Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json)
Hash identifier: a80+dmZ+5jKq2B9MPL9kQg/bagNczFpuvlunHRZzD7M=
Subject key identifier: 73:BF:D6:09:84:63:6F:D2:F0:B7:F5:4B:3B:4C:81:80:A2:6A:C9:BF
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 0196797B461E0489DDBAC3D8A69E80BDCC1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
Manifest number: 1518
Signing time: Sun 27 Apr 2025 23:00:44 +0000
Manifest this update: Sun 27 Apr 2025 23:00:44 +0000
Manifest next update: Mon 28 Apr 2025 23:00:44 +0000
Files and hashes: 1: 8uKSKM8TVx970yK_aHmjajWuHlo.roa (hash: Kv8ysTx9zq+WIfK6VNPlttN4b3mr4mqd5LylYbnznig=)
2: 9pCmbwuWDKFww6JalPNjMXiQ2uc.roa (hash: crRW/IaBwcSVgY89PTYbAz61UCGYjtm5jlog0eAP9F0=)
3: DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa (hash: fuVQXP2ZqWav/yCgsPsm3fiqqB9eYt0wXu73N33zIys=)
4: F-WM6V0pDS_ngxIgpNgM_SOKzXs.roa (hash: YycRdDyGTbaVD3BQBXWfEPp9cD6S80QfheVTwZQO9zE=)
5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: E+MOs46JUkj9PFi3lJZ9QvfnMcZlb96A1a0xWrbzfSs=)
6: Ox8NDyO7Lu2pVppSpwPpBrklgoc.roa (hash: cdngPKwKptE72CQ/axAKXaUmzgT1mhIjk6pmelzFUgg=)
7: drQvOj9TpOHRytlyOo6kxATgZOw.roa (hash: 4wVUz15BtyiS24LCP9jZgWAlCIUKAL3+afNKe8X1w18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:7b:46:1e:04:89:dd:ba:c3:d8:a6:9e:80:bd:cc:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Apr 27 23:00:44 2025 GMT
Not After : Apr 28 23:00:44 2025 GMT
Subject: CN=73bfd60984636fd2f0b7f54b3b4c8180a26ac9bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:65:84:6a:31:5c:b6:f6:c8:8d:53:7f:07:fc:
d3:0d:fe:4e:15:b3:72:d6:37:f7:e5:31:18:ff:ca:
2e:19:38:8a:1a:4b:13:e7:0a:de:ef:be:8e:d0:a9:
9f:e6:cc:c3:9f:82:e3:a8:2d:88:18:10:5b:47:dc:
42:39:73:63:51:b2:aa:65:81:8d:f6:1d:f2:1e:e4:
d3:a4:11:29:b3:30:93:a3:55:02:85:bd:75:03:f4:
37:b6:50:8d:b9:85:fb:19:9b:2e:3b:61:21:7b:34:
a5:2b:8c:ec:f5:b2:ba:c5:78:23:be:3e:93:5c:30:
8a:9d:89:ce:9e:76:2e:0f:c5:fc:64:b8:19:cb:be:
7d:36:df:e1:bf:4d:2a:08:71:91:62:84:6d:10:3c:
94:f2:2f:e5:f3:b8:c0:b4:7d:0c:6a:5f:8c:27:0d:
ad:84:50:7c:00:b8:c5:a0:9c:01:c7:b0:68:ca:d2:
54:40:26:8e:08:eb:ef:a2:14:a8:5a:13:5d:6b:2e:
f7:05:39:1c:00:90:80:8f:ca:45:2e:cf:22:27:73:
54:4e:3b:7e:8b:30:d7:68:f0:b4:f0:6b:ec:cf:75:
de:b6:04:f2:4d:7f:17:e7:04:a7:dd:a6:eb:40:3f:
3c:3d:fb:17:87:f8:ab:07:20:0d:09:3a:a3:d4:18:
e5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:BF:D6:09:84:63:6F:D2:F0:B7:F5:4B:3B:4C:81:80:A2:6A:C9:BF
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:87:58:60:0c:28:e5:84:79:c4:84:3a:e1:00:e8:c1:cb:c1:
08:ed:77:55:19:77:bb:99:84:5f:c4:a2:5d:0e:57:7d:eb:81:
ab:3c:b3:a6:b8:a0:52:f9:d3:38:89:28:0d:d0:ad:b6:3e:48:
bf:e6:51:ad:cc:4d:7a:fd:06:c9:cf:04:50:ce:9e:8b:56:f5:
83:ee:2b:28:a7:57:66:d4:05:b0:ba:22:2a:17:67:66:91:68:
39:bc:04:36:ac:4a:0e:f7:7b:28:6a:9f:b2:75:4a:99:0b:62:
98:96:c5:38:96:da:b4:bb:df:96:e3:90:3c:9c:15:90:c8:f9:
17:5e:ca:c4:57:4d:03:66:7e:a0:a5:61:09:ae:d0:54:9a:32:
26:d2:59:f1:ba:84:61:8a:cd:fb:60:82:7c:2f:ed:dc:65:03:
6a:25:77:4b:75:87:ac:c0:44:69:f9:ca:d0:60:fb:f6:c8:53:
3b:ad:61:41:21:0c:22:db:39:e4:12:3b:07:a1:a8:86:f2:fd:
d9:fe:42:73:16:31:c9:6c:66:28:67:16:0b:eb:61:c7:41:0d:
24:a7:43:41:a9:ed:f1:28:bd:58:91:e6:a1:f1:fc:c8:01:5c:
ad:3d:fd:f0:80:1d:aa:3f:86:68:7c:4d:45:2b:75:75:89:93:
fc:c3:ef:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 05:00:44 2025 by rpki-client