Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier: rODN2tvixLNNXLWt9g/nysPSUQuiXYYgRgFKkj8kXQk=
Subject key identifier: 06:0A:17:2C:58:A9:E0:02:4F:93:33:61:E4:82:78:C3:E1:9C:12:9C
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer: /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial: 019676E85CF79182CF7DDBC202455CA7CA50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number: 0A92
Signing time: Sun 27 Apr 2025 11:01:01 +0000
Manifest this update: Sun 27 Apr 2025 11:01:01 +0000
Manifest next update: Mon 28 Apr 2025 11:01:01 +0000
Files and hashes: 1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: jxgmI1Cag0TRHOFcWRafXm9PXn8wYHDEB+1Qk5IBQM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e8:5c:f7:91:82:cf:7d:db:c2:02:45:5c:a7:ca:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Validity
Not Before: Apr 27 11:01:01 2025 GMT
Not After : Apr 28 11:01:01 2025 GMT
Subject: CN=060a172c58a9e0024f933361e48278c3e19c129c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bd:e8:9a:15:eb:5d:94:3a:8e:af:1b:32:29:
d0:35:ed:3b:30:61:5b:87:e6:ba:55:f3:d9:47:84:
29:f0:f3:91:df:a5:06:4e:f7:f8:65:c2:a5:04:d5:
4b:73:00:2f:dd:3f:40:e3:ac:7a:f7:51:38:75:91:
df:d5:a8:48:d2:c5:85:1c:26:1b:61:71:4b:87:ab:
bb:7a:75:e3:bc:d1:a6:01:21:d2:f1:d7:f1:bf:12:
6f:d2:e1:5a:ea:79:1d:58:46:8c:fc:58:18:cf:7b:
08:3e:70:18:69:1d:3c:ad:d8:05:98:81:ac:18:ca:
ed:90:fa:fa:98:5c:11:f5:df:5c:e5:0b:47:48:3d:
12:bb:41:d5:46:39:54:12:28:23:03:e0:d6:37:59:
01:0c:4b:d4:5b:aa:15:a9:c4:b1:d5:4f:e6:46:a7:
ae:44:90:a2:8d:28:9d:a4:1e:a6:6c:1b:df:05:2c:
a2:49:35:8e:f6:67:94:67:69:ba:6c:86:52:f2:3f:
56:fd:49:40:7f:ef:b9:3e:cb:85:b9:f9:ec:6f:72:
a0:46:50:5e:32:ec:fb:0f:00:f3:48:5e:95:cd:d1:
98:b0:87:a1:36:73:fd:f4:35:91:c1:ee:43:be:2d:
cb:31:36:be:b3:6d:43:97:0d:55:4a:e6:1c:dc:b9:
f9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0A:17:2C:58:A9:E0:02:4F:93:33:61:E4:82:78:C3:E1:9C:12:9C
X509v3 Authority Key Identifier:
keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:36:ab:75:a4:84:63:46:3b:8f:e4:f0:82:d9:11:bb:13:0d:
ea:93:35:a9:1b:15:6d:f0:b5:4d:83:af:fc:c2:9e:ec:72:14:
8a:1d:b7:29:61:c0:ff:a5:53:b7:83:80:49:16:4d:79:23:99:
85:c4:bf:ab:d9:35:1d:52:78:ee:e9:8c:fd:2d:d1:2b:10:63:
74:20:f1:ea:16:66:e5:45:d0:b9:2f:69:8b:5a:28:ed:ba:51:
ac:b1:f6:be:02:e9:cb:b6:ff:30:71:02:35:b3:c8:5b:43:3f:
d2:c5:d5:5f:f2:59:81:b6:85:c0:1c:cc:6b:f6:d8:3f:1c:be:
6f:c8:b3:00:00:39:17:da:a1:00:0a:a4:0a:c4:0c:05:7c:da:
97:9d:23:cb:e4:59:60:38:01:03:97:55:de:86:0c:eb:55:51:
31:8b:92:fd:84:28:da:db:62:d3:df:cd:4c:47:37:32:72:05:
4a:80:94:d4:48:8f:86:79:2b:60:09:93:42:91:46:f6:36:f1:
76:f8:8b:5a:04:dc:4c:84:6e:0e:9b:0e:f7:4d:be:9a:c7:c1:
14:41:70:fd:a3:50:41:1a:6e:0a:fa:16:90:fc:49:1a:d3:f5:
08:3a:56:1a:13:c0:7d:da:52:06:75:6d:86:e3:90:a4:b1:1a:
b3:24:cf:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:48:31 2025 by rpki-client