Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier: eMLGpWfSrgiCODMrgCNkaqRRd5fDyBaU6akXO2Bc3RQ=
Subject key identifier: F2:C5:80:B1:A0:7A:2A:87:2A:95:36:8D:29:13:DF:4B:D8:E5:EE:2C
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 019674C271C9F8A8BA93F1CCEB717ED771FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number: 14A2
Signing time: Sun 27 Apr 2025 01:00:22 +0000
Manifest this update: Sun 27 Apr 2025 01:00:22 +0000
Manifest next update: Mon 28 Apr 2025 01:00:22 +0000
Files and hashes: 1: C_zGKKe9EmjFWVKBb9utgZ7LvBo.roa (hash: DBtQlC6QblgPpVW+sAN+YH267kvW3kiRyXFujtkor/8=)
2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: UZsGyWRGx0s/pDbgqiyk578M6uTwCAfxiW3L6SuRyak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 01:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:c2:71:c9:f8:a8:ba:93:f1:cc:eb:71:7e:d7:71:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Apr 27 01:00:22 2025 GMT
Not After : Apr 28 01:00:22 2025 GMT
Subject: CN=f2c580b1a07a2a872a95368d2913df4bd8e5ee2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a7:f8:75:5f:ce:3d:e2:ee:38:72:68:6e:6b:
c8:44:99:41:54:96:85:31:2c:ad:46:6a:28:3f:ca:
8c:d8:94:30:ce:21:10:da:53:5c:d8:ff:c4:d8:8b:
ba:d3:b0:68:d0:7f:f8:46:7f:e6:d5:68:7f:0b:50:
17:80:e9:d5:36:54:8b:bc:e1:22:44:a7:e3:75:92:
13:26:77:f3:52:d2:a6:f0:8d:00:88:09:75:bd:96:
f1:e3:a1:77:fa:18:d3:2b:3c:2e:ca:8e:37:e4:97:
75:00:fc:dc:03:51:bb:2c:2d:b2:dd:62:f9:4c:c0:
da:a1:10:bc:5d:c9:8c:79:d1:41:48:ee:88:95:f8:
3b:a3:d8:59:34:e7:1b:3b:cb:51:e5:fc:95:a8:12:
a2:28:47:1b:86:c6:04:56:df:1c:40:12:5f:01:9d:
6f:cd:ff:74:b2:12:d3:55:25:bd:6e:94:94:52:c2:
59:c2:aa:ed:b7:49:fd:f5:ec:57:1a:ba:d8:45:2d:
87:40:fd:14:43:74:6f:19:d4:59:8f:a0:2a:85:36:
71:af:f4:9a:06:c4:86:44:a5:78:05:28:90:67:b9:
26:61:aa:2f:a0:ab:cd:de:ac:23:ea:91:3b:56:92:
59:cf:82:ad:57:9c:6f:3c:ad:31:15:b5:2c:67:36:
48:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C5:80:B1:A0:7A:2A:87:2A:95:36:8D:29:13:DF:4B:D8:E5:EE:2C
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:4b:33:bf:82:39:d5:eb:c1:b3:e5:fd:84:b0:a3:1a:3d:9f:
82:85:67:54:ca:47:f1:05:2c:9a:b0:15:7b:4d:87:56:b8:51:
8a:fc:4d:a8:d2:42:c8:09:a2:52:47:04:01:c3:4f:bc:02:41:
2e:01:7a:c0:0b:d0:a9:79:6c:ea:a4:75:5f:2c:86:f2:52:f0:
53:50:62:c5:62:e8:b2:c1:6c:60:dd:1c:98:1a:3d:7a:56:09:
1e:bb:12:23:98:8f:8f:67:5c:23:76:60:7f:8d:4e:33:13:69:
54:6d:e3:5d:70:e4:d7:e8:98:03:01:94:f8:4b:5a:b8:14:c1:
e4:26:78:34:3d:3f:79:22:b3:4f:84:08:27:fd:86:1d:50:1b:
a0:e4:cd:2b:04:c9:c4:2e:a0:8f:76:44:f2:d2:47:18:a6:31:
94:58:d0:90:62:9d:7e:2b:1a:94:d7:6a:eb:ee:21:3c:ba:41:
26:be:3c:d6:ee:0d:d0:6a:7a:b7:45:4e:48:29:b4:bc:b7:77:
e5:b6:09:5e:ce:83:4c:33:9c:d8:df:6d:4d:39:a2:52:fc:ab:
fd:cf:81:28:46:c2:70:f2:3f:1c:b1:52:be:be:7c:bf:39:54:
f5:34:e4:a3:47:3f:75:b3:97:db:f9:5c:ab:05:56:50:1c:b7:
ef:b9:2a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:12:04 2025 by rpki-client