Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
File: oWldVVgkHgSoctwTRomPLOpw3-c.mft (raw, json)
Hash identifier: ht9n1d/Ip3egZ7mvGkFCm8o/crwHciS/csgKNhKoi2M=
Subject key identifier: 3A:3E:04:2B:F6:E8:79:C9:7B:86:24:9E:D7:DE:B3:E6:B5:1B:DD:17
Authority key identifier: A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
Certificate issuer: /CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Certificate serial: 0196789F7589EA75F0504ECF6D065AB5EDE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
Manifest number: 04D3
Signing time: Sun 27 Apr 2025 19:00:38 +0000
Manifest this update: Sun 27 Apr 2025 19:00:38 +0000
Manifest next update: Mon 28 Apr 2025 19:00:38 +0000
Files and hashes: 1: dwa1SVgeAHbSLLwbTRR7yyl10Qo.roa (hash: EOG7RhGAZwKSmeitaUimX8BvHbJofF1Pbz7/6Kkc5lA=)
2: oWldVVgkHgSoctwTRomPLOpw3-c.crl (hash: v66MyNYWdf0qWLIrjRILu5yt1dmiZOmr2H3YHoEixlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:9f:75:89:ea:75:f0:50:4e:cf:6d:06:5a:b5:ed:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Validity
Not Before: Apr 27 19:00:38 2025 GMT
Not After : Apr 28 19:00:38 2025 GMT
Subject: CN=3a3e042bf6e879c97b86249ed7deb3e6b51bdd17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7b:0e:5d:cb:cf:e4:84:80:0e:cb:98:bd:74:
9d:53:96:9d:49:11:97:30:6f:5d:a3:2a:7b:69:3e:
68:cc:64:07:e4:73:a6:be:0b:d3:ed:36:ba:91:29:
f6:5b:f2:0b:36:04:42:a2:3d:9f:36:b7:00:95:35:
6e:93:4d:4d:4c:06:ba:33:b4:54:a8:eb:b5:9f:df:
85:5e:a6:35:98:96:8e:89:ba:b1:92:72:2b:6a:c8:
66:2c:97:b9:72:6b:0c:33:c0:8c:04:cc:cb:5b:a8:
7d:40:a3:4d:a2:fc:6c:75:ca:8f:81:ba:c2:80:a3:
e9:2b:1e:7a:cb:7b:b2:4c:f7:42:76:2e:3c:65:f9:
33:02:1f:99:f1:08:1f:97:36:27:a6:2d:86:bc:2b:
68:d6:b2:b0:db:c6:9a:b2:58:3e:df:f2:03:95:52:
ed:66:ea:25:ec:d0:c7:9e:bc:e3:5b:1b:05:17:c1:
dc:46:7d:c4:54:12:8a:1c:4b:d8:ef:83:1e:5e:cd:
8d:3e:48:f3:8d:29:15:4f:0f:5f:43:64:6c:8b:5c:
32:15:00:3e:db:c6:5d:ba:c5:76:45:4d:9c:82:12:
2a:9a:29:95:a1:e9:15:55:4b:9a:58:e1:ad:f0:8d:
55:5e:e3:80:47:c7:96:65:6c:55:09:82:ff:94:2a:
41:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:3E:04:2B:F6:E8:79:C9:7B:86:24:9E:D7:DE:B3:E6:B5:1B:DD:17
X509v3 Authority Key Identifier:
keyid:A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:ac:48:a4:a4:3f:62:bb:84:0b:6d:95:bb:7e:33:b8:9a:6c:
8b:18:79:a1:7a:1a:d2:4d:fa:00:a1:8d:91:e7:39:c6:ae:85:
64:3c:12:fb:bc:84:90:e6:b6:2d:c6:04:f8:90:6d:5b:41:fa:
cf:52:b3:f5:80:41:d4:50:ba:09:3b:52:a8:eb:f1:91:4c:fa:
df:ce:df:81:8e:06:1f:de:15:70:89:5e:7e:21:ce:6b:eb:ed:
f7:9e:34:de:9a:20:e5:75:c1:6e:ff:d6:a6:e4:22:98:95:09:
ba:a4:1d:4f:07:67:66:84:b3:15:3d:fb:4d:22:4f:4e:6f:65:
82:ab:ed:89:7a:c6:ce:7a:6d:a5:10:66:56:da:45:2b:d4:57:
23:e6:99:f4:8f:24:47:9b:e4:3c:bc:ee:ea:b6:9b:89:ca:d0:
78:7d:d8:9b:26:89:a4:e5:98:82:2c:63:61:5e:62:4f:34:98:
5a:c7:10:b3:c3:20:7b:ba:59:82:1a:f4:0e:ee:c9:21:42:03:
1e:97:78:e7:3e:25:98:71:f3:0c:ce:fa:cf:d1:60:5b:17:25:
11:a4:47:86:01:a1:1c:0f:e6:bd:0e:93:16:9c:ca:03:34:eb:
c6:76:4b:33:68:d4:25:8f:3b:e0:a1:e1:67:8d:65:c7:04:4d:
ba:16:94:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:16:53 2025 by rpki-client