Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
File: osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft (raw, json)
Hash identifier: WMYzyztxcZFlyhkQg5vZK+7Lg0bHFiuMyf2mIiU+MNw=
Subject key identifier: A4:E5:D8:46:FE:0D:21:77:19:49:D3:F5:A9:C7:2F:CE:84:32:B7:B8
Authority key identifier: A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
Certificate issuer: /CN=a2c56441d83df94bbd0e60144a554639e40e0535
Certificate serial: 01968134A663AB36BDB37E92510EB9328BAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
Manifest number: 0D06
Signing time: Tue 29 Apr 2025 11:00:33 +0000
Manifest this update: Tue 29 Apr 2025 11:00:33 +0000
Manifest next update: Wed 30 Apr 2025 11:00:33 +0000
Files and hashes: 1: Om-V-EmCFMGXb43s9fZ-DXbAF08.roa (hash: S2SC8pR//ywuBG9ZV7ZWtalhcLPclQLz9j+fN0Z1bo4=)
2: osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl (hash: d61OFQ8TTcKmETTgTPMHkCQ850phBy8aF7PzI426dUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:34:a6:63:ab:36:bd:b3:7e:92:51:0e:b9:32:8b:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c56441d83df94bbd0e60144a554639e40e0535
Validity
Not Before: Apr 29 11:00:33 2025 GMT
Not After : Apr 30 11:00:33 2025 GMT
Subject: CN=a4e5d846fe0d21771949d3f5a9c72fce8432b7b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f0:3b:98:55:94:f9:f2:f9:be:eb:e2:c7:13:
f7:4a:36:92:78:22:74:2c:08:b8:1c:ce:0e:dc:85:
7d:90:2b:d8:b4:ee:e1:53:86:63:f2:5b:08:aa:bd:
e9:fb:70:b5:9b:90:25:61:6e:c3:72:fc:5d:0e:cb:
f0:91:90:61:95:05:07:07:e0:3e:27:65:f5:51:18:
9a:bf:bd:3f:8c:b6:d2:bb:a4:2a:9d:66:a8:15:5b:
b6:67:4b:59:ec:33:40:f3:a9:77:d9:98:a6:b4:3e:
94:9d:5c:49:0b:ee:4b:ec:e1:6a:d6:23:4e:38:78:
4a:c4:e8:25:d0:81:ea:ed:c3:29:d3:c0:59:58:5f:
5d:14:1b:e9:89:6e:a3:4c:3e:c9:d7:7f:e9:71:0b:
28:e2:4f:6d:11:be:73:4c:bd:58:23:be:bf:35:cd:
2e:b1:76:1d:96:7b:fc:a9:62:a3:59:39:cb:48:29:
69:7d:0b:2d:1f:e1:e3:92:d7:fc:12:b8:87:98:0e:
81:e1:2c:3f:6d:5e:03:bc:f5:34:7b:5d:9b:1b:8f:
06:a4:ca:2f:a1:c3:5f:3f:10:24:41:2d:75:b0:a4:
c8:63:76:13:0b:e5:ca:0e:c7:e3:7f:b1:24:a3:40:
23:a9:c1:43:41:cc:d9:4f:40:31:d5:0d:c7:f6:09:
7a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E5:D8:46:FE:0D:21:77:19:49:D3:F5:A9:C7:2F:CE:84:32:B7:B8
X509v3 Authority Key Identifier:
keyid:A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:6c:1d:a5:73:ea:f0:a0:1f:fa:fe:c8:e2:b0:c8:d0:45:31:
2b:3b:77:75:0a:9b:35:ab:78:75:9c:d0:54:df:63:54:b8:36:
39:8e:4a:b3:39:68:16:0b:e6:26:21:34:36:a2:ad:6b:1e:d0:
a9:25:4a:06:9c:8f:28:94:90:9a:58:a6:bb:ba:b7:eb:78:0c:
2f:fb:12:ef:64:3a:c9:92:b5:b2:4f:9b:5d:8a:44:ef:0f:14:
8f:a9:7c:3d:24:94:7a:cf:c6:6c:e6:74:ad:1a:a7:46:cc:e6:
3d:e4:03:1f:99:98:a8:b8:26:1b:55:7b:1f:91:f3:41:ce:b2:
24:60:e6:33:a0:33:50:43:2e:f7:f2:59:b3:5d:91:af:51:3f:
4c:1c:c1:9f:13:89:cf:d5:e4:5c:67:04:8b:61:d3:ef:51:10:
6e:e2:a2:3d:00:e4:dc:55:1c:5c:5c:cd:ee:24:10:39:51:d8:
87:c3:5d:77:6a:0d:28:ee:b8:d3:55:c4:89:7f:b2:a5:61:d4:
d0:2a:82:13:b2:aa:f9:2a:d4:48:ba:9b:7d:21:d1:a0:ad:33:
12:ea:64:46:3d:aa:9d:df:16:10:9c:e6:b5:b1:dd:2a:f8:48:
7a:62:a1:5a:da:6a:73:56:a9:18:e9:67:d4:c9:02:65:e0:77:
7f:8e:1a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:06:46 2025 by rpki-client