Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: OXVqCC5YRk982EOp4V1GNXORYgkSaen0r2x681YmP1M=
Subject key identifier: 74:5D:87:23:6E:59:77:C1:B1:1E:AC:8D:D3:C1:58:65:0F:82:24:CA
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 0196895CE12A5974A9E5EBF29F64440DFC16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 09AA
Signing time: Thu 01 May 2025 01:01:27 +0000
Manifest this update: Thu 01 May 2025 01:01:27 +0000
Manifest next update: Fri 02 May 2025 01:01:27 +0000
Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: lrsrIt70D+nYTctNy4Rj9wKbGIv/a1f7DFwRRKs93O4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:5c:e1:2a:59:74:a9:e5:eb:f2:9f:64:44:0d:fc:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: May 1 01:01:27 2025 GMT
Not After : May 2 01:01:27 2025 GMT
Subject: CN=745d87236e5977c1b11eac8dd3c158650f8224ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:93:65:e1:8a:69:33:70:58:15:3e:a1:9f:5d:
96:3d:46:f5:cb:35:11:50:d5:21:9d:3b:9c:e6:eb:
5e:58:a0:44:bf:85:b5:f1:cd:02:1c:e0:34:9f:ab:
46:a9:15:33:ea:cb:0a:a0:9b:39:93:c1:67:bf:f9:
ca:20:d4:5a:1e:3d:4a:5c:5e:66:9b:7d:6c:b0:a0:
0f:d1:7b:13:2d:fb:fc:92:86:e6:9a:11:03:be:4f:
c5:66:64:73:38:26:62:48:f5:9a:f0:34:0f:84:4d:
0a:ab:81:d9:02:0d:5d:1b:11:b4:43:ce:26:71:fe:
35:81:d3:b0:9b:9e:c2:a4:6a:e2:6c:67:fb:e3:92:
c1:2c:08:86:96:0c:9b:38:d5:98:3e:b9:3f:17:37:
e8:75:c8:3d:1b:fb:2f:63:b7:36:3b:44:31:5e:99:
d8:2c:28:41:be:fd:00:79:7d:2a:2e:39:aa:b7:97:
23:43:83:65:8b:29:1d:9c:92:d5:f7:db:d7:5e:e1:
c8:dc:24:93:74:e4:d6:1c:19:ee:61:0c:f7:3f:8b:
e4:2b:c4:80:b5:a9:0d:2c:ed:bc:b6:f9:f5:15:cf:
30:15:99:47:29:b2:4e:ca:45:a7:48:06:82:ab:df:
2c:a3:56:04:d9:bd:f4:f7:5b:d9:91:d7:91:a6:f4:
cf:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:5D:87:23:6E:59:77:C1:B1:1E:AC:8D:D3:C1:58:65:0F:82:24:CA
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:67:5f:c0:05:80:46:da:f3:11:26:1f:f6:d0:cb:cf:0c:e2:
cf:61:c0:d5:57:4a:b6:32:41:5d:67:06:ee:0f:a2:00:a5:be:
01:4d:4e:1e:ed:1c:e4:87:60:2e:e6:c9:a0:35:0f:18:32:1e:
4b:66:c9:a7:cc:65:69:04:58:76:72:2c:dd:49:16:62:4b:2e:
fe:73:a6:4d:3e:b1:42:71:18:9e:56:d8:07:f9:3b:df:4c:01:
b1:ba:c9:d4:5a:b5:bb:a0:ab:5f:07:ec:c3:56:e1:6a:7f:23:
bb:25:a5:d8:4c:fd:fa:3f:3d:c1:9f:bd:25:75:58:20:d5:86:
cf:dd:67:41:90:c9:55:21:c8:cd:9d:86:49:77:b7:eb:57:a5:
7b:bf:4a:cc:01:6d:c8:6e:14:3e:a5:c9:bc:f2:74:89:fe:e1:
79:9e:d4:1c:3e:de:0a:94:e8:0b:81:cc:12:b3:81:bf:77:98:
e5:05:18:14:75:31:83:bf:de:71:22:58:63:4d:c5:22:8d:72:
92:cc:fa:4e:78:51:58:d9:47:b9:27:41:c7:1f:54:df:b4:19:
45:23:07:84:e6:96:f1:78:30:26:eb:24:e7:0d:c8:b8:78:a0:
cf:f2:0a:70:98:c0:cf:b8:2f:f2:c6:c5:22:13:91:54:36:e5:
27:84:63:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 05:04:31 2025 by rpki-client