Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: 03iOnl1PLx1q+XSSCZnGaEVrJUCCCTRJfM58QcHVNxM=
Subject key identifier: 15:43:07:9E:1D:FF:4B:AC:BC:3C:8C:BC:84:BA:F2:9E:6D:2F:9B:EA
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 019685115BD8585486BC044BA4C0A1219BD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 14AB
Signing time: Wed 30 Apr 2025 05:00:29 +0000
Manifest this update: Wed 30 Apr 2025 05:00:29 +0000
Manifest next update: Thu 01 May 2025 05:00:29 +0000
Files and hashes: 1: APsUsrAn96ow-lwQ45SmC1gQegc.roa (hash: t3tVyfgAERiYm7/hAZrrvXacDVWFUchPqKdL2GXQLe4=)
2: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: ncVSw1jQGq/h73Yg1aBAZVcl5XwdniSY81I41Uo90l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:11:5b:d8:58:54:86:bc:04:4b:a4:c0:a1:21:9b:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Apr 30 05:00:29 2025 GMT
Not After : May 1 05:00:29 2025 GMT
Subject: CN=1543079e1dff4bacbc3c8cbc84baf29e6d2f9bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:65:80:f1:77:6a:28:ec:f4:dd:0d:4e:82:92:
28:c7:ff:ed:c5:7a:2f:52:22:83:a4:63:5c:d0:04:
37:b4:9f:4f:39:c9:8a:f6:47:ce:45:bf:a3:90:88:
db:df:a0:c4:4b:ef:13:ee:f4:66:79:63:6e:1d:80:
fd:df:79:a5:37:f9:2f:01:a2:62:aa:f2:65:58:8d:
46:79:84:e5:78:fd:9e:70:d9:c6:b9:24:92:95:82:
c6:ca:f0:e6:f8:69:95:20:db:5b:f6:a1:2c:c8:5f:
3a:a3:ec:ed:6a:5d:4d:8b:8c:2a:03:f3:37:b3:29:
fe:a2:02:7b:23:80:5a:45:1e:06:4f:0f:2b:38:2e:
78:dc:e1:47:04:ad:a1:00:60:35:cd:f1:ee:ae:41:
76:6e:bf:b3:20:e6:f0:71:4d:e9:9c:eb:67:fb:c6:
8d:d8:8e:3f:21:cb:42:73:28:cd:ce:0c:7c:2f:b7:
54:56:3d:45:b4:a1:8f:98:31:e5:58:73:af:56:35:
f8:14:8a:02:6d:b1:54:1a:51:a4:49:fa:96:c4:47:
38:a7:0d:ca:7e:31:45:97:a3:fb:e4:b1:6d:2b:7d:
13:82:53:bc:b9:be:bc:d3:5a:fb:05:a5:d2:b2:45:
12:c0:55:be:ae:5c:22:54:84:e7:3d:1f:61:17:48:
dd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:43:07:9E:1D:FF:4B:AC:BC:3C:8C:BC:84:BA:F2:9E:6D:2F:9B:EA
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:42:bd:ea:7b:d9:54:31:37:59:72:5c:b5:47:5e:d8:f9:00:
24:93:78:3a:fb:92:94:93:1e:64:d8:53:71:91:05:13:9c:63:
df:eb:70:29:8d:f5:4c:76:03:26:21:25:d7:63:c0:17:c9:8e:
35:73:0b:ab:1b:9b:c6:80:31:1d:0b:d8:c8:25:72:ce:33:47:
32:9d:a4:5c:2e:77:ee:36:28:d2:8e:53:01:2a:ea:b0:e6:34:
4e:77:10:c8:46:55:82:50:a8:75:e6:f0:58:82:e6:77:17:8c:
48:df:66:f9:e3:04:73:24:52:47:c3:e1:11:db:92:fb:47:9b:
69:5e:82:cc:e8:9b:d3:ad:60:74:62:ba:06:a4:d7:d9:7d:e1:
9f:a1:80:8e:28:b6:fb:a6:cb:49:68:50:b0:68:70:2c:61:b8:
3b:27:97:98:e5:4d:a8:9c:f1:d4:79:6e:29:e5:5c:fb:62:40:
ba:78:5c:ab:8d:12:43:46:41:73:30:16:15:9f:6d:59:64:d8:
9e:b2:54:8a:d6:7f:65:7b:8c:d7:f3:41:34:86:e4:56:ef:1c:
74:f9:c0:1c:ed:23:72:75:1c:1f:44:e2:af:f5:55:d3:1d:e0:
6f:e8:27:7b:fe:70:5c:f2:97:df:77:d4:6e:0b:ae:42:e6:b2:
44:da:65:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 13:35:43 2025 by rpki-client