Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
File: kOphmXVeYwDwQCwqCO1DegpzAB4.mft (raw, json)
Hash identifier: G3BCADSj6oAY2pAdiM+VboaDrWzLZ2Eu6ZAK4uYKTII=
Subject key identifier: B8:7D:6C:29:90:F6:ED:68:69:2B:52:89:2A:F7:F2:2E:69:E2:D1:FC
Authority key identifier: 90:EA:61:99:75:5E:63:00:F0:40:2C:2A:08:ED:43:7A:0A:73:00:1E
Certificate issuer: /CN=90ea6199755e6300f0402c2a08ed437a0a73001e
Certificate serial: 0196CBE0E0FAF290F1B37555C509C0AE67DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kOphmXVeYwDwQCwqCO1DegpzAB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
Manifest number: 153A
Signing time: Tue 13 May 2025 23:00:34 +0000
Manifest this update: Tue 13 May 2025 23:00:34 +0000
Manifest next update: Wed 14 May 2025 23:00:34 +0000
Files and hashes: 1: KatNB724uDRt0-ZiwLjIS5tNdSI.roa (hash: 44IwgAiGyeQdbyG6MSKbubj3iGudNdrcCJvguuMAbNQ=)
2: kOphmXVeYwDwQCwqCO1DegpzAB4.crl (hash: 7TUWyP+mnLS8vvLJENzPAUn3HIz4rv9A+uplkQ/v91U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kOphmXVeYwDwQCwqCO1DegpzAB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:e0:e0:fa:f2:90:f1:b3:75:55:c5:09:c0:ae:67:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ea6199755e6300f0402c2a08ed437a0a73001e
Validity
Not Before: May 13 23:00:34 2025 GMT
Not After : May 14 23:00:34 2025 GMT
Subject: CN=b87d6c2990f6ed68692b52892af7f22e69e2d1fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cb:85:74:8f:0e:66:1f:4b:60:6c:73:2c:bf:
63:24:24:f0:db:a8:9d:50:fd:5c:aa:46:88:6a:62:
04:f5:97:6b:61:11:13:23:bc:c7:f7:06:e4:07:0b:
29:1f:ff:43:5e:3d:b9:b9:4f:ea:c9:40:4d:f4:43:
56:3d:f7:a8:ef:ca:e2:59:5e:4f:fa:00:66:72:d0:
e7:ed:9d:63:cb:cc:18:88:8d:b5:86:e2:3f:c1:31:
9a:e9:fc:6d:50:e1:4b:d2:94:e8:e5:79:1f:b9:9a:
b3:49:62:6b:f5:76:46:86:a4:11:96:b8:33:45:a0:
53:0f:de:95:3c:af:a4:51:7e:ae:7b:a1:a5:14:4a:
95:74:71:3d:1a:3f:e0:78:16:98:19:72:3a:03:ba:
6f:15:da:a7:55:c7:4a:93:4f:c0:26:4c:95:dc:dd:
52:40:1e:00:b0:66:04:ba:97:23:17:21:f8:73:ef:
6f:4d:d8:bc:c7:fe:b7:f8:a8:17:47:b7:83:97:56:
19:ee:fe:19:4d:70:ca:b5:66:85:d2:41:e9:a6:f6:
d3:4a:7d:fa:9a:65:8d:1f:1e:2a:6a:9d:69:06:37:
8c:2e:73:d7:86:eb:d2:72:6a:54:d1:6e:0c:bd:47:
d0:bb:5a:1c:c9:9e:7b:5a:a6:3e:b2:f3:62:e6:b8:
b5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7D:6C:29:90:F6:ED:68:69:2B:52:89:2A:F7:F2:2E:69:E2:D1:FC
X509v3 Authority Key Identifier:
keyid:90:EA:61:99:75:5E:63:00:F0:40:2C:2A:08:ED:43:7A:0A:73:00:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kOphmXVeYwDwQCwqCO1DegpzAB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:a0:11:f7:94:74:d1:a6:0c:ba:28:1f:2c:ae:f2:3c:20:eb:
77:a0:5c:74:4b:63:65:eb:06:c6:f4:69:62:39:da:31:66:1f:
a6:ea:4d:47:b9:e7:2e:b9:b6:3b:77:87:80:3a:5e:0d:3c:c0:
e7:0b:bf:7b:6e:f8:63:c4:0c:cb:5a:48:4e:e4:52:21:b8:48:
84:84:2c:88:fc:af:5c:a0:84:72:8f:b7:5f:ed:ea:0d:92:af:
28:4c:34:cf:4b:ff:b9:68:73:85:92:a7:f6:01:06:f8:a7:04:
e4:74:6c:b5:1a:7d:04:f4:df:97:1d:96:4b:10:c9:bf:5d:d9:
8c:ff:7a:aa:47:79:af:02:bb:e4:63:6f:5f:4a:a6:57:d1:98:
e3:44:f8:1a:3a:c7:ac:d1:bb:03:0f:82:2a:2c:48:b4:d3:d8:
cf:61:4c:6c:fb:d5:03:7d:3e:76:00:39:45:f6:c3:97:70:6e:
1a:cb:89:62:cc:5d:92:23:91:0f:c5:dc:d5:b6:22:ab:b8:11:
92:86:41:db:48:b3:5b:be:be:7e:c6:1d:9e:63:f4:81:42:79:
3e:70:3d:51:2e:e7:ef:5f:2f:64:6a:62:4e:ef:24:09:1d:ba:
72:1b:4b:b8:30:75:0a:d8:49:9e:ad:1f:f2:80:4f:0d:90:e0:
40:10:ce:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 02:41:19 2025 by rpki-client