Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
File: oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft (raw, json)
Hash identifier: gm19/DL9KkeiI4MeaAsus2WtzFAqLVs0PBZVnn62Wmo=
Subject key identifier: C0:D0:48:47:94:E0:84:A9:52:2D:3F:51:3D:C6:18:B6:89:BF:FF:6C
Authority key identifier: A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
Certificate issuer: /CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Certificate serial: 0196805927E0513FEF5855FB42DC6A08AC72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
Manifest number: 0FB6
Signing time: Tue 29 Apr 2025 07:00:48 +0000
Manifest this update: Tue 29 Apr 2025 07:00:48 +0000
Manifest next update: Wed 30 Apr 2025 07:00:48 +0000
Files and hashes: 1: d8Ubh0CXhXXhagmmKA6YqgiY1CI.roa (hash: XS7bGpIqru665bj8O0eStPb/SWXWzyB/RG2r/OA2+68=)
2: oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl (hash: aaInLBoTKb6bvYg1lAzs+HIKaLeQhO3axhHeB5QDKug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:59:27:e0:51:3f:ef:58:55:fb:42:dc:6a:08:ac:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Validity
Not Before: Apr 29 07:00:48 2025 GMT
Not After : Apr 30 07:00:48 2025 GMT
Subject: CN=c0d0484794e084a9522d3f513dc618b689bfff6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:24:05:24:83:8b:fc:f9:66:9b:68:90:e6:e2:
98:6e:70:0d:f5:cb:1d:a7:0d:d4:1e:67:fb:82:fb:
e0:02:76:9a:26:0f:83:f6:4c:99:a1:f4:6d:f7:47:
61:b3:31:da:43:17:8d:1f:40:ba:c6:b3:5c:4a:7b:
38:90:19:cc:b6:be:a1:bf:6c:0f:36:5c:ef:d4:0a:
21:12:d4:03:07:49:e2:9d:1e:1d:54:4b:f4:2d:85:
b6:b6:36:53:82:13:66:cd:5c:99:11:cc:58:05:f9:
ae:8c:2c:72:33:d5:ea:b6:03:53:3d:2b:89:4d:e7:
44:2f:43:c8:37:b1:b7:38:75:00:98:26:89:05:14:
9e:13:f0:17:9c:28:50:e8:d6:fc:d4:7a:f7:75:9b:
80:56:24:e1:ac:5c:db:14:4f:3d:6b:24:4c:31:9d:
7a:b0:42:f4:27:f4:0d:c7:be:bd:58:5c:f0:17:e4:
a6:3b:dc:c6:a0:d3:1d:1d:09:22:55:19:b6:85:59:
95:43:3c:53:08:86:a6:4c:fc:54:92:aa:df:79:e7:
1c:ba:66:a8:79:a6:81:74:51:a7:2b:3e:6d:29:c4:
0b:9d:14:c4:c5:56:50:f4:9b:0d:9e:67:d8:9f:94:
8e:d8:c4:f3:50:a6:16:1d:18:1b:f9:4c:69:4c:c1:
ad:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D0:48:47:94:E0:84:A9:52:2D:3F:51:3D:C6:18:B6:89:BF:FF:6C
X509v3 Authority Key Identifier:
keyid:A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:de:a3:00:80:13:ce:a2:ba:88:10:5c:36:41:fb:6d:18:14:
87:ee:90:0f:ea:4e:c1:76:54:52:2d:92:ba:33:69:b8:d6:9a:
e8:ec:6b:39:14:77:e4:96:95:54:63:54:97:9f:e5:13:3d:75:
f2:bc:a6:a9:fa:41:3e:e7:5a:c3:d3:b9:c5:78:22:50:4a:4c:
af:55:06:0e:d4:d1:a7:a7:47:a1:13:f0:b5:27:d8:be:c9:97:
c9:f6:4f:d1:09:c9:f1:b4:fb:39:d5:96:a1:63:d2:af:19:a8:
f4:b5:c4:2b:f7:da:20:d1:4f:7c:aa:04:40:0b:ed:e7:3d:9e:
22:44:72:95:d8:bf:ce:d8:13:a7:8d:77:0c:de:41:c4:ab:01:
d1:db:3b:cf:5d:3f:4e:92:9e:b9:01:0a:38:76:e0:47:2b:3d:
e3:53:3a:1a:d5:5a:bc:7b:19:36:02:0e:fa:fd:0f:e7:2b:47:
fb:a6:ea:a1:e4:b8:a4:06:dc:e1:8f:2d:c7:33:aa:db:98:13:
d3:dc:9a:64:92:d9:a6:94:a8:8c:9f:47:71:3e:09:2d:9d:ac:
bc:53:aa:f7:05:e3:96:59:c8:5e:a6:bc:d3:41:55:4c:62:28:
8a:b3:23:1e:c4:df:9b:c0:88:b2:ca:1d:d7:63:b1:f3:6c:32:
b2:7c:44:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 17:29:13 2025 by rpki-client