Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json)
Hash identifier: fjUe4A7UVSLvSrxhmN4pZCM4BOi21CtD8DSfranDdAA=
Subject key identifier: E6:8D:59:9C:3E:E6:C2:7C:E9:40:B8:F7:73:B4:F9:58:79:94:97:E5
Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Certificate serial: 01968058965E2C4E43661B2433AACCA815D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
Manifest number: 06E8
Signing time: Tue 29 Apr 2025 07:00:11 +0000
Manifest this update: Tue 29 Apr 2025 07:00:11 +0000
Manifest next update: Wed 30 Apr 2025 07:00:11 +0000
Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: 1xV8ZeCqrgImACx9jihbbJA8F+O5GIddo0le/YB48d8=)
2: eEAcVM4h3e_6uLTwXzH2smck964.roa (hash: 2dyqSC4Nr999y8UdL9+8BtI2W3QPoxUvEaAKvO9sMtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:58:96:5e:2c:4e:43:66:1b:24:33:aa:cc:a8:15:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Validity
Not Before: Apr 29 07:00:11 2025 GMT
Not After : Apr 30 07:00:11 2025 GMT
Subject: CN=e68d599c3ee6c27ce940b8f773b4f958799497e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d7:f3:d9:1a:1e:4a:37:66:69:a0:23:5e:99:
0d:31:6a:f2:1e:79:d4:8a:5a:d9:8d:3b:87:9e:52:
2f:fb:95:9d:25:57:c7:ae:76:5d:ed:d0:60:84:81:
90:34:f1:c1:e6:c8:98:62:d2:54:32:9d:d3:82:5e:
1c:df:39:5d:45:87:fa:6d:a6:8a:d4:00:59:5e:d5:
44:ca:37:b4:83:d2:bc:15:f4:45:73:27:e4:ab:b9:
d7:d8:63:37:05:aa:10:bb:80:0f:e9:67:ca:e9:6c:
8e:8f:91:67:67:4f:fc:cb:4e:d5:b4:b6:2a:c8:17:
07:2b:a8:91:70:f0:45:1b:7e:11:49:0f:41:3c:da:
01:3b:1b:d0:4a:f9:29:18:84:60:aa:86:35:3d:2b:
7e:4c:ca:82:18:e0:de:90:e1:34:c9:67:70:2e:5f:
28:44:3f:eb:71:d7:c3:67:44:f0:95:66:ef:40:25:
c9:40:7e:e5:7e:b0:e0:aa:b4:2a:b7:25:fb:2f:04:
22:96:fa:3b:cf:07:d7:8f:ce:35:c4:98:a3:63:ab:
f8:69:5f:0a:a8:4f:9e:e2:76:e5:1d:c9:20:82:f7:
71:7c:3f:0f:c6:db:6b:d5:d8:2a:7e:e8:6e:0c:db:
16:7a:cd:e8:e0:76:e6:9e:c0:f7:eb:c0:93:7f:85:
11:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:8D:59:9C:3E:E6:C2:7C:E9:40:B8:F7:73:B4:F9:58:79:94:97:E5
X509v3 Authority Key Identifier:
keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:b5:fd:57:c6:85:9a:e8:23:ef:39:b4:55:86:a2:ba:73:60:
2c:97:1a:f3:4a:0a:bd:6e:da:c1:17:fd:30:8b:ff:d2:d7:0d:
87:15:fc:8c:97:29:5e:45:44:62:d8:a5:50:36:2b:a1:63:de:
ab:a9:39:ff:d3:03:00:cb:1e:57:84:c2:d3:44:76:52:eb:50:
b8:bf:63:2b:d5:84:b9:6a:89:f9:25:de:7d:8f:11:89:43:b3:
d6:ca:47:c9:da:29:fc:de:13:23:d8:55:7b:cf:59:44:f2:14:
9e:35:36:86:a5:10:67:d1:e7:4b:ed:0b:c9:c0:ae:89:04:bf:
85:25:75:93:20:ac:00:f0:b5:10:11:47:6d:7a:0a:89:c8:78:
f1:af:82:bc:aa:c0:3a:ef:08:24:64:e6:12:99:5b:e8:b0:50:
b2:3f:23:4a:43:80:72:77:fe:99:5b:b0:7e:40:ae:30:5f:23:
60:4a:1c:5b:44:57:4e:ed:fd:24:90:e7:8f:a5:3f:5b:92:21:
b3:f8:ea:24:e5:af:50:3f:22:55:fd:8c:80:29:81:a6:b5:b7:
57:05:ed:da:81:0a:c8:68:cd:c2:28:b0:08:3d:b3:e3:6f:70:
48:1c:6a:48:2f:a9:6a:04:89:cb:ec:41:ff:2f:1a:64:1a:38:
23:a9:a3:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 15:07:19 2025 by rpki-client