Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json)
Hash identifier: PEhzlrA53z8nW9wJtZMfelU1yvYNEWiPRHGvSM34qh8=
Subject key identifier: B2:A0:C0:F4:FF:8D:D1:E6:AD:BE:06:FB:78:0C:08:07:B4:84:B7:F3
Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Certificate serial: 0196C26FC6F4053FDBF87E9D167341D4107E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
Manifest number: 028D
Signing time: Mon 12 May 2025 03:00:27 +0000
Manifest this update: Mon 12 May 2025 03:00:27 +0000
Manifest next update: Tue 13 May 2025 03:00:27 +0000
Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: oF55T45zvsAJhvDFAzC/XCkmxyzb2VpGhCw8mM0fCGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:6f:c6:f4:05:3f:db:f8:7e:9d:16:73:41:d4:10:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Validity
Not Before: May 12 03:00:27 2025 GMT
Not After : May 13 03:00:27 2025 GMT
Subject: CN=b2a0c0f4ff8dd1e6adbe06fb780c0807b484b7f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:be:1b:2b:59:98:c8:08:61:c1:0b:24:2f:91:
b7:c1:4c:80:09:39:bb:9f:b9:1b:49:d9:00:97:76:
3d:5e:74:64:ff:b7:69:94:57:a5:62:de:b0:96:dc:
f7:50:27:34:91:86:54:2b:3f:9d:ed:bb:fa:b5:56:
cc:08:23:4f:88:4a:55:31:36:5f:c4:f7:61:56:42:
6e:62:31:6b:88:c8:e8:ca:e5:f9:ca:24:cb:e2:95:
0b:de:bd:50:8e:69:b0:fc:4a:5b:9f:de:b3:d9:69:
fe:3f:3c:e4:f5:4e:80:b2:52:43:41:ec:f1:e0:3c:
39:26:c6:66:2a:60:2d:e6:64:e1:60:66:30:16:a2:
da:da:0c:aa:97:3c:8d:23:4f:c8:25:d0:62:6e:7f:
b0:b9:b3:b5:b9:1d:ad:bb:87:a3:f7:77:ed:d3:6b:
fa:de:2c:b8:f2:f8:8a:69:57:af:0f:e2:53:80:03:
db:34:3f:d0:0a:22:2e:f7:f5:5a:08:31:1b:1e:a4:
14:d6:9d:4d:7d:8a:cf:82:62:e0:24:0b:2e:63:c5:
3a:65:61:a9:19:bd:23:39:07:5c:a8:87:6c:64:5a:
e1:32:c8:8b:19:89:6f:d0:77:0a:2b:45:b8:e5:95:
c6:82:e5:51:e0:f3:29:0c:8c:81:55:84:48:13:28:
37:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A0:C0:F4:FF:8D:D1:E6:AD:BE:06:FB:78:0C:08:07:B4:84:B7:F3
X509v3 Authority Key Identifier:
keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:be:23:ef:5f:68:af:05:75:5b:63:95:47:3d:88:b8:3c:ce:
bd:14:6a:dc:24:f5:e7:23:23:10:51:f6:35:9d:ec:95:cf:54:
73:57:a9:29:b1:64:91:af:5e:8d:f1:f8:47:4b:1a:18:76:24:
1e:9b:5c:8d:d1:7d:7b:51:ce:f2:28:9d:fb:d4:9d:24:05:ff:
a3:b5:37:7d:a7:61:0e:05:a9:ef:de:1b:c6:00:b7:c9:21:31:
27:e4:30:3b:ba:57:48:2d:fc:58:64:3b:61:75:ed:0d:6f:b6:
ad:e0:0c:4b:f9:f1:26:f3:8f:0a:b2:1c:65:0f:2f:b8:b7:6d:
df:90:ef:07:27:56:19:8d:4c:68:67:76:0a:f4:70:d2:59:2a:
2a:26:19:d0:61:32:e6:79:25:0b:60:9a:01:2e:88:8e:80:f3:
f8:46:12:47:18:a0:60:81:bf:d9:26:09:b0:04:ff:2a:c5:e8:
da:8b:5f:3b:0f:64:88:00:64:fd:4f:22:f5:78:cf:75:f9:aa:
d4:cb:aa:99:fe:7c:31:e0:1b:22:b6:58:5d:98:b2:99:8b:64:
5b:2b:d2:26:05:0d:d9:e0:27:5a:36:44:73:22:9b:fa:b8:ac:
36:c0:6d:c9:b6:d2:a8:3d:7f:e1:30:f0:9e:e0:7e:95:43:a3:
cf:c7:b7:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:57:42 2025 by rpki-client