Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
File: oNki4v4kvSzaeToqrcEzYlAM2bE.mft (raw, json)
Hash identifier: T/7/NTM2Qb4ObaetOFAhVWHqNOKzB4HlPgxHL2bl+1o=
Subject key identifier: C9:F6:C9:E2:4D:EE:90:02:C8:7E:78:58:41:87:F8:7F:FD:BC:8F:F1
Authority key identifier: A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
Certificate issuer: /CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Certificate serial: 0196CBAA343B8A23E07FAA3A05F429642249
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
Manifest number: 0B3E
Signing time: Tue 13 May 2025 22:00:51 +0000
Manifest this update: Tue 13 May 2025 22:00:51 +0000
Manifest next update: Wed 14 May 2025 22:00:51 +0000
Files and hashes: 1: QU8GopeOlHwkTprCT-S3aTgX93c.roa (hash: wdEn+nBxYgSylw1Zt9va3XXWns8S/pGLaLLxEZ/5irY=)
2: oNki4v4kvSzaeToqrcEzYlAM2bE.crl (hash: sZC8nlMkMiiF0TK4Yy2PDlpZqPYnmgUciyi4Ynf/75c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:aa:34:3b:8a:23:e0:7f:aa:3a:05:f4:29:64:22:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Validity
Not Before: May 13 22:00:51 2025 GMT
Not After : May 14 22:00:51 2025 GMT
Subject: CN=c9f6c9e24dee9002c87e78584187f87ffdbc8ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a8:29:5e:91:95:bd:62:1b:57:8e:d1:86:ea:
06:af:53:74:8f:e9:a2:53:b7:73:d1:3e:16:a9:49:
18:f3:ae:07:f5:9a:8a:56:ae:f9:6f:4c:94:55:a4:
e4:44:8c:ba:88:47:46:b6:20:3c:bb:2d:5a:49:05:
51:b7:27:31:4f:38:d6:df:e0:d9:78:21:cc:b6:41:
2e:d2:1d:fe:c6:27:03:17:c8:85:3c:bd:e8:8d:d9:
40:9e:09:5c:5f:e5:78:04:16:a5:60:b4:76:4d:00:
ad:e1:07:be:06:57:41:46:21:47:21:e8:55:c9:7b:
c4:c5:4b:33:e5:ab:ef:c7:45:5a:ff:90:5f:21:b3:
82:1a:b3:e4:02:9e:37:da:88:15:07:fc:3c:0b:7a:
bb:ba:80:bd:06:ad:96:79:bc:45:a2:95:b2:ff:54:
6e:fa:d6:c6:94:09:56:af:df:58:8b:f1:ca:1e:c0:
20:7d:d0:e2:68:a0:4a:d4:8d:f7:94:8b:02:cf:99:
d7:04:b7:df:ae:08:cb:1f:da:ef:66:b5:86:5a:f9:
d6:34:56:18:11:77:a6:95:4d:f5:5c:93:83:73:24:
a6:58:4c:23:b7:af:45:b6:f5:89:59:6a:1a:7b:cd:
0d:a1:00:f3:85:6a:28:71:b8:10:2b:c7:91:b0:1f:
93:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F6:C9:E2:4D:EE:90:02:C8:7E:78:58:41:87:F8:7F:FD:BC:8F:F1
X509v3 Authority Key Identifier:
keyid:A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:7c:61:82:b3:f5:56:74:da:63:97:ee:17:63:7a:1b:65:4f:
f3:3e:4d:0c:db:21:24:f4:d7:92:b9:42:c5:82:ad:b0:49:14:
b7:f1:b3:e8:50:98:7c:de:3e:d9:e0:16:f9:b6:22:7b:de:06:
3b:1f:94:84:d4:d5:45:e0:e5:62:c1:4b:34:38:30:d3:b5:99:
fe:a7:a2:72:4e:14:d6:25:16:d3:5f:5e:9e:aa:61:0c:4d:0f:
05:67:78:b2:4a:72:32:f0:7e:60:f9:32:88:ad:1e:3e:1a:a0:
36:bf:67:98:8c:a8:5e:07:f1:33:00:c3:88:61:e4:f4:7f:a2:
f7:b6:3c:7f:eb:6f:53:8e:54:e1:fe:2f:b4:f8:ba:e8:74:f3:
c5:a2:f8:d7:e7:a7:34:3a:90:9a:44:c4:e4:18:6e:83:84:75:
8d:74:d1:10:a8:ea:6b:d0:a6:8d:14:06:0b:a4:4c:c0:c7:62:
c3:cf:02:15:a0:da:0d:8b:28:47:64:42:22:3c:8a:e8:9c:30:
8c:86:7a:80:75:4b:94:23:f8:86:59:18:13:07:8f:01:d8:50:
7f:61:21:6b:79:2c:7f:fb:e7:de:82:b2:d1:a1:3e:1c:f2:51:
d4:50:e8:b2:83:46:1b:0d:39:38:f6:1b:3b:62:96:94:61:59:
cc:63:b6:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 02:57:48 2025 by rpki-client