Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json)
Hash identifier: grmwSCppV/dGx5KqAJa9/IiVExv9O0di3I85swv9NfY=
Subject key identifier: 0A:2B:10:BB:0E:9F:66:ED:F2:2E:C8:FD:8E:45:92:4C:D2:FC:C7:A7
Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Certificate serial: 0196CE73CC7CE15FC43F411F073685D79A6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
Manifest number: 0222
Signing time: Wed 14 May 2025 11:00:17 +0000
Manifest this update: Wed 14 May 2025 11:00:17 +0000
Manifest next update: Thu 15 May 2025 11:00:17 +0000
Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: Gif95TFsp3Ng2gecaG7imHbyxZ5IZGJN4Z9QSYFJ/NA=)
2: Q5qSxQZ6AuTJXsJJ-9RRWDA26wA.roa (hash: 64WIeN1+JBWLPlD+mMTcZ54izCFjiXRNJWE/ls/16OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:73:cc:7c:e1:5f:c4:3f:41:1f:07:36:85:d7:9a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Validity
Not Before: May 14 11:00:17 2025 GMT
Not After : May 15 11:00:17 2025 GMT
Subject: CN=0a2b10bb0e9f66edf22ec8fd8e45924cd2fcc7a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:82:99:1c:3c:22:d4:2d:86:fb:19:c5:2c:92:
b3:b5:84:4f:d1:e9:85:0b:30:35:a0:51:02:dd:0c:
61:d9:be:e4:d7:4f:9f:81:8d:ce:6f:17:80:63:ba:
48:86:da:59:d8:6e:dd:ca:c8:0a:9e:5c:f0:1a:03:
9b:36:ca:14:70:aa:81:66:0a:e4:d0:0b:e2:bf:63:
38:c6:53:28:50:2d:d7:24:10:6e:bd:49:1c:23:b1:
5d:a2:aa:0a:bc:0c:f2:24:af:e0:fb:c1:c7:a2:82:
5c:61:4e:29:09:db:ff:6f:ce:82:ec:c8:85:73:75:
49:5c:d2:e1:80:c8:5d:cd:46:60:59:bd:a4:cf:48:
97:d5:9b:40:6e:5b:bd:58:ca:14:f0:e0:97:00:d9:
e7:69:a1:94:1a:f6:61:7c:5d:aa:4e:02:5d:92:7f:
2a:42:7f:57:d1:2e:40:68:9c:b2:84:e9:d9:5d:5d:
5c:c7:9a:26:e1:4d:3f:64:d8:cf:f6:8b:81:90:e0:
45:97:3a:7e:14:43:2c:85:6d:be:e7:46:f2:09:77:
88:04:f0:d0:ee:f8:78:14:d8:54:e2:30:37:ae:44:
23:82:79:7a:14:39:66:eb:8e:75:e3:65:9f:36:e1:
69:60:a7:fe:32:fe:97:fb:a7:54:af:09:1c:93:99:
07:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:2B:10:BB:0E:9F:66:ED:F2:2E:C8:FD:8E:45:92:4C:D2:FC:C7:A7
X509v3 Authority Key Identifier:
keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:0b:1e:97:18:e4:07:97:0f:10:10:5c:8f:23:ff:e6:6a:99:
2d:f3:e5:8a:54:ce:c3:a8:eb:da:c8:5c:39:30:97:62:a5:99:
67:8a:d3:67:a3:95:87:97:ea:55:7a:7f:e3:22:00:99:c9:fc:
2c:1e:b4:f4:f7:ee:3a:fa:99:b4:fc:ce:9a:a2:8c:37:c3:df:
21:89:5a:70:58:d9:cb:66:76:53:e4:38:ba:c6:10:5b:f6:d2:
09:5a:0f:90:2d:a6:f8:3a:ee:76:69:75:51:94:19:9d:94:6e:
9b:c3:3e:74:fe:03:03:3c:21:82:e9:f7:c4:73:51:b4:21:8c:
71:c1:4e:b0:99:ce:3d:dc:e3:64:6a:b7:2d:a2:24:69:01:ef:
59:e2:af:54:9c:cf:34:ed:28:bf:06:7c:d6:32:b2:11:a2:79:
43:d4:81:9e:3e:9d:51:72:c9:3e:f6:23:32:f3:51:68:df:52:
57:8e:72:56:6b:60:b8:0f:f2:4f:a2:58:f9:d2:f3:6a:78:0e:
a4:23:6f:3f:3c:8c:42:9d:d8:36:8f:5f:ff:62:13:91:1d:b7:
1a:6d:4e:a0:8c:a0:da:04:fa:f1:ef:a2:82:7c:3d:5a:62:5b:
ef:9a:8d:90:ba:b5:e2:b9:e4:d8:0f:85:d7:5b:3a:8c:9e:bf:
44:77:7c:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 13:27:39 2025 by rpki-client