Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: CfG7QtyDerQtUhVxzOhYAIWooAj8ssPlNh2WZzuBh4M=
Subject key identifier: 03:31:73:A0:CF:E7:5D:2E:50:8E:BF:49:FA:8E:BA:44:6B:1C:48:3E
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 01967ED86388267375ACE655266CFB5BD371
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0B50
Signing time: Tue 29 Apr 2025 00:00:32 +0000
Manifest this update: Tue 29 Apr 2025 00:00:32 +0000
Manifest next update: Wed 30 Apr 2025 00:00:32 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: 8N2vteS8nFQzQIsQmGPHg4qDFygS7nBVAO3PACosmdQ=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:36:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:d8:63:88:26:73:75:ac:e6:55:26:6c:fb:5b:d3:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Apr 29 00:00:32 2025 GMT
Not After : Apr 30 00:00:32 2025 GMT
Subject: CN=033173a0cfe75d2e508ebf49fa8eba446b1c483e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:80:f2:b6:6a:c4:64:a0:ab:ba:39:c2:d4:55:
7a:12:04:46:aa:af:e9:cd:c5:63:c6:ea:4f:85:cd:
e3:fa:5b:94:d2:38:06:3d:5b:bd:18:e5:56:06:17:
33:c1:6d:00:16:8b:00:35:b6:fa:c9:2a:9b:44:c9:
ae:72:ee:c4:46:3e:3b:5f:d3:7a:f9:5e:a8:92:09:
23:bf:8d:82:8e:82:c0:ab:f8:a0:7b:6e:22:67:8d:
fe:9b:e2:00:91:ee:08:a1:94:11:5f:6c:7c:77:f0:
60:14:13:c8:8d:44:74:e0:5a:66:35:f9:1b:73:97:
4d:e7:a3:a8:7e:7f:43:33:22:7d:d8:0a:0e:00:5a:
6e:f0:e3:01:27:72:c1:ef:3c:d5:8a:d5:08:c6:73:
b7:dd:a6:8e:c2:bf:e0:a2:b6:b8:56:81:f4:58:fb:
68:9d:fa:9b:25:26:96:86:96:3e:7e:03:95:e3:36:
2c:c4:9d:d9:6b:0b:8e:98:59:ac:df:1d:f2:7b:29:
12:44:48:e4:3d:98:fe:79:37:9a:76:24:de:6e:4f:
a1:f7:0a:3f:15:67:39:02:0d:e3:b2:8a:70:8a:0b:
d2:11:e0:4f:9b:49:0e:cd:e8:11:27:56:63:d7:25:
2e:80:59:6d:d7:d1:30:43:a6:c6:a1:f7:33:34:22:
26:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:31:73:A0:CF:E7:5D:2E:50:8E:BF:49:FA:8E:BA:44:6B:1C:48:3E
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:2a:2b:aa:40:59:9d:ca:e1:41:19:be:ab:1a:3d:c2:aa:d8:
5b:22:cf:15:7f:66:1c:9b:ab:3c:62:6c:c2:31:39:46:bf:0e:
48:67:d9:09:fa:3d:a0:59:53:46:04:50:d0:b5:e7:ef:52:64:
c4:8a:db:9f:ba:d8:ca:33:95:fd:87:94:f2:42:da:72:f3:91:
87:5f:d4:9e:f2:f1:f8:8b:1a:5e:d8:20:54:a4:6d:0e:63:8a:
76:94:03:c0:38:4d:01:06:55:99:d2:fc:df:9f:81:a8:d0:38:
a5:5a:9a:e2:ff:4e:0f:3a:3e:f8:1c:72:c3:09:30:38:c7:76:
54:eb:55:96:69:c8:2b:f2:19:93:48:98:27:72:5f:c0:fc:6a:
9d:fb:9e:df:9f:33:36:73:7e:a9:a9:41:fd:f5:70:bb:f1:bd:
10:63:2a:24:98:7c:34:dc:74:3f:70:e8:33:26:11:49:97:3f:
76:f9:bb:18:f6:af:81:b4:03:45:5a:b6:5f:6a:b8:b8:9b:c7:
e0:d3:b1:4a:a5:2b:48:22:c9:9f:1e:1d:59:85:b0:8d:11:1d:
07:e9:67:f4:86:68:3a:6a:6d:ee:f0:75:4c:6a:a7:1b:62:89:
95:8d:f8:56:0b:1a:29:d5:10:18:5a:93:65:5e:84:3f:a6:29:
0d:72:23:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 04:55:43 2025 by rpki-client