Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json)
Hash identifier: 2mV6cVUqIccejuy0IqBOR2Fu9Kps9mdNq2zhdbE+V8I=
Subject key identifier: CB:89:15:E7:23:FE:51:B3:20:75:EE:58:9F:76:79:4C:8C:3A:18:F1
Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Certificate serial: 0197B820E469DEB77254E294ED98B777C056
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
Manifest number: 029B
Signing time: Sat 28 Jun 2025 20:00:52 +0000
Manifest this update: Sat 28 Jun 2025 20:00:52 +0000
Manifest next update: Sun 29 Jun 2025 20:00:52 +0000
Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: wkaroQx8poMEWOLJybhpM1jenZ/tsGL2Gzif3qV6hOI=)
2: Q5qSxQZ6AuTJXsJJ-9RRWDA26wA.roa (hash: 64WIeN1+JBWLPlD+mMTcZ54izCFjiXRNJWE/ls/16OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:e4:69:de:b7:72:54:e2:94:ed:98:b7:77:c0:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Validity
Not Before: Jun 28 20:00:52 2025 GMT
Not After : Jun 29 20:00:52 2025 GMT
Subject: CN=cb8915e723fe51b32075ee589f76794c8c3a18f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a4:26:e7:d0:5c:bd:4b:6d:d6:6c:58:12:ca:
e5:29:fe:c5:86:54:18:7d:72:2d:a6:89:14:d4:1b:
a2:20:6c:f2:19:a1:39:4f:cb:5c:c6:bd:63:c0:ed:
f7:9f:2f:a2:ca:1b:aa:42:3d:dc:47:89:28:fa:08:
7c:07:08:b2:c7:9d:18:18:96:d5:24:65:32:48:62:
d6:8c:9e:0a:1a:43:79:82:60:cb:c5:5c:d5:ec:e8:
21:fc:f1:37:b4:2d:e3:c3:2b:8d:13:8d:a8:29:a8:
30:9d:bf:5f:28:60:0a:aa:04:42:f4:4b:08:b2:9a:
15:90:db:3d:1e:b4:0d:66:e8:d2:d8:de:f5:bf:21:
42:4f:5e:e3:78:f8:f0:05:5f:e9:f4:0f:b1:a0:e5:
43:96:0e:23:56:a1:58:8b:4d:4b:84:d1:51:e9:2b:
83:6d:43:5f:c3:14:15:4f:b8:74:af:f7:dc:fb:50:
0e:22:17:98:2d:ba:6f:8b:c8:6c:9b:f6:0e:d5:0a:
57:23:f5:0a:d8:53:60:38:ac:36:0a:c3:7a:93:f7:
bd:19:07:b5:ad:90:d2:87:81:31:46:ad:ce:17:8f:
10:84:0e:c9:4a:d6:29:01:14:09:51:48:86:d7:04:
68:32:d8:26:03:4c:97:84:8b:5a:4d:b3:cc:a1:d6:
f1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:89:15:E7:23:FE:51:B3:20:75:EE:58:9F:76:79:4C:8C:3A:18:F1
X509v3 Authority Key Identifier:
keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:3a:00:d8:76:31:f1:59:b8:f1:36:41:27:f7:8f:6d:30:f6:
a9:e6:67:70:1f:b1:0e:f0:da:68:26:ee:7a:7e:a3:33:79:90:
62:15:9a:14:f3:be:a0:3b:6c:35:ef:a8:83:e6:d3:70:65:b2:
34:16:26:f0:99:f7:be:df:a4:d2:bf:72:2e:a5:97:b2:90:53:
ee:6f:0a:a9:a0:85:fb:c5:75:3b:74:4a:66:1b:5d:6e:cf:ed:
f4:0d:43:36:64:38:8d:d9:db:e4:45:de:25:d5:4b:20:3b:29:
3c:43:59:95:9a:02:33:2d:c3:70:ea:7d:de:ef:9b:21:26:79:
05:47:50:68:e2:a4:46:20:2b:1b:44:e5:de:67:b9:1f:76:05:
7a:7e:1b:eb:f4:62:cb:14:f1:bc:cb:c2:70:b5:f7:7d:ff:e4:
72:b3:70:d0:65:34:ec:6e:6c:63:9b:02:b0:f4:20:95:a0:d8:
bd:b8:72:df:fc:ae:f3:2c:c2:31:6a:e1:58:f0:0b:11:15:72:
4d:ed:28:d1:72:f9:05:5e:db:90:63:d7:5a:f5:4b:73:21:50:
41:e2:d4:e8:27:1f:ed:76:db:22:2b:10:8d:d6:04:d5:74:dd:
d9:3c:66:cc:fb:82:44:3b:c0:b5:da:29:8e:52:bd:d9:8b:45:
28:c1:28:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:54 2025 by rpki-client