Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
File: OQW37By46JWiW9SsZ7wxZmFdi2I.mft (raw, json)
Hash identifier: Dfd1BHZO7zTKW+YdVbDNTyQo3JW4HvPybCKKLPRxNew=
Subject key identifier: FB:7A:6A:9D:01:DD:80:37:29:C2:B7:9B:2E:A0:A8:05:C2:68:FD:7E
Authority key identifier: 39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
Certificate issuer: /CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Certificate serial: 01967C456C5950FCAF995E8A71E7E73DF69D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
Manifest number: 05F6
Signing time: Mon 28 Apr 2025 12:00:46 +0000
Manifest this update: Mon 28 Apr 2025 12:00:46 +0000
Manifest next update: Tue 29 Apr 2025 12:00:46 +0000
Files and hashes: 1: GzEFY4FMaNIn9ALjdEIyqJJseSE.roa (hash: A0TZx6QvZikNrmKwA+Q10TiJHkrQxZ4XZGZdjheoj80=)
2: OQW37By46JWiW9SsZ7wxZmFdi2I.crl (hash: mdT2WeZ0h0FtzV9yaO0Ro2Mt3EDoivqM38hqHNt+o6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 12:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:45:6c:59:50:fc:af:99:5e:8a:71:e7:e7:3d:f6:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Validity
Not Before: Apr 28 12:00:46 2025 GMT
Not After : Apr 29 12:00:46 2025 GMT
Subject: CN=fb7a6a9d01dd803729c2b79b2ea0a805c268fd7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:e2:e0:68:a8:bf:9d:fa:ba:3b:54:af:73:31:
81:1f:97:46:f2:d5:4f:ab:c7:99:8a:ab:d3:e0:f1:
63:1a:b4:5c:d4:af:45:6d:16:f9:92:15:87:eb:3f:
5e:b2:27:c5:72:e6:11:4d:76:00:c4:56:6c:b9:10:
43:1a:38:49:f9:ea:5e:ec:44:6f:e5:cb:03:3c:51:
3d:1a:91:7c:70:90:32:b8:8e:2e:da:36:aa:ac:b5:
33:19:89:0c:15:6b:79:19:75:fa:11:3f:22:ea:fb:
92:a6:7f:b5:bf:66:1c:cf:9c:73:93:09:ed:32:aa:
10:ef:f4:21:43:29:c6:0b:8e:c7:b1:fc:0c:f9:64:
77:54:a8:9c:ee:13:d4:9f:a8:39:46:4b:aa:73:f6:
c0:a9:87:48:f4:1d:83:35:2e:a5:a7:88:6e:dc:a7:
3b:10:34:08:be:07:e5:46:1d:8d:d2:3d:86:26:db:
49:d9:c6:b9:ff:0f:e6:b1:3b:cc:99:4d:c7:45:5a:
5e:5d:29:6e:07:7c:a0:10:dc:f3:2f:c7:8f:59:97:
8e:42:63:3a:c1:3a:00:7b:11:41:a7:f2:6c:80:15:
6b:77:91:31:b6:f7:6f:4a:e5:9c:c0:b9:ed:e8:c7:
a8:81:f3:aa:3e:a3:6a:ca:ff:ac:a7:d2:61:de:cc:
c4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:7A:6A:9D:01:DD:80:37:29:C2:B7:9B:2E:A0:A8:05:C2:68:FD:7E
X509v3 Authority Key Identifier:
keyid:39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:c3:c9:70:67:8e:b6:41:ce:28:1f:0c:81:0a:35:f0:07:d5:
56:ab:2d:54:ca:68:dd:6e:97:3e:ef:52:e0:e4:51:b9:05:54:
61:14:da:8a:1d:ce:46:06:1a:5b:e4:ea:3c:bc:3d:78:cb:e6:
f0:ab:85:b6:9e:84:2b:0f:82:c1:bc:54:d3:8a:a7:3f:02:9f:
18:1d:67:6a:a2:ba:56:ce:44:7a:48:63:79:d7:87:c9:55:a3:
93:9e:02:ec:61:f0:71:d4:1e:c0:53:10:4e:41:ce:cc:ec:2c:
89:a4:18:bd:97:68:e3:14:d1:8b:97:ff:34:e6:2d:0a:df:dd:
20:a6:4a:97:09:2b:29:67:ce:14:c7:c3:c3:ba:af:8b:4b:78:
87:95:a5:96:84:81:90:ec:4c:b4:43:bc:b2:ae:7f:c2:89:a7:
b3:70:8c:60:52:e8:c7:de:77:b3:ed:c8:02:67:38:88:a4:9e:
4a:a8:5a:99:00:f9:df:46:bd:ab:80:2f:ce:19:cb:f4:b7:4c:
77:d5:00:24:56:c8:d8:a4:54:ce:44:3f:f9:a2:3a:87:c5:1c:
88:9d:06:2e:d3:ec:1a:38:df:8e:3d:37:e4:46:01:37:e1:49:
ae:6d:29:45:2d:7f:b8:65:87:62:09:83:2d:40:95:b2:83:02:
58:b9:d9:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 21:08:05 2025 by rpki-client