Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json)
Hash identifier: D6Bq5BzagqRvlA1h+U9gNMUZw0u6teGLrlWI/SgchFk=
Subject key identifier: CF:F3:A6:FA:E6:F5:50:77:9E:DA:AD:6B:57:83:E0:C4:FC:C5:D7:D2
Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860
Certificate serial: 01968021D768B6FEAFD13BD9AD559AFA7FDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
Manifest number: 0CB0
Signing time: Tue 29 Apr 2025 06:00:23 +0000
Manifest this update: Tue 29 Apr 2025 06:00:23 +0000
Manifest next update: Wed 30 Apr 2025 06:00:23 +0000
Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=)
2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: QeSv+B8eAuq974YoU2j3rk3cL5FSY3udEBN34VKz5iI=)
3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=)
4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=)
5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 06:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:21:d7:68:b6:fe:af:d1:3b:d9:ad:55:9a:fa:7f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860
Validity
Not Before: Apr 29 06:00:23 2025 GMT
Not After : Apr 30 06:00:23 2025 GMT
Subject: CN=cff3a6fae6f550779edaad6b5783e0c4fcc5d7d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:62:d4:2f:93:ee:01:25:f1:b8:09:d5:f2:bf:
44:19:68:8a:de:48:1a:7e:08:c0:c2:87:0a:9f:81:
d5:38:bc:89:81:10:51:37:50:af:e9:33:95:19:83:
b5:05:ec:c5:ca:e8:59:08:c3:c3:63:91:0c:f7:79:
f2:4a:46:d4:5e:0a:e2:9d:a8:53:de:b3:88:f0:58:
e6:cd:1b:66:32:82:2c:85:3e:e8:e7:b6:c8:b5:33:
2c:89:65:e3:ca:52:5b:90:b6:2d:16:a2:20:8e:78:
ff:86:02:bf:3b:5d:3f:0c:28:29:29:74:b6:42:15:
69:6b:3c:bd:2d:5b:e0:70:fc:78:32:e1:cd:68:72:
d8:41:53:9e:b9:ab:ff:a9:0b:0e:0a:b2:22:43:96:
da:69:29:40:36:77:a3:8b:23:0c:35:ee:eb:14:5a:
51:9b:73:5b:d1:eb:3f:71:66:97:54:59:db:be:ce:
00:34:d7:a2:67:dd:cf:58:95:46:ee:ce:28:6b:a0:
f7:4d:12:8f:ce:8a:bb:f3:93:5d:3b:d9:db:f9:60:
84:65:f9:f3:1f:22:a7:e9:a4:99:30:3a:f9:1f:0e:
67:6e:c4:06:f3:96:3b:35:c4:ac:55:34:1e:ac:f7:
78:e1:f0:6d:71:56:d1:01:28:42:90:4e:22:dd:9b:
9a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:F3:A6:FA:E6:F5:50:77:9E:DA:AD:6B:57:83:E0:C4:FC:C5:D7:D2
X509v3 Authority Key Identifier:
keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:6c:bb:b5:c7:f5:c2:66:75:82:f6:fe:0d:06:fa:d0:0e:b1:
f9:81:a5:c3:71:eb:67:b8:00:15:e4:4b:b7:cb:5f:48:54:26:
ef:de:f3:32:e8:14:99:33:9f:16:e5:cc:69:7c:f4:28:f5:23:
93:85:8d:8b:08:5f:49:2a:35:b2:e5:f3:41:24:91:35:aa:ea:
6b:48:57:dd:f2:40:68:a8:57:06:43:a1:fa:89:33:14:e0:aa:
30:37:4c:83:99:6b:40:22:fe:fe:f8:a3:a2:e3:f3:9b:a1:46:
16:10:b4:bb:95:5e:71:2e:c4:42:c5:49:ef:6a:68:6b:04:1b:
e6:d9:34:eb:8d:44:ad:9c:9f:e8:86:45:88:91:cd:c4:5f:fa:
88:97:b3:80:85:09:4d:d8:e1:1c:4d:d3:d3:1a:0f:d4:de:b7:
ae:24:a7:c6:1c:f2:10:47:ba:08:26:ba:3e:57:fb:93:d9:7a:
63:9a:71:1f:04:10:ca:4f:22:f4:76:6f:98:19:82:dc:3f:7c:
dd:b4:a5:cb:de:b9:a7:8d:fc:30:31:9a:2b:18:cd:05:f7:67:
51:dd:83:c2:12:07:b0:f2:39:3c:7c:60:4a:5c:5d:30:36:c0:
70:74:cb:c5:6e:b9:7b:25:4f:38:2c:84:7e:0f:2f:0f:db:bf:
24:ed:07:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 15:14:06 2025 by rpki-client