Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
File: oynU0nVy71pqbb7NeS7vmM6QcW0.mft (raw, json)
Hash identifier: T3K4Qg+Xx9DgLM4XIwt5SeLlVvpCdbcVpaPwKP8K2BU=
Subject key identifier: 1C:C8:8F:2C:E9:29:19:54:0F:FD:1D:1C:94:83:28:7A:6F:0F:A5:8E
Authority key identifier: A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
Certificate issuer: /CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Certificate serial: 01969DBE8B3839ECC675C1E7E73A9C6A02E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
Manifest number: 1525
Signing time: Mon 05 May 2025 00:00:32 +0000
Manifest this update: Mon 05 May 2025 00:00:32 +0000
Manifest next update: Tue 06 May 2025 00:00:32 +0000
Files and hashes: 1: blse6v5EH2fVrElwGZmlrK99XJk.roa (hash: otAVsYT9s6hCs6g9uAr3ovy061yRH8/KdKxwyyD5qvk=)
2: oynU0nVy71pqbb7NeS7vmM6QcW0.crl (hash: rv9iC1cCCYD6CitKjg3o5xC+hWhbbsnnZ/+jadOaoQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:be:8b:38:39:ec:c6:75:c1:e7:e7:3a:9c:6a:02:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Validity
Not Before: May 5 00:00:32 2025 GMT
Not After : May 6 00:00:32 2025 GMT
Subject: CN=1cc88f2ce92919540ffd1d1c9483287a6f0fa58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d4:65:3f:0f:8d:fb:fc:7e:64:43:94:dc:9c:
ce:9d:5f:51:3e:46:51:e7:13:0b:7b:ee:70:08:3d:
9d:f9:62:6a:b1:f6:e7:07:3e:f2:76:ac:df:6c:8a:
e8:06:ff:0f:b3:de:d0:bf:83:50:57:41:66:35:34:
29:64:b8:90:5f:6d:9a:f5:b9:a4:47:ac:c1:fd:ac:
9d:ee:e9:71:f7:42:3e:39:22:a8:5b:49:4a:d2:94:
02:03:62:09:bd:38:20:17:71:09:6e:fc:4e:31:08:
52:8d:25:c0:c1:79:5c:c9:bb:67:7a:43:a7:d6:4d:
89:62:50:a1:69:95:ec:27:63:e7:bd:f8:ac:8a:5b:
07:84:30:98:39:59:79:79:dd:51:74:3e:31:c1:57:
fe:e9:42:03:c5:c7:1f:d1:c9:3f:35:14:c5:c4:5a:
67:e5:3e:39:2c:0f:5b:16:15:ae:f8:a5:45:d6:4a:
1b:c0:f2:4f:1d:db:20:3e:f7:99:ba:5d:c2:c5:be:
e9:f4:a7:62:4b:a2:c3:6e:9d:a8:55:c1:40:80:81:
db:ce:34:74:77:b6:dd:2e:b3:ef:0e:fc:14:0f:70:
6f:44:3a:4e:db:69:ab:92:74:72:74:69:fc:9f:c5:
f7:f0:3a:bd:60:b0:5e:42:28:8b:1d:93:97:4f:ea:
4d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:C8:8F:2C:E9:29:19:54:0F:FD:1D:1C:94:83:28:7A:6F:0F:A5:8E
X509v3 Authority Key Identifier:
keyid:A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:9a:9c:b9:2b:08:52:29:4b:31:ce:83:75:06:12:e4:6e:08:
76:57:fe:7d:b7:da:66:4b:62:eb:56:34:5a:2a:54:e0:5e:6a:
7e:19:2b:c0:15:c0:a3:38:0d:ff:84:90:9d:9b:d9:2f:f7:d9:
dd:19:89:99:3c:b5:29:09:4e:f4:5f:70:49:95:81:b6:4a:27:
62:70:c6:20:85:28:8d:36:90:11:71:d6:0e:d3:97:37:52:e0:
b1:97:fb:56:74:51:1f:26:e5:3e:b6:db:7e:62:d5:35:64:ce:
3c:51:0b:d7:03:2a:2b:af:57:b4:8e:63:16:8a:e8:f1:46:66:
60:c0:77:07:9b:33:97:11:48:85:63:ce:b0:1d:9f:96:dd:84:
12:12:8e:b6:f5:aa:58:b2:93:75:f0:f4:6a:03:55:4c:40:d8:
3f:ba:77:71:c8:62:87:6d:b8:52:c2:b1:7e:a1:d7:2c:21:d4:
34:be:ae:fb:93:19:3d:18:a3:ba:74:90:43:a9:f2:1a:ae:c9:
ad:47:08:d4:18:c8:20:91:3a:9f:e3:cd:86:78:a8:8c:ec:fb:
d6:d1:08:b4:29:67:fd:30:32:07:2b:96:1b:ec:f4:fd:15:d6:
43:36:6e:69:b3:0b:32:c7:6e:44:0a:ca:1f:82:87:49:c1:48:
cb:09:22:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 08:30:01 2025 by rpki-client