Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
File: oI5By_3vrQuw4pckeswaIB0t9KA.mft (raw, json)
Hash identifier: E74fEbTzz83x2tSL3H0LBXgJtc0j/CTXxEaS4Yr+7KY=
Subject key identifier: 87:F2:83:CD:D6:24:2F:1B:86:F7:30:FE:C7:03:78:78:65:C5:17:AF
Authority key identifier: A0:8E:41:CB:FD:EF:AD:0B:B0:E2:97:24:7A:CC:1A:20:1D:2D:F4:A0
Certificate issuer: /CN=a08e41cbfdefad0bb0e297247acc1a201d2df4a0
Certificate serial: 0196D73FEC5E3174DED71A8FB48A70D58B8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oI5By_3vrQuw4pckeswaIB0t9KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
Manifest number: 10D5
Signing time: Fri 16 May 2025 04:00:12 +0000
Manifest this update: Fri 16 May 2025 04:00:12 +0000
Manifest next update: Sat 17 May 2025 04:00:12 +0000
Files and hashes: 1: kaGph50MrnZk9_Ae5Md0JZHkmEM.roa (hash: KOuavh84jne4Oayx4KsSyaMHm/sNkEEba6rU0bPnEbc=)
2: oI5By_3vrQuw4pckeswaIB0t9KA.crl (hash: hxWM2aMTdwlWymZmhaVuu9LXaiNOUUC+xf66KGppJjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oI5By_3vrQuw4pckeswaIB0t9KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 04:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d7:3f:ec:5e:31:74:de:d7:1a:8f:b4:8a:70:d5:8b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a08e41cbfdefad0bb0e297247acc1a201d2df4a0
Validity
Not Before: May 16 04:00:12 2025 GMT
Not After : May 17 04:00:12 2025 GMT
Subject: CN=87f283cdd6242f1b86f730fec703787865c517af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8a:4f:08:a8:29:dc:c5:a6:83:47:0c:3e:10:
17:2d:de:ee:91:dd:32:c8:5e:64:01:5d:cc:f5:0d:
a5:bb:87:6a:a6:da:8b:82:82:e3:94:80:8b:95:0f:
2c:fc:90:56:be:20:c5:9a:14:ae:42:a2:8f:b8:c4:
f2:49:26:d4:3c:10:a2:a5:c8:5a:91:7c:68:41:ac:
f5:33:d0:d3:cd:7c:04:2d:50:7c:2a:47:29:8c:66:
76:ce:f6:bb:7a:4d:88:ed:83:aa:07:d9:9c:74:5e:
95:5b:f4:88:6d:ed:85:9f:95:43:be:9d:11:34:b0:
63:9b:89:ba:d8:f2:1b:73:d7:39:59:c9:9c:bd:4f:
7b:24:ba:c1:ad:fd:95:8b:2b:ef:d7:55:d9:bb:1f:
cf:3b:fc:46:3f:36:4a:2a:83:96:4a:b1:64:66:af:
13:37:4e:e0:d5:b1:09:7f:8e:25:46:84:e8:47:4f:
20:ad:c9:89:d6:0a:29:3f:26:db:9b:9e:51:00:75:
81:bc:90:bf:77:36:17:93:8a:00:1c:e4:32:c8:fc:
7e:15:be:eb:3e:c1:0d:95:d3:c0:40:1d:91:6f:fb:
c5:3f:ec:ad:ce:57:9e:ff:54:d0:e4:5e:a6:1a:a2:
45:3e:f8:e1:b0:0f:9d:e5:6f:4a:16:f8:f2:86:f2:
1f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F2:83:CD:D6:24:2F:1B:86:F7:30:FE:C7:03:78:78:65:C5:17:AF
X509v3 Authority Key Identifier:
keyid:A0:8E:41:CB:FD:EF:AD:0B:B0:E2:97:24:7A:CC:1A:20:1D:2D:F4:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oI5By_3vrQuw4pckeswaIB0t9KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:da:2b:67:b9:64:1a:15:54:f8:20:ad:3b:ed:e0:81:0c:b1:
40:f0:0b:68:2f:3c:5f:44:cc:9c:c7:e7:eb:f4:8a:f0:b6:b9:
76:57:4a:83:bb:36:6b:f9:26:ef:5d:2b:d3:4a:1d:5f:25:5c:
67:96:32:8c:eb:c0:dc:30:9b:81:0c:40:39:b0:84:f7:65:52:
2c:a0:ef:86:35:0c:bf:e4:30:d7:78:33:98:62:4d:51:23:e4:
a5:e5:e7:86:6f:95:f4:f0:b7:d5:19:cc:79:9e:89:5a:7e:1c:
71:c8:4f:03:09:c4:dd:dc:28:00:89:31:5b:43:08:90:24:f5:
27:64:5f:b5:d8:a6:48:3f:e1:0e:ef:89:31:06:47:ef:32:a2:
58:c1:b2:3f:7c:a4:91:a5:66:20:88:f1:94:c7:45:2d:be:78:
db:5e:02:48:ec:40:f1:d8:41:08:ec:54:a5:3a:a1:23:28:98:
50:b5:40:96:78:28:a2:64:bf:68:db:4b:fc:b2:cf:ba:3b:16:
1b:5b:34:75:67:6a:0f:12:ff:10:dc:6c:84:4f:84:3a:80:b9:
96:86:2e:c8:b8:72:c9:be:af:25:f5:36:37:b3:88:0c:cb:ea:
f6:27:9f:3f:37:7c:5a:3b:d8:2f:fe:9e:00:2f:07:6a:ae:6b:
3f:a9:94:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 12:11:38 2025 by rpki-client