Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft
File: OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft (raw, json)
Hash identifier: tT4VaHTIlaEf+UQ0IEjqffqbXgPMsW1sJP1CajnjPkk=
Subject key identifier: DD:45:6A:BA:41:25:DD:43:FC:2A:76:CC:F5:99:1C:32:E5:DE:6D:04
Authority key identifier: 3A:E0:09:62:47:A8:C5:4E:5D:E8:C1:B0:DA:F1:05:4A:EC:8C:C4:50
Certificate issuer: /CN=3ae0096247a8c54e5de8c1b0daf1054aec8cc450
Certificate serial: 0196A209413818E176C251DDE09B65EF9084
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuAJYkeoxU5d6MGw2vEFSuyMxFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft
Manifest number: 1524
Signing time: Mon 05 May 2025 20:00:37 +0000
Manifest this update: Mon 05 May 2025 20:00:37 +0000
Manifest next update: Tue 06 May 2025 20:00:37 +0000
Files and hashes: 1: 8b8hGUt6rzi1dlifxra-q3rgP6w.roa (hash: KASE+0wVItpUVcgXdu/CScsiZaEIchQxerFmFT5uHpo=)
2: OuAJYkeoxU5d6MGw2vEFSuyMxFA.crl (hash: qgM5ooaeSxXeiV7c6f+Idonpf6j8F/blLzvVbVEGU3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OuAJYkeoxU5d6MGw2vEFSuyMxFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:09:41:38:18:e1:76:c2:51:dd:e0:9b:65:ef:90:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae0096247a8c54e5de8c1b0daf1054aec8cc450
Validity
Not Before: May 5 20:00:37 2025 GMT
Not After : May 6 20:00:37 2025 GMT
Subject: CN=dd456aba4125dd43fc2a76ccf5991c32e5de6d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1a:17:1e:14:7d:79:06:ba:1a:a8:56:97:98:
26:aa:ef:f0:1b:6c:83:b2:c4:72:f5:e6:d9:e2:8f:
8d:d6:2a:bd:da:d4:1f:a2:ed:80:ca:77:4e:e2:7b:
fc:88:4a:b1:7b:81:d8:0e:1a:8f:db:13:fa:9f:5c:
f9:e4:4d:4c:1f:29:48:a3:3b:4a:2d:cf:50:32:aa:
9b:e0:45:b7:2a:05:84:8b:37:d8:7c:f7:44:fe:98:
88:05:2b:d5:9a:43:d2:34:d7:46:e6:8d:84:43:98:
ee:b3:9a:52:3f:89:72:1f:a2:ee:3a:38:25:df:fd:
c7:cc:89:9f:f1:94:96:46:60:a3:17:07:19:05:0e:
d2:31:0a:d4:3f:3c:18:79:83:0d:fd:ae:48:d2:3b:
3f:3a:3d:b7:8e:3e:d4:c6:fd:b6:07:95:4e:bd:4c:
ab:bb:04:94:4e:46:39:88:4c:8b:3d:d6:74:8e:97:
93:5a:9c:0a:28:ae:6b:f4:95:5b:52:e6:8c:fa:d8:
d1:04:d9:e7:ca:df:28:55:ee:0d:26:00:e8:53:be:
42:32:90:7e:3c:f9:b3:85:19:fd:35:5d:79:c9:76:
9d:a0:a1:b2:68:e7:40:1b:19:7a:03:13:4b:b9:15:
3e:d3:50:86:71:6c:09:06:e4:ea:65:75:60:81:54:
9b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:45:6A:BA:41:25:DD:43:FC:2A:76:CC:F5:99:1C:32:E5:DE:6D:04
X509v3 Authority Key Identifier:
keyid:3A:E0:09:62:47:A8:C5:4E:5D:E8:C1:B0:DA:F1:05:4A:EC:8C:C4:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuAJYkeoxU5d6MGw2vEFSuyMxFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:45:7b:4a:e3:c5:9d:a7:9a:97:98:0e:e7:91:69:cf:17:35:
16:c6:b1:4b:18:50:94:16:fb:43:2e:73:4b:7c:6c:97:03:b2:
73:a3:bf:66:3a:0b:02:0e:45:8a:63:f8:3d:23:73:41:ca:d4:
34:e3:36:69:7c:09:3a:72:e9:22:59:ed:b7:5f:f8:74:5d:77:
41:e5:a5:ce:95:69:ed:ce:42:65:38:8c:ca:01:66:b0:f8:a6:
61:a6:d2:db:76:26:8f:e6:1b:a2:67:34:c0:4c:35:24:d3:a0:
c2:2d:4e:9d:40:7a:81:b0:7f:ec:b4:e8:79:68:d2:82:c4:fc:
5c:a0:38:61:85:cd:86:79:ba:da:44:69:d1:9c:e1:c2:c6:1a:
8b:89:ec:30:cf:cd:4c:9c:fe:38:35:1e:b5:96:b5:be:09:3b:
e3:a7:98:df:bd:57:f5:2d:a0:12:b5:cb:2e:7a:a2:f7:6e:91:
20:3c:18:f0:60:ef:7e:82:03:85:fe:ba:68:7c:7c:13:ce:ee:
43:18:54:2e:7f:43:7b:64:91:3f:5e:c5:3d:5a:2a:fa:4f:ba:
ca:25:e2:1a:68:aa:24:34:f9:20:e6:8a:69:c4:af:85:34:1a:
50:cb:f8:34:23:cc:2d:1f:3a:fa:b3:22:f0:16:67:85:3e:ab:
2c:33:b5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 03:39:20 2025 by rpki-client