Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
File: oJfWos9CiA2-v0KjJRkHohyRpKU.mft (raw, json)
Hash identifier: tPuEKDbfHDuxD45GiSTaL21MNutKct3MqaWOqXtrt1s=
Subject key identifier: E0:9A:80:5D:0F:61:57:AA:42:2C:D3:3E:98:0E:25:FB:E8:79:E6:91
Authority key identifier: A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
Certificate issuer: /CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Certificate serial: 01969F3F8B401C007DA923C01CCC8A85C328
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
Manifest number: 1523
Signing time: Mon 05 May 2025 07:01:03 +0000
Manifest this update: Mon 05 May 2025 07:01:03 +0000
Manifest next update: Tue 06 May 2025 07:01:03 +0000
Files and hashes: 1: 9xc32CvuOjNWHQB-PWYWWQOY_yA.roa (hash: PjbNQ/Rs2a2yPfO42XDBv2ntO3mtq/Wj2Yqgz9eO9jA=)
2: oJfWos9CiA2-v0KjJRkHohyRpKU.crl (hash: XYanzCtMoIIEHdo/QTxMF+NK2Zgo7pQ8HeJ8nvpotmM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 07:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:3f:8b:40:1c:00:7d:a9:23:c0:1c:cc:8a:85:c3:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Validity
Not Before: May 5 07:01:03 2025 GMT
Not After : May 6 07:01:03 2025 GMT
Subject: CN=e09a805d0f6157aa422cd33e980e25fbe879e691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6c:8e:5c:c3:b7:ed:bb:6f:a1:ff:dc:b4:4d:
6a:34:45:07:60:c1:5e:50:a7:f9:cf:d5:e6:fc:82:
7a:23:87:3e:90:0c:85:46:17:8a:73:1a:70:56:5a:
ad:7b:20:97:b8:a8:b3:37:b6:5d:54:ec:a7:cd:97:
e6:53:5b:66:5c:b0:96:bd:43:88:d5:b7:b9:a9:f8:
29:56:31:52:f0:0d:5b:f5:af:9a:c3:9c:70:88:ec:
7a:31:eb:47:02:0b:a3:e7:68:1e:02:18:12:3d:e4:
a0:3f:ce:a9:1a:59:17:a9:15:43:a3:e5:4f:38:50:
91:89:67:88:53:b6:de:cd:9c:e2:27:8e:eb:f4:4d:
52:cd:71:87:45:a3:22:a1:65:c6:00:ad:be:70:29:
f9:c5:14:60:9c:0e:59:e6:9c:66:db:4d:6f:c4:f8:
7c:70:b2:c2:2d:d0:1a:ee:93:b3:da:32:cb:27:61:
46:b6:2f:17:c2:83:89:ec:8b:7a:4d:87:98:8e:23:
d8:5c:1b:5c:eb:56:e9:64:10:69:0f:de:eb:6b:62:
90:22:2f:bf:61:13:c5:c8:da:94:44:4d:af:c7:c7:
11:99:f0:25:2f:6c:8e:ed:9d:25:33:7a:53:ff:18:
56:48:9c:f2:35:63:3c:5e:31:10:28:8b:32:76:ee:
de:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:9A:80:5D:0F:61:57:AA:42:2C:D3:3E:98:0E:25:FB:E8:79:E6:91
X509v3 Authority Key Identifier:
keyid:A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:5c:f3:21:83:4c:db:ea:df:e5:10:41:0c:11:38:2e:aa:0e:
5f:ad:ac:8e:0c:8d:c6:e6:f9:01:cd:db:86:54:77:81:22:92:
4e:27:38:a8:53:72:98:d9:6c:fd:99:5e:62:ff:6f:d6:ca:26:
c7:38:eb:7c:69:87:e4:eb:70:e8:f5:e0:49:2c:c6:e5:24:ed:
c3:8c:d7:1e:1e:7d:5c:e0:ba:77:31:9f:52:05:6b:b8:cd:b9:
ef:5b:13:d3:64:19:41:aa:ba:5c:31:43:e9:53:90:19:87:c2:
f9:70:51:87:d5:54:12:13:fa:59:17:c0:7a:ab:5b:fa:5b:62:
cb:75:51:fc:71:9d:af:a0:7f:75:17:27:6a:3f:b3:2e:4c:d7:
ac:24:66:08:3f:19:7e:47:a4:17:ba:23:5c:c0:1e:64:bd:57:
52:99:c5:b3:16:1e:9d:54:43:37:78:5e:71:6c:47:2c:87:d3:
7c:ae:db:0f:82:2b:5b:09:d4:e1:f5:86:e6:24:46:06:08:fc:
ef:50:ca:b9:e8:64:88:63:3e:76:7b:28:bd:01:79:9a:df:01:
ec:d0:30:9b:43:6a:f4:24:a9:04:8f:fd:ff:ec:8a:9b:9c:c2:
b3:23:28:da:70:59:7b:9e:8d:e1:f3:a0:7c:b1:12:91:a8:18:
15:6d:d6:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 14:00:10 2025 by rpki-client