Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json)
Hash identifier: dIMIpMT+Lm8a2LTLh3vLkJWfNzi1uGVUFl1IrCjM7jY=
Subject key identifier: D6:22:78:B8:F6:54:F1:1F:3A:F9:DE:72:40:7B:8A:F1:EC:4F:24:0C
Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Certificate serial: 0196767A0636099B6C646FB096FA1AE228D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
Manifest number: 0117
Signing time: Sun 27 Apr 2025 09:00:30 +0000
Manifest this update: Sun 27 Apr 2025 09:00:30 +0000
Manifest next update: Mon 28 Apr 2025 09:00:30 +0000
Files and hashes: 1: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: 1qeLRXK0rTeflPErOLnk8k9TONqqK576ucEKnnNqL2c=)
2: q9EscCe7t5gVibmBd58asAmZMUg.roa (hash: VIc3vlhk4rBIAMQ48+/9jl8SQU9fOCllGCJznJGDS5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:06:36:09:9b:6c:64:6f:b0:96:fa:1a:e2:28:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Validity
Not Before: Apr 27 09:00:30 2025 GMT
Not After : Apr 28 09:00:30 2025 GMT
Subject: CN=d62278b8f654f11f3af9de72407b8af1ec4f240c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:de:60:ba:2a:9c:88:75:c4:0d:f3:6f:38:2d:
7f:5c:68:a7:9c:7c:58:74:c2:38:07:1b:35:f1:d3:
20:22:39:95:87:56:3c:a9:23:8a:1b:ce:27:47:2b:
ce:4d:9a:5d:eb:b9:3a:c0:42:22:aa:86:78:80:74:
16:8f:1d:18:e1:c4:d2:fa:45:d8:f3:6f:5c:10:30:
ca:71:a1:2f:05:76:ac:f9:97:f2:10:01:32:ac:20:
79:8d:8c:9e:d9:9d:6d:7e:bd:7c:fb:87:9e:d7:dc:
c0:d6:7b:2c:5e:aa:15:84:ca:3d:89:f2:14:6f:64:
3a:bc:3e:ae:8c:9a:bb:d2:55:b6:71:03:a9:a3:16:
e6:c6:1f:ce:be:e9:98:b1:7b:1d:48:6f:f1:68:36:
43:15:03:f6:88:2c:f2:a4:f8:9a:dc:49:bc:eb:e9:
c1:94:fe:c2:3a:43:86:58:fe:cc:4a:d0:85:0b:f6:
c6:c6:08:e6:5d:bc:98:59:92:b0:fc:59:36:36:f5:
a2:5a:6f:40:d9:d0:d5:38:39:c8:ca:6d:c9:da:2c:
43:6b:5f:50:df:69:f8:f0:6d:a3:2a:55:09:4a:de:
0e:88:e6:29:ac:ed:e2:3b:a8:33:68:71:36:98:37:
f1:f2:f8:71:e8:d0:00:cc:c2:6d:86:2b:51:33:5e:
b9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:22:78:B8:F6:54:F1:1F:3A:F9:DE:72:40:7B:8A:F1:EC:4F:24:0C
X509v3 Authority Key Identifier:
keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:2f:e1:d2:a3:66:3c:00:f1:a1:bc:a3:b1:e1:38:43:c1:ea:
af:92:0c:09:a0:89:9a:98:3a:10:74:d8:0d:f1:5e:7f:02:a6:
76:3e:a7:b2:d2:ce:b0:0a:59:0d:2c:40:c9:32:4c:f3:73:ef:
8a:96:88:4b:f7:64:81:d0:64:40:cc:36:13:2c:57:79:1c:f0:
f6:8e:2d:4c:36:bd:f3:08:1d:bb:cd:dc:55:ca:7b:db:62:a9:
fd:9b:d7:f0:94:7c:55:b6:f7:48:2f:6a:b4:25:ff:5e:40:53:
6a:8b:19:8c:30:97:9d:0c:d7:df:41:70:9e:4b:69:5b:d3:90:
3f:9c:f1:bc:42:c6:2f:0e:25:b9:55:b4:f5:0f:9b:25:2f:d4:
89:23:77:b4:23:a1:3b:65:8f:18:ff:ae:25:5d:9f:16:c7:03:
0c:c5:5b:9a:82:92:ed:8c:6c:92:a9:09:a6:06:4c:ba:ce:ab:
24:89:bd:6a:5b:63:9f:20:ed:f6:3e:6e:a3:e6:ea:9a:ce:7d:
9f:91:8a:19:f6:d9:98:45:bf:94:3a:74:df:07:ba:77:78:71:
bd:ac:45:cc:14:34:10:fc:a6:4d:14:de:65:9d:b8:c2:bd:5d:
72:25:df:e5:e8:1b:1d:43:0c:d7:92:36:fc:72:6a:15:6e:35:
0e:65:40:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:13:18 2025 by rpki-client