Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: 74Rz1PUGchkM1SW3YIGeqTNMVK9rPADyaz9CJn+XXiA=
Subject key identifier: 81:66:28:BE:02:10:10:08:96:55:F9:90:26:EF:D7:BD:33:BA:3C:E2
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 019688B738DCA3C3EBAD52215DF893001EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 1516
Signing time: Wed 30 Apr 2025 22:00:31 +0000
Manifest this update: Wed 30 Apr 2025 22:00:31 +0000
Manifest next update: Thu 01 May 2025 22:00:31 +0000
Files and hashes: 1: RW4un6mRBfPzHloV5RnOReMxV4M.roa (hash: 6KtCB53EZaTt4rkvk3WW5xLU60zG4n/pYxl9BtxsfPs=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: GvLIbqXm/tA0QtURCodkyecjmG4hLS3FSWCFy7f+kJc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:b7:38:dc:a3:c3:eb:ad:52:21:5d:f8:93:00:1e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Apr 30 22:00:31 2025 GMT
Not After : May 1 22:00:31 2025 GMT
Subject: CN=816628be021010089655f99026efd7bd33ba3ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:63:ef:ad:05:1b:16:5b:49:be:ae:8c:6d:6b:
b9:d8:d8:d8:48:f1:7b:3e:b0:7d:03:e0:d7:d9:a0:
80:f1:4e:59:ac:f8:09:b0:cb:8c:22:1c:f2:3d:59:
47:97:65:58:81:95:0a:31:43:0f:55:f7:13:9d:e9:
36:b0:c4:35:51:80:f1:e3:c2:d8:26:43:ba:6e:5f:
9e:6c:99:e5:a1:65:a6:62:f4:4e:b8:e4:23:f2:1a:
34:49:74:d5:f0:d7:bf:24:27:da:4f:49:1b:4b:7b:
28:48:4b:6f:16:62:cd:34:ad:7a:ec:db:8f:f0:5b:
c6:16:15:22:44:78:54:63:54:8c:b3:60:22:24:01:
d0:31:d7:6c:f3:98:46:57:37:78:a9:a2:b0:83:c1:
7f:65:67:66:80:9b:6a:c3:98:43:1c:10:74:b7:6d:
b6:d6:00:d5:20:18:82:25:7a:13:92:20:ea:70:39:
db:12:25:e8:d9:f2:22:d2:f1:7c:74:1a:53:a0:09:
4f:2b:fb:2c:a1:e7:b8:a6:88:49:84:8f:92:18:b9:
a5:ac:fc:2f:20:97:06:58:b9:73:b9:19:54:83:6d:
b1:9f:f6:2c:38:bb:9c:4f:ec:4e:21:2b:2b:8c:dc:
18:d1:9d:e7:27:06:9b:dd:10:7b:80:9f:a5:59:fe:
7c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:66:28:BE:02:10:10:08:96:55:F9:90:26:EF:D7:BD:33:BA:3C:E2
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:79:b0:f8:b6:2c:9e:2a:36:7c:70:2c:02:8f:66:80:8b:3a:
d1:2d:4e:aa:84:b1:e0:e9:de:3e:ff:e4:51:31:56:af:31:e9:
61:ce:53:85:6b:36:2f:be:e0:78:3d:3c:fe:73:e5:b1:7d:30:
bf:2a:e7:7d:de:cc:81:28:59:0c:07:c1:36:c8:9f:ac:4d:46:
76:81:da:79:4f:63:42:59:6b:d8:01:41:de:f9:0c:8f:64:2d:
ec:5a:e2:59:7c:dc:af:a2:c4:e7:0f:d2:a6:17:a4:9d:d0:97:
1f:74:33:7b:21:79:ef:d9:67:82:fc:c1:c4:ec:35:be:8a:72:
ec:84:9e:13:bd:b0:9a:d3:2b:21:1e:ad:18:a2:3f:65:d0:2e:
66:e2:05:c7:10:aa:41:0c:14:9a:85:74:9b:56:c2:14:8e:74:
0c:7c:29:94:a1:c9:37:62:15:aa:77:cd:d4:c1:3c:59:06:fe:
30:3e:2b:96:d4:da:f6:8f:d7:05:92:4a:c3:6b:dc:46:e7:bd:
ca:70:11:96:45:ac:03:ac:75:e7:85:69:71:34:34:f5:82:33:
48:7e:53:65:5a:08:ef:15:80:5b:cd:82:e4:9d:10:60:8d:d4:
24:aa:12:bb:17:ac:01:f1:88:a4:49:a5:37:e0:f5:23:e3:00:
86:ed:e3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 05:04:10 2025 by rpki-client