Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
File: OJsvo2UTg6f8aoatulbHxiB9dWg.mft (raw, json)
Hash identifier: QKxodvpTjUUFH7QihnrjohW2XbylQBTApbCCV1sDCFc=
Subject key identifier: 9F:42:22:BA:5C:99:48:E8:2A:37:D2:17:42:88:44:25:8B:98:38:B7
Authority key identifier: 38:9B:2F:A3:65:13:83:A7:FC:6A:86:AD:BA:56:C7:C6:20:7D:75:68
Certificate issuer: /CN=389b2fa3651383a7fc6a86adba56c7c6207d7568
Certificate serial: 01967DFC7D4166682A6F1C9F872D42C57CA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
Manifest number: 0CFC
Signing time: Mon 28 Apr 2025 20:00:21 +0000
Manifest this update: Mon 28 Apr 2025 20:00:21 +0000
Manifest next update: Tue 29 Apr 2025 20:00:21 +0000
Files and hashes: 1: LVniV-fBUsD2XHyiKXh59lNaKck.roa (hash: e7ROoJyN3pM39RDR+x9hRmjX8OTAnl8OOTQ8mCyFwtU=)
2: OJsvo2UTg6f8aoatulbHxiB9dWg.crl (hash: LWai8qPI39DHl/BMTmYknKR1AcyIufA6BIu6yujbx9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:fc:7d:41:66:68:2a:6f:1c:9f:87:2d:42:c5:7c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389b2fa3651383a7fc6a86adba56c7c6207d7568
Validity
Not Before: Apr 28 20:00:21 2025 GMT
Not After : Apr 29 20:00:21 2025 GMT
Subject: CN=9f4222ba5c9948e82a37d217428844258b9838b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f2:4d:8f:41:4f:64:ee:20:12:5a:ef:01:39:
22:13:bf:94:b0:12:ed:76:7c:07:2a:db:15:b2:16:
d5:9e:32:e9:84:46:20:e7:23:77:50:3d:42:8c:61:
65:ad:e6:48:00:ae:17:1c:ed:7c:bd:ca:d2:08:20:
2b:c5:08:00:4e:e2:94:60:a9:a5:0d:95:85:bc:5a:
00:6b:5a:e7:7d:57:59:21:0b:3d:30:af:e3:07:8b:
be:b0:f5:8a:03:17:a0:7e:db:8c:bf:2e:35:2a:48:
d3:12:cd:c7:0b:74:2d:d6:0a:ee:79:c9:d5:a9:b7:
a4:88:ab:98:68:b2:39:59:0f:f3:a7:8e:d1:5c:76:
3d:92:c1:44:07:e4:5d:2b:53:44:62:dd:11:2f:c3:
57:43:4e:5f:fa:f6:e9:a2:24:2e:f1:00:ea:e6:f4:
67:20:f2:fd:be:d6:91:a9:58:93:6a:a1:0e:59:e7:
75:ab:a8:18:79:86:be:cf:e1:f2:c4:a2:42:55:81:
e2:ce:9b:09:ff:ff:4d:5f:0c:3b:d7:7d:0d:8f:94:
bc:d4:b9:2e:28:d0:ca:cc:3a:dc:d5:b0:a1:81:53:
59:b8:09:92:e0:3f:b7:80:aa:3a:67:6c:50:37:1e:
a3:ca:f5:63:de:18:ac:21:7e:32:83:38:6b:a7:f1:
e7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:42:22:BA:5C:99:48:E8:2A:37:D2:17:42:88:44:25:8B:98:38:B7
X509v3 Authority Key Identifier:
keyid:38:9B:2F:A3:65:13:83:A7:FC:6A:86:AD:BA:56:C7:C6:20:7D:75:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:e0:be:e6:85:f3:f1:fa:7b:ec:36:b1:54:5c:bc:7e:aa:6e:
cc:9a:cf:61:c7:71:a9:2a:69:f1:0a:1c:f8:3a:37:bd:62:36:
27:c3:7c:80:ba:70:d2:22:d7:a5:4b:a7:89:f0:0f:46:3e:44:
0d:e8:5f:37:af:be:62:5c:ec:e9:5f:ec:e7:32:6c:f6:88:92:
94:e3:e2:41:d8:8f:fc:44:8a:66:f0:34:95:aa:46:07:74:e3:
99:61:d2:94:ca:f2:15:fc:70:a6:15:1b:73:43:cb:bf:a1:41:
f8:0e:cc:5a:30:af:88:a0:75:72:ce:31:bc:bf:eb:a2:bc:69:
ad:2d:7e:09:ea:de:70:bf:d5:a2:0b:07:d2:2e:37:31:0b:71:
17:03:c3:8f:bf:8a:98:7d:2a:4a:e7:be:ee:fe:80:b1:d3:b0:
72:5d:02:a7:39:a7:54:92:fd:6d:81:62:bb:62:d0:76:f4:b2:
a3:97:c3:7c:a9:85:51:ec:0b:b5:dd:ec:c3:4a:b1:94:ba:0a:
44:c3:58:89:86:a4:09:d6:5b:71:b6:ae:00:70:a7:18:19:a0:
61:95:21:34:2f:9e:5c:84:54:86:df:2a:d9:f3:fa:6a:25:8e:
8e:ee:84:1c:9d:fa:bf:2b:1f:44:8c:82:52:9b:97:27:e2:a9:
08:94:ca:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:50:54 2025 by rpki-client