Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
File: oWKOOfRxrdx15xo5G4Ldklx_CB0.mft (raw, json)
Hash identifier: y5CiGXkZqort5v746sZEPW2RJgla1SEMGURx67iLokw=
Subject key identifier: 45:FE:88:F8:4C:B7:6E:4B:08:7E:3B:F1:A5:8C:5F:0F:C7:E0:74:88
Authority key identifier: A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
Certificate issuer: /CN=a1628e39f471addc75e71a391b82dd925c7f081d
Certificate serial: 0196A5AF82801A88EDED6B92FF006AD9D991
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
Manifest number: 10FA
Signing time: Tue 06 May 2025 13:01:04 +0000
Manifest this update: Tue 06 May 2025 13:01:04 +0000
Manifest next update: Wed 07 May 2025 13:01:04 +0000
Files and hashes: 1: 1-rpUgw0W3sKSFdW3yshaE1HCCc0.roa (hash: c/Tt5N/pZWiN2mpptC/U9LHYusWW/dCE4lcNMT3U+WE=)
2: oWKOOfRxrdx15xo5G4Ldklx_CB0.crl (hash: 0wDrKsbZofYn999kh5+vI4s4d0/9wLduNED0Gzq8pqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 13:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:af:82:80:1a:88:ed:ed:6b:92:ff:00:6a:d9:d9:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1628e39f471addc75e71a391b82dd925c7f081d
Validity
Not Before: May 6 13:01:04 2025 GMT
Not After : May 7 13:01:04 2025 GMT
Subject: CN=45fe88f84cb76e4b087e3bf1a58c5f0fc7e07488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:52:ee:10:d2:ea:39:65:b6:ea:08:6c:f2:2e:
79:3a:a4:8f:56:4c:c4:00:02:3c:d9:eb:ec:d1:9b:
db:45:aa:64:0e:7c:33:e8:7b:32:c0:e9:e3:f5:6e:
fb:81:8a:21:69:5c:14:06:65:9a:68:0a:96:29:07:
02:24:7c:fe:f6:d7:05:2d:14:c9:f9:bf:14:db:32:
11:5a:81:6a:8b:0f:61:20:9b:a8:8d:e9:25:63:75:
3f:6c:a2:9a:e2:7d:d9:5d:5b:e5:a0:f1:6c:6f:db:
60:8b:6d:97:6f:70:26:45:e9:f6:c2:51:d4:a1:9f:
57:c9:12:94:67:ea:e1:22:37:8f:df:3d:ab:55:c8:
37:af:c6:6a:6f:92:f9:6f:4d:e6:d7:03:aa:ac:45:
a3:44:a0:95:29:d4:32:ad:67:9a:e9:7a:fa:88:ac:
b0:25:e8:c2:14:6f:1f:da:2d:2c:ef:5f:c4:78:dd:
2e:75:67:a7:93:b3:4f:75:25:3a:05:06:33:16:95:
34:9f:d2:e2:67:6d:bf:50:a9:1e:e5:1a:82:38:90:
8b:e0:b7:c6:04:9a:87:56:7f:d6:6c:ae:22:9f:d8:
eb:ac:ef:1a:71:e0:ff:a3:cb:78:2f:75:1f:79:b5:
f5:a6:08:52:32:1c:5b:f3:08:77:a3:36:35:1f:5b:
bd:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:FE:88:F8:4C:B7:6E:4B:08:7E:3B:F1:A5:8C:5F:0F:C7:E0:74:88
X509v3 Authority Key Identifier:
keyid:A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:10:16:e6:b6:08:d0:19:12:0f:4c:7e:4a:2a:a9:a7:76:ee:
41:0b:19:b9:19:fb:1f:bd:ad:81:59:82:42:cb:14:7c:d2:95:
5e:c7:3d:6d:9e:44:c0:59:59:d8:89:8c:7f:08:50:08:40:54:
a4:50:26:63:a0:6b:5c:77:57:79:1e:e7:fe:0c:a1:4d:23:5b:
33:d5:a4:af:a0:42:71:47:f7:fc:8c:e3:a9:a0:ea:25:27:4d:
73:84:98:f0:b2:f3:67:3a:f9:61:d1:09:df:10:43:13:9e:a4:
96:42:c1:e7:1d:24:74:59:2e:10:58:1d:b8:da:57:47:e7:75:
ca:c3:5f:e5:ea:68:be:d0:65:ca:27:f6:da:49:14:37:3f:33:
15:34:85:4c:fc:a8:1c:d8:e1:8a:26:3e:14:90:0d:b5:95:f7:
92:ed:0e:93:32:0b:56:39:de:c7:dc:2f:22:3f:38:ba:58:c2:
3f:86:b2:b2:b7:56:17:29:da:3d:79:be:36:2a:3b:13:ac:8e:
27:b1:56:21:fb:28:09:35:32:8f:24:63:3a:0b:9e:01:8a:c7:
ee:9e:71:13:48:d9:5a:c2:89:20:bb:8e:49:c4:6f:4e:9c:b0:
d4:d2:a4:4f:72:9d:17:98:26:1c:d4:35:99:57:dc:eb:3c:7f:
76:98:da:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 17:44:58 2025 by rpki-client