Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
File: oktI7cejJdfxrg8lfA4oNRcbya4.mft (raw, json)
Hash identifier: 95Wfnbx/HdgBqUG9wTuT55PGDPadabM9IJny8UFr6oc=
Subject key identifier: 41:A2:83:F0:CD:9D:15:90:E7:7A:82:10:FA:4F:9D:89:D2:8C:48:27
Authority key identifier: A2:4B:48:ED:C7:A3:25:D7:F1:AE:0F:25:7C:0E:28:35:17:1B:C9:AE
Certificate issuer: /CN=a24b48edc7a325d7f1ae0f257c0e2835171bc9ae
Certificate serial: 01968ADC43F6E1816885AA78DD75656F8378
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
Manifest number: 1522
Signing time: Thu 01 May 2025 08:00:12 +0000
Manifest this update: Thu 01 May 2025 08:00:12 +0000
Manifest next update: Fri 02 May 2025 08:00:12 +0000
Files and hashes: 1: B0JGrIFbhcfZ9k0gLZbKOC7BRts.roa (hash: uan7Xlr3tx5QNJHwIPILAsu/3eaM2Ksrcs3oBa0JKWg=)
2: B6qJHXpeC3IEJy34_URs46RdWiA.roa (hash: toHD5hhCltD6s8AbgpGot0TJcoWUl/7kkl/+KkMGZ/I=)
3: X5BI_4m66OA1gTOSPBNCsDRd-Pw.roa (hash: 3oZT1fDyGLqNouLkyRSol/W9I5a1RPKZknAigOCTTYM=)
4: oktI7cejJdfxrg8lfA4oNRcbya4.crl (hash: V/tGp4LOnRfzlknjlinchR0hfG/zILRiHVidRM/0fZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:dc:43:f6:e1:81:68:85:aa:78:dd:75:65:6f:83:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24b48edc7a325d7f1ae0f257c0e2835171bc9ae
Validity
Not Before: May 1 08:00:12 2025 GMT
Not After : May 2 08:00:12 2025 GMT
Subject: CN=41a283f0cd9d1590e77a8210fa4f9d89d28c4827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5e:bd:49:a9:18:cf:0b:95:f6:3c:24:42:1a:
4b:97:3a:76:06:bb:6c:1c:af:21:b6:05:6b:2d:9a:
c4:0f:78:3e:5b:57:19:04:fd:05:e8:81:0b:b4:ae:
b2:5d:8c:06:05:a8:69:ae:aa:7f:e7:01:a2:5d:20:
2c:5b:05:83:d9:c5:67:b0:28:c7:fd:3f:fa:2c:6b:
f1:60:8d:59:63:f7:29:55:4e:f8:1f:08:3e:eb:0c:
0b:b4:a1:95:4e:5b:9f:25:02:ac:dd:8b:7b:cf:38:
11:68:65:5c:e4:81:42:01:f3:d6:91:f1:67:07:56:
94:e3:27:9c:9e:b3:c1:69:e5:93:44:5b:cf:73:e6:
5d:7e:5f:5e:6b:81:31:ab:9c:28:70:39:53:6b:86:
7f:b2:67:c6:cf:43:fe:61:3f:96:cf:bf:51:3c:93:
a0:6f:8c:c2:f2:7c:a6:48:f9:0c:c1:90:de:14:fd:
3a:a8:b1:01:30:82:96:f4:ea:9a:c0:1c:be:4e:36:
fb:54:cc:e6:55:26:8a:ef:ec:1e:fe:45:54:45:7f:
12:d0:3d:61:6d:4f:b3:78:50:17:0a:06:87:a9:5f:
77:d5:7f:1f:02:2b:5a:99:44:f9:6f:0a:a3:f6:fd:
94:04:83:96:4d:92:89:c5:29:85:15:b9:68:29:3e:
a1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A2:83:F0:CD:9D:15:90:E7:7A:82:10:FA:4F:9D:89:D2:8C:48:27
X509v3 Authority Key Identifier:
keyid:A2:4B:48:ED:C7:A3:25:D7:F1:AE:0F:25:7C:0E:28:35:17:1B:C9:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:39:3a:e0:c4:5e:63:5d:ba:ba:15:85:57:44:b2:3d:7d:f7:
83:0a:a2:48:2e:ad:a5:0d:1e:0b:08:07:1e:1a:a3:1c:59:73:
de:8e:39:86:69:4b:7b:36:fa:04:23:ab:31:cf:c6:45:c4:dc:
a5:26:60:94:4a:72:4b:49:02:7b:88:91:c2:5c:85:32:88:ad:
34:b5:a8:68:7e:c2:55:b6:87:c2:21:e1:6a:a2:9f:a2:10:06:
d1:81:f0:1f:ea:d3:9e:79:e3:4a:be:51:18:f3:94:ba:9d:fc:
65:bc:92:4e:0d:31:92:83:f7:bb:ae:43:e6:e1:41:33:f4:72:
31:d5:b2:c3:cf:cb:7f:b1:49:42:b9:ab:2c:60:c3:35:0f:06:
97:fb:40:a2:68:3c:66:51:3c:fb:c4:b0:fa:2e:0e:92:4e:a1:
f3:a3:09:20:12:c0:9e:4c:f3:37:77:04:d3:14:7e:0a:0a:6f:
51:f0:d1:0b:ef:5f:97:e8:40:eb:c4:07:7d:70:3b:f6:c5:52:
17:fc:43:79:71:0a:51:c4:b9:81:62:69:14:a8:6d:c6:13:53:
14:51:65:da:5d:ad:31:4e:fe:0c:0c:ed:49:3e:df:53:91:e3:
a5:7e:ca:e5:1a:8c:8f:4e:fd:95:a9:3d:13:2a:38:0c:ae:46:
dd:e9:fc:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 12:41:35 2025 by rpki-client