Manifest next update: Sat 10 May 2025 16:00:21 +0000
Files and hashes: 1: OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl (hash: l7A7fPknPaS/afddQejjyHodcScc/Id3GSYa0RPCg0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 16:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:c6:b8:b2:69:d7:3a:04:e5:62:1c:79:04:be:f9:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389dd4126f8be07af454497ca0f5665295482ad5
Validity
Not Before: May 9 16:00:21 2025 GMT
Not After : May 10 16:00:21 2025 GMT
Subject: CN=0a25067ddc80bdb53aca1bbf8ede66ae625ac699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:25:8f:22:19:45:bb:3b:57:d5:91:63:be:b9:
2c:48:45:f8:44:21:60:58:f9:42:dc:7c:bf:2e:ff:
0b:d2:18:3e:ec:dd:a5:1d:e1:72:7d:a5:bc:e6:10:
fb:3d:06:a5:00:46:3a:f5:72:70:8d:32:c5:17:71:
41:be:08:9b:e4:50:5d:8d:6b:e5:d1:04:76:c0:8d:
38:ba:84:48:61:53:56:de:9a:62:28:e2:20:69:02:
4c:ff:ac:4d:c1:5f:7d:aa:d8:30:01:53:bf:8d:ab:
99:3a:d1:74:a7:9c:8e:8e:b9:42:3f:92:08:e4:cb:
cd:93:06:d5:1a:10:67:4b:89:14:e7:69:27:54:aa:
00:75:0c:36:0a:54:41:6b:02:51:f8:45:2a:f1:f6:
33:52:56:68:b9:00:db:c0:bd:4d:31:f1:67:28:43:
1f:0d:56:42:25:7f:07:06:0f:46:46:91:d2:bb:a8:
2d:0f:9a:e1:00:8d:e5:eb:9f:59:f3:46:79:2b:5c:
78:8c:3d:1e:f5:44:70:58:b2:9f:78:5e:8f:46:57:
71:6b:8c:67:47:c6:08:de:1a:b6:cd:55:a3:c7:03:
1a:17:09:93:06:a0:b4:3a:10:a7:66:0f:f8:02:fe:
27:96:21:b4:fd:b1:d4:df:8a:82:6f:62:3f:1c:81:
c9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:25:06:7D:DC:80:BD:B5:3A:CA:1B:BF:8E:DE:66:AE:62:5A:C6:99
X509v3 Authority Key Identifier:
keyid:38:9D:D4:12:6F:8B:E0:7A:F4:54:49:7C:A0:F5:66:52:95:48:2A:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:3a:1c:d2:96:3d:27:83:c2:3f:4f:df:e9:22:e3:e3:e4:c5:
d0:c8:a2:7f:21:53:4e:34:2f:1c:54:27:a7:d9:49:de:be:48:
5d:11:cc:48:f3:59:b8:4e:c9:d0:7b:9e:d5:18:68:e7:04:2a:
e2:db:e9:a3:18:fb:17:b1:bd:b0:a6:9a:29:57:67:88:40:5b:
59:49:b5:f9:1d:cc:32:f4:40:28:18:6d:2a:99:78:72:42:a6:
d5:8a:3a:08:3f:b5:a6:bf:47:02:ce:ff:45:73:34:5e:6a:b8:
57:ab:88:af:6f:47:fb:5a:b3:52:b8:f7:a8:28:6e:86:63:57:
f4:8a:22:4a:36:47:14:fb:4d:19:ea:71:c2:94:50:2a:e5:45:
dd:37:da:15:18:fe:44:ee:e7:9d:77:c2:49:51:98:3b:b0:27:
dd:30:5a:bd:fb:17:ea:21:0d:9b:51:33:8d:82:bb:d7:64:16:
5f:f9:cc:eb:e4:b2:a5:a8:a1:4e:1b:a0:2f:06:3c:51:3c:5e:
a7:d8:65:76:12:f3:52:9e:6e:1d:8e:8f:2d:33:32:ec:18:86:
ab:23:4a:4e:9e:c7:15:d8:e4:98:94:e5:12:12:2b:76:7a:cc:
c0:bf:e6:1e:e7:ad:08:e6:39:af:ca:54:2c:52:3d:cd:d3:eb:
67:ca:cc:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 20:47:35 2025 by rpki-client