Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
File: OhoMABa5sz-T6Kejk9CRkNXhhJk.mft (raw, json)
Hash identifier: awnbPQhIv2wJOwGeMd4lWiL4X3WMFAllFZT0f+mrklw=
Subject key identifier: E6:0A:4C:82:3F:73:3B:71:C0:84:75:D2:ED:E8:0A:BD:A1:F8:1E:ED
Authority key identifier: 3A:1A:0C:00:16:B9:B3:3F:93:E8:A7:A3:93:D0:91:90:D5:E1:84:99
Certificate issuer: /CN=3a1a0c0016b9b33f93e8a7a393d09190d5e18499
Certificate serial: 01969D19EA3C6DCA47CABFF619276B520CDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
Manifest number: 0AFA
Signing time: Sun 04 May 2025 21:00:43 +0000
Manifest this update: Sun 04 May 2025 21:00:43 +0000
Manifest next update: Mon 05 May 2025 21:00:43 +0000
Files and hashes: 1: OhoMABa5sz-T6Kejk9CRkNXhhJk.crl (hash: 5QKIX6BWT2GD/TJvEzYMV1vsdnL/2gRQr/uisROwovY=)
2: UG2XZdsSP9vahLS8deUbiGwgM84.roa (hash: H+YkvMLky6FPgjSDWIrs7G2kpfOLt2YF+/59bitetA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:19:ea:3c:6d:ca:47:ca:bf:f6:19:27:6b:52:0c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1a0c0016b9b33f93e8a7a393d09190d5e18499
Validity
Not Before: May 4 21:00:43 2025 GMT
Not After : May 5 21:00:43 2025 GMT
Subject: CN=e60a4c823f733b71c08475d2ede80abda1f81eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:cf:cd:a5:98:25:9b:9e:0f:da:78:21:b6:66:
f3:8c:99:92:98:a9:10:57:1f:89:7b:72:97:4a:62:
7a:04:f8:82:3b:f5:51:f0:51:c1:ba:25:f6:58:04:
4c:19:72:1b:77:ce:07:26:f5:b2:0d:d0:fb:4f:12:
7f:71:f8:42:47:45:c5:37:87:98:d6:da:e3:f5:72:
93:b2:33:ca:fd:00:0a:89:48:60:3c:91:ab:1e:34:
5a:d2:ba:7e:11:db:87:0e:61:1f:30:e1:12:c4:05:
1c:71:dd:53:d2:3f:e6:14:86:d4:01:51:e6:b4:47:
f2:fb:d7:3f:cf:40:5e:d6:e9:6b:45:3c:3b:1e:cc:
79:6d:c1:ba:98:fe:68:d6:26:b3:12:35:16:0e:8c:
19:36:1a:fb:b9:3c:3f:e8:fa:16:6e:aa:6b:db:79:
d8:45:34:1c:72:22:56:a2:a4:f8:e6:7e:67:98:ea:
d6:8d:35:71:2c:0a:be:98:fc:de:ef:24:fc:42:f0:
88:06:36:6a:9a:4c:fa:4c:9a:56:49:05:ff:73:31:
e9:c2:7f:ab:b3:89:3a:7d:c5:fd:83:d5:36:d9:49:
30:21:30:94:8b:8c:b3:d4:f0:82:14:df:70:02:4f:
2e:f9:d6:03:08:49:b8:f9:8f:c7:dd:bf:39:e5:45:
8d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:0A:4C:82:3F:73:3B:71:C0:84:75:D2:ED:E8:0A:BD:A1:F8:1E:ED
X509v3 Authority Key Identifier:
keyid:3A:1A:0C:00:16:B9:B3:3F:93:E8:A7:A3:93:D0:91:90:D5:E1:84:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:9f:2a:ed:2d:a6:63:82:05:2f:97:10:65:b0:e4:9f:09:c6:
08:ca:bb:b9:de:d0:c0:48:e3:81:68:a4:b6:a4:5d:80:fa:a1:
d5:bc:70:3a:8d:9c:c2:3e:dd:ca:3b:37:1e:35:fe:66:f6:4b:
db:4b:e9:25:de:5e:ce:a0:f9:bc:16:2e:b0:a4:3c:b9:83:e0:
c1:e7:b5:a8:c2:c6:7c:db:0d:83:85:26:39:79:55:60:6f:54:
9d:74:72:41:10:59:49:26:4e:1f:5e:4e:4c:fc:48:49:c1:4d:
f2:57:2c:ae:c9:25:4e:7a:d5:c4:f7:e5:ff:99:e5:8a:ef:da:
e6:83:b2:9e:35:8a:95:97:d8:5a:a8:ec:d7:ce:83:3c:ed:b4:
aa:55:35:c7:15:32:3c:90:e1:c0:13:3f:03:4c:e4:33:7d:80:
e7:f8:09:38:48:2d:68:c4:87:7c:81:47:72:ae:be:9d:bf:44:
68:6c:e5:7c:bd:75:5d:bc:bc:00:53:bf:4e:e1:99:35:64:09:
9a:35:73:59:77:6c:7c:16:c7:78:fa:dd:1e:12:81:15:d9:76:
a1:27:80:04:2e:7c:30:ec:6c:79:16:46:52:2f:9c:b5:88:46:
5b:56:70:e7:bf:78:bf:5f:6a:31:ff:cf:df:eb:ec:74:bb:aa:
ca:16:06:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 23:49:18 2025 by rpki-client