Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
File: oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft (raw, json)
Hash identifier: 60U4cEl2ivm4BQ3TZLHcJLrKMXZpi/b6YgLYmNoPXsw=
Subject key identifier: 8D:50:07:45:E8:46:03:52:CE:D5:87:C2:93:45:F8:2C:BB:F6:BC:CA
Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77
Certificate serial: 01967D8EFA7F32780158018EEC125EBEA421
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
Manifest number: 0C3A
Signing time: Mon 28 Apr 2025 18:00:44 +0000
Manifest this update: Mon 28 Apr 2025 18:00:44 +0000
Manifest next update: Tue 29 Apr 2025 18:00:44 +0000
Files and hashes: 1: f3Wn9TOfcfxB3VYXWanqfMC6WRI.roa (hash: CJSEzeKkH+A8u48zVCzb/MrI7FvV/Beze1CPp3UTLZU=)
2: oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl (hash: wdPTCpFCkPWZuoRGO+VK7etV4CrNUFFPyJlPzSO0PLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:8e:fa:7f:32:78:01:58:01:8e:ec:12:5e:be:a4:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77
Validity
Not Before: Apr 28 18:00:44 2025 GMT
Not After : Apr 29 18:00:44 2025 GMT
Subject: CN=8d500745e8460352ced587c29345f82cbbf6bcca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:76:23:cb:b1:3f:bd:b9:08:bd:27:c3:3f:ba:
f2:39:4f:af:30:7a:72:bd:3d:21:9c:40:74:90:1e:
9a:a5:96:c7:ea:8c:7b:98:cc:b8:a2:2b:11:ce:aa:
ac:2c:da:2c:46:ec:f1:30:f5:4d:07:50:fe:f4:53:
6a:8c:12:f2:18:9f:27:11:b4:05:65:55:f3:b1:0f:
14:59:c9:e6:c6:e5:65:c7:b0:e3:b3:04:b3:90:e3:
89:ef:99:39:48:8c:6c:0b:a8:7a:4a:b9:2c:bb:2c:
f0:1b:be:c3:09:72:e4:cb:ed:45:42:3b:90:30:df:
7d:dd:83:90:20:6b:af:9f:25:2c:19:d4:c2:30:56:
c6:0e:a4:77:41:b5:d6:e9:7f:5e:9c:6e:3e:c8:34:
68:65:45:b6:cb:d4:db:54:aa:90:93:6f:67:5a:7f:
43:c4:12:be:0c:c7:f2:f4:6c:82:2e:57:f3:52:74:
6e:09:7e:5a:45:d5:c6:42:e7:3e:47:ef:27:9b:ed:
e2:57:db:6b:ed:94:4b:39:c5:2c:14:da:98:e9:36:
52:78:2b:ca:5e:c6:bc:e6:ac:bf:6a:e7:9b:eb:2b:
ea:2d:04:78:b8:36:9e:77:db:d4:02:2f:6a:9b:44:
ec:bb:9c:ef:32:aa:38:92:da:0c:be:3c:7b:41:bc:
17:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:50:07:45:E8:46:03:52:CE:D5:87:C2:93:45:F8:2C:BB:F6:BC:CA
X509v3 Authority Key Identifier:
keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:d5:23:bd:ba:98:8e:45:78:d8:99:2d:cb:9c:dc:5f:d0:c8:
69:22:b5:78:5d:b4:2d:6d:b7:a9:00:03:b9:33:63:ba:5f:41:
dd:4b:c3:3e:5a:b8:58:5d:e7:89:31:38:22:9b:1b:03:f7:8b:
99:61:b0:40:a7:ac:73:dc:09:2c:cf:f8:8b:da:92:31:66:6e:
cf:8c:b9:a6:0a:d1:df:78:20:6e:9b:77:59:c7:e4:8d:70:0f:
55:65:c9:41:84:2e:63:22:c4:c3:ee:3c:aa:39:ad:d1:4c:13:
7f:71:14:20:68:39:68:68:2a:03:57:c1:08:21:23:7c:37:d1:
f4:8d:de:aa:57:e5:1a:af:1f:7a:64:ed:90:a0:82:32:47:c6:
fa:42:40:43:42:be:fd:65:85:00:e5:d4:97:62:b4:36:ca:44:
75:f5:2c:34:24:cd:9e:4a:00:c3:a2:68:d4:44:b0:e6:e2:37:
e7:5e:ab:27:3c:c9:b2:25:fb:ce:7c:71:62:75:23:60:24:b7:
d6:88:d0:64:7c:1b:14:ee:96:e4:46:3a:28:dc:b9:93:9f:0e:
3f:ff:29:0f:17:b7:df:12:9f:b2:6e:87:2c:05:4b:f0:32:83:
4a:a2:9c:6f:de:ca:4f:d5:cb:3c:20:53:ba:39:84:f1:4b:b4:
0d:ba:b6:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 20:52:24 2025 by rpki-client