Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: hMtEeg3nlc9ugMSmuUEvAY+nJ1ZuEg6DP6ERDSYPpkE=
Subject key identifier: A3:CE:C0:E7:FC:27:50:60:99:19:00:2D:D3:FB:32:25:D2:D3:CB:0C
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 0196759E510ECB09C40612DD56E03BBCDD51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 150F
Signing time: Sun 27 Apr 2025 05:00:31 +0000
Manifest this update: Sun 27 Apr 2025 05:00:31 +0000
Manifest next update: Mon 28 Apr 2025 05:00:31 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: rX9jU5TRztGrKNlgMxBSbNVsK/s7Nm+hy4qyHJjW0Ck=)
2: WAQz-NVz1tPP197fB-7kdlHEMDo.roa (hash: EfunuE83nVqoEWqBwZZf7jU1FPr/i4YaWTLI4hd6d6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:51:0e:cb:09:c4:06:12:dd:56:e0:3b:bc:dd:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Apr 27 05:00:31 2025 GMT
Not After : Apr 28 05:00:31 2025 GMT
Subject: CN=a3cec0e7fc2750609919002dd3fb3225d2d3cb0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b0:78:22:19:3b:1b:41:5e:08:44:cf:de:48:
bb:99:06:1f:bf:ff:d4:1c:84:d9:90:05:30:d0:e3:
f0:df:d6:f9:b0:32:7e:6a:af:f0:f2:20:e4:bb:6c:
a8:7c:53:62:0a:c0:f8:52:68:6e:c4:20:ab:17:96:
4d:fd:eb:86:75:3e:90:7e:00:ff:11:60:46:e4:82:
64:f9:50:7e:fa:74:89:0a:ec:57:cb:d3:eb:ee:8c:
ca:05:64:48:a9:be:a0:0d:b8:4f:46:da:8c:3a:da:
f4:91:80:15:45:b4:1e:d9:1b:81:42:03:43:76:ad:
e7:4f:6f:de:df:fa:1c:10:03:b7:2a:18:3c:a8:00:
81:d6:14:0e:06:ad:61:59:40:5a:bd:94:70:d4:4c:
e5:c6:38:ae:82:21:fe:52:81:08:bd:95:89:d2:a4:
15:71:38:d9:c7:22:d9:b1:52:3d:41:34:fb:e8:69:
32:d9:8c:10:96:fc:a7:fa:fd:6d:05:3f:6d:21:f7:
3b:7b:4d:25:3b:03:70:ae:e1:fc:5b:88:81:3f:57:
6b:96:ca:ab:4e:ef:16:85:a3:af:a8:58:08:04:4a:
5b:12:24:d1:bb:b5:27:d9:09:8b:83:f2:42:dd:3f:
a1:dd:30:7a:30:64:1f:d9:18:29:9a:c6:6a:71:7b:
d1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:CE:C0:E7:FC:27:50:60:99:19:00:2D:D3:FB:32:25:D2:D3:CB:0C
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:40:d1:b2:67:fd:61:34:5f:0a:ab:aa:b2:80:bb:c6:b6:e5:
de:29:16:51:29:22:ce:45:6c:75:6d:c9:88:f3:5f:fc:4a:cc:
cf:09:55:35:3d:a5:46:aa:89:c7:46:62:fe:e9:c8:50:c8:34:
b0:52:a6:6e:2b:ae:62:f6:e6:76:e3:7e:db:61:60:26:f9:50:
7c:fa:e3:24:c9:d4:f0:50:2e:dc:70:de:46:75:39:c2:f2:2a:
b0:c7:44:d9:74:22:90:97:5d:4d:5d:f2:e3:86:51:ea:75:1f:
c6:b6:2e:b0:82:13:6a:ad:98:a6:9b:f6:5a:77:65:e2:46:ed:
8e:b7:34:21:86:4b:ae:ad:70:67:6b:65:48:75:f2:72:bd:07:
31:aa:48:cf:fb:51:e5:22:12:a2:74:0e:aa:93:1b:df:4d:e1:
24:9f:c3:59:55:75:3e:f6:22:64:a0:ea:f4:67:2e:2b:47:6a:
d7:8c:b8:01:1b:c1:63:f9:dd:95:58:4e:13:a3:cb:50:53:fb:
20:25:be:99:f0:5f:df:19:2e:7a:12:e2:a3:cb:39:62:5c:76:
61:4d:fd:0b:29:1b:1e:7e:18:74:00:ca:5d:4b:43:21:75:4c:
3f:11:fe:ef:cf:c7:d1:f4:b6:5f:32:cc:fb:2e:df:e5:65:51:
05:0f:41:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:38:23 2025 by rpki-client