Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
File: OspQhYoYVv-gLpE1bxQjbnw4uFo.mft (raw, json)
Hash identifier: qOKx58zpJmfifafOLLlZKqZ+ADrFkEd2KdgNqgqSOYI=
Subject key identifier: 6E:1F:7D:AC:80:EC:7D:19:02:EA:2A:C5:C1:F7:3E:32:39:71:29:86
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 0196846C87D43508804B5DBBD86BF321B1DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
Manifest number: 151C
Signing time: Wed 30 Apr 2025 02:00:27 +0000
Manifest this update: Wed 30 Apr 2025 02:00:27 +0000
Manifest next update: Thu 01 May 2025 02:00:27 +0000
Files and hashes: 1: 0i27NjvnFtlwbFJL8brWgH_dw8U.roa (hash: YML80PmXT345DJiCwX4apNsJ7UtnB8nEMX5Dpv2Ctsw=)
2: 1kY2nGT8PP1V1pxbzH8gDFZHRGw.roa (hash: pbZtP+N8idLMQTinI/aHUKYzG+cdVac5nacfjqhyPdo=)
3: OfxxmNtzJcdCBkWeVovM4im8aiY.roa (hash: WRZK3jUR3eiSqkPuuJOy87KYkFs/X19TJQecAHmPTCA=)
4: OspQhYoYVv-gLpE1bxQjbnw4uFo.crl (hash: 8kTeXLWEWT/w48f+Wr/NR4KRwEGTy5ptQxf6hMQzKj0=)
5: ct0UdU9tbjVu5vnRCDtuTGBSo4c.roa (hash: 2wetSh/WjuBgx0H+sbj7Aow3E9vqoUt+MG+BDwetShE=)
6: pZwUUb6x4Lez1tW_jvxd_X_PyY8.roa (hash: weF+c7Ta8anbMKz4f67ACPq7m1FTdbmyMymH/ZhAy3g=)
7: vFVZ9av3BvQ-ws_7EVciDYDt6Rw.roa (hash: 1s2dWFQ6yIEmp8FiTPqLYuMVpLoqmko/eqoHIt276/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:6c:87:d4:35:08:80:4b:5d:bb:d8:6b:f3:21:b1:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: Apr 30 02:00:27 2025 GMT
Not After : May 1 02:00:27 2025 GMT
Subject: CN=6e1f7dac80ec7d1902ea2ac5c1f73e3239712986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b2:db:44:da:1d:f0:6c:b0:35:32:c1:a8:3d:
d3:fe:26:6a:5b:88:50:20:c3:34:70:0b:2f:ba:58:
89:38:ef:18:c5:6f:a5:28:5c:13:db:dc:b9:ef:c7:
7d:87:46:8c:b5:66:20:06:c2:f6:b0:2a:bf:36:c6:
bf:c9:db:e8:5f:9c:14:03:08:1a:6a:10:e6:37:c3:
38:03:66:7f:54:ce:a7:7f:b0:b4:84:62:90:68:87:
01:d4:7c:77:75:c3:4d:9b:b0:fe:90:1f:d7:1f:9e:
36:73:d0:52:25:c0:b1:d3:81:c1:16:a7:73:73:f3:
fe:cf:99:ab:1f:91:ed:f4:9d:f0:56:a6:7c:f3:72:
97:91:42:3f:f1:b8:b7:3a:45:fd:7b:de:6f:16:6c:
3b:10:c9:85:60:d7:d9:f7:46:61:14:c9:ac:b9:78:
ed:32:95:4a:4b:f9:77:99:bd:67:8e:da:9c:b4:7a:
d3:7b:a2:61:65:0a:bf:26:fb:cd:b1:d2:c9:9b:4d:
d8:59:e5:14:2b:21:db:7c:88:3a:d6:77:66:42:07:
11:9b:49:78:82:28:cf:8e:48:8d:1b:35:33:bf:df:
ee:f3:34:1a:55:d1:32:64:1d:fa:07:ef:74:21:4e:
0d:10:ce:e9:71:7f:ea:e4:48:81:0d:c4:85:2e:fa:
6a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:1F:7D:AC:80:EC:7D:19:02:EA:2A:C5:C1:F7:3E:32:39:71:29:86
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:ae:e8:1a:bc:ae:1a:96:3c:8f:fe:9e:34:01:ca:e9:4a:1d:
86:3f:54:1a:23:ec:6b:4e:67:d0:b4:56:18:89:39:0c:fc:d7:
72:71:bb:2b:64:87:eb:fa:d9:07:e5:d9:4d:de:f0:f0:e5:0d:
4c:2b:64:4b:6e:36:9d:31:3c:b5:a0:2b:12:ef:d7:d9:a0:ca:
27:85:b4:e3:d5:e5:7e:1f:ea:e2:36:73:af:c9:6f:7f:9f:c7:
68:43:b7:26:ef:75:f4:ff:8b:7e:e5:91:13:03:e2:40:d6:94:
49:f3:84:58:68:99:8c:19:dd:9f:2d:9a:09:96:63:5a:b7:25:
5c:81:6c:b2:e5:36:cf:97:8d:fe:ae:84:80:8e:0a:3a:e4:52:
86:25:dd:b0:d4:8e:54:5a:88:51:48:e7:50:95:db:4b:da:ef:
f7:eb:9e:bd:85:ae:ab:d6:d2:94:e9:ad:1f:25:ba:65:c3:37:
52:45:13:30:4c:89:e3:6b:8e:d9:6a:ee:8e:94:14:6a:d7:e2:
ab:5c:1f:86:c1:a2:58:eb:c8:4b:e1:35:fe:4e:2e:2c:f5:e4:
4c:b1:16:2a:c0:20:c1:4d:07:67:0b:c5:58:ee:45:d1:b8:6b:
33:34:a7:d6:a4:3b:1c:0e:be:0b:69:2a:ff:f3:23:b6:8d:41:
99:bc:cb:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 08:13:29 2025 by rpki-client