Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
File: oFa0I4Othizmo3StLKbTbCVNx7E.mft (raw, json)
Hash identifier: AOvnf2zHMfsackRP0W2r5qp38ScUW7lVnEQuAXyXp54=
Subject key identifier: B6:EE:5A:C8:AF:C2:79:D1:38:AD:CB:EB:97:7C:A1:4E:3A:79:E0:5E
Authority key identifier: A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
Certificate issuer: /CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Certificate serial: 0196B10E7CFBF92AB647DF5FB0DC9D79D0C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
Manifest number: 1452
Signing time: Thu 08 May 2025 18:00:38 +0000
Manifest this update: Thu 08 May 2025 18:00:38 +0000
Manifest next update: Fri 09 May 2025 18:00:38 +0000
Files and hashes: 1: 4GMh7fIw13Bz3DUcceuO2FBtK6M.roa (hash: E9IDQ7QjcqjZJIn5bDeaHNVCqS2wv2WqYXLU0FEPSXU=)
2: XJGEpCzB4loh5ef0k98ZvXtkA5A.roa (hash: ln2eCgW4Lb0/Z2WnRMYRLGIC+qtaz3YxPhhlJZ12csI=)
3: oFa0I4Othizmo3StLKbTbCVNx7E.crl (hash: bg5k2wt92hh31NGmQJR0AF8WUkeaiBq9at1fUlzg03k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 15:42:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b1:0e:7c:fb:f9:2a:b6:47:df:5f:b0:dc:9d:79:d0:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Validity
Not Before: May 8 18:00:38 2025 GMT
Not After : May 9 18:00:38 2025 GMT
Subject: CN=b6ee5ac8afc279d138adcbeb977ca14e3a79e05e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9c:a2:59:dd:b4:ee:55:e3:ad:8d:e5:16:95:
b6:ef:25:4b:3a:76:ca:94:a2:b6:28:88:ac:07:d9:
24:cf:46:96:34:e8:32:30:3a:14:bb:c1:97:fb:a9:
10:1d:76:dd:4d:9d:3b:9e:e4:9e:ce:9d:01:8f:bf:
65:72:65:01:a7:4b:45:01:20:7c:79:dc:b3:3a:5c:
f4:ed:ad:33:72:34:09:39:55:a8:c0:e9:70:40:f3:
18:b9:7b:bd:54:bd:9f:d5:f6:99:6d:b3:b8:c5:a0:
7a:c0:02:87:cd:7a:3a:b4:c5:76:2a:1c:05:86:87:
dc:ec:cb:bc:46:0c:76:f1:ef:67:6a:56:f9:ac:3d:
e7:ba:09:cf:2f:ae:90:4c:69:77:1a:ca:c0:06:29:
a8:f9:6c:59:2c:4a:76:4d:cb:68:bc:67:07:f9:c5:
53:8c:2e:5f:f8:0b:03:db:49:82:ec:63:d5:94:7b:
b1:b6:4a:bc:65:ef:9e:93:d4:74:dc:90:d7:3b:d1:
69:dc:c4:11:c4:a5:70:2b:4f:16:a8:0e:25:20:3c:
4d:36:05:f8:90:4d:83:8c:92:c6:4f:b3:e6:70:01:
b2:ff:d4:8d:d6:fa:f0:8a:de:fa:a2:58:6a:26:d2:
76:2e:91:b7:9d:df:db:45:ce:d6:c2:99:c6:45:99:
cc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:EE:5A:C8:AF:C2:79:D1:38:AD:CB:EB:97:7C:A1:4E:3A:79:E0:5E
X509v3 Authority Key Identifier:
keyid:A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:da:65:77:89:3b:f8:a8:13:2e:30:8d:2b:e3:4f:c7:c8:ff:
74:1a:cf:02:69:f0:ab:42:fd:c5:fe:a0:3d:c2:0a:62:ef:7d:
73:3f:f7:61:68:ef:a4:c9:b5:cc:f6:e6:f2:d3:13:f5:65:75:
23:55:80:d3:9d:2e:76:66:6f:2f:94:cb:d9:4a:a4:51:5e:65:
a7:06:a1:99:a9:9d:14:41:28:da:e0:b1:a5:c0:30:bd:19:12:
43:cc:95:e3:ae:64:2d:ed:fe:10:cd:d2:63:33:d0:14:41:46:
55:0c:4d:b0:0e:fa:3e:79:80:05:58:74:b5:06:bb:e7:cd:af:
29:be:9f:68:21:25:77:bd:96:9f:e6:12:b6:a9:d1:13:6f:56:
55:fe:46:6f:cf:5c:1f:bc:f6:68:06:99:b2:64:7c:56:9f:08:
48:79:56:57:99:31:47:1c:57:b5:a4:85:0f:d7:f9:fa:91:a9:
00:7d:fb:1a:7e:3c:07:fd:f2:ac:d0:e3:91:6a:00:b7:6a:2c:
fc:f9:3d:24:0b:2a:6e:e6:ec:3e:0f:27:26:70:63:96:60:52:
26:6c:03:80:4a:cb:7b:6b:72:fd:b9:32:9b:39:ad:98:53:52:
dc:ed:93:96:ba:0c:ec:ad:d7:2e:8b:eb:18:87:51:07:96:66:
92:fd:4e:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 01:38:24 2025 by rpki-client