Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
File: cOKzQXw5wP47u7xNUj7UN7KcWhw.mft (raw, json)
Hash identifier: DNeNOze/RyFq7WXWsAaq4DycyvH0iewnQGzKR2oAPwQ=
Subject key identifier: 0D:4A:0B:41:50:6F:78:D0:F2:88:5F:69:63:14:53:3B:DD:72:52:51
Authority key identifier: 70:E2:B3:41:7C:39:C0:FE:3B:BB:BC:4D:52:3E:D4:37:B2:9C:5A:1C
Certificate issuer: /CN=70e2b3417c39c0fe3bbbbc4d523ed437b29c5a1c
Certificate serial: 019694F28A3A3E60E868CE18A02411E17AD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
Manifest number: 14B1
Signing time: Sat 03 May 2025 07:00:45 +0000
Manifest this update: Sat 03 May 2025 07:00:45 +0000
Manifest next update: Sun 04 May 2025 07:00:45 +0000
Files and hashes: 1: cOKzQXw5wP47u7xNUj7UN7KcWhw.crl (hash: PG9G6kygUe6hr5UaUHx0aXMg0dALAwwfaicS6iaJYCI=)
2: wZl766gEgIlD1PBWErT8JXtbQ6E.roa (hash: GJKy6CeHDJyN+o1oRpRHchOhI0KPIFrY454WKeTW5CM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:94:f2:8a:3a:3e:60:e8:68:ce:18:a0:24:11:e1:7a:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e2b3417c39c0fe3bbbbc4d523ed437b29c5a1c
Validity
Not Before: May 3 07:00:45 2025 GMT
Not After : May 4 07:00:45 2025 GMT
Subject: CN=0d4a0b41506f78d0f2885f696314533bdd725251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a9:9e:27:7e:40:cc:0d:5c:62:70:66:65:15:
d4:96:65:36:83:36:6b:96:44:e7:66:3a:92:58:4f:
c3:4c:92:a4:af:11:c1:63:84:86:b7:42:7f:20:87:
b4:ab:54:13:4c:23:90:dc:57:75:b8:28:89:90:3b:
04:83:2e:c9:c4:5e:56:8d:c4:cc:16:4f:1c:f8:00:
2b:81:3d:d5:ab:09:55:3c:f6:a5:6f:30:4c:33:ec:
de:9a:7a:fd:0b:58:2e:0a:b9:16:b4:0a:2d:7f:95:
35:10:10:ac:a5:b4:9a:f0:1e:4d:05:98:7d:67:ef:
55:1c:96:0e:93:56:f7:98:37:90:b1:d3:6a:bd:8c:
85:f3:71:a6:25:ef:c1:e2:f0:ca:62:51:97:0d:35:
68:5d:31:fd:91:b8:5e:97:88:ab:2f:61:77:6e:5a:
0a:74:83:3d:65:c9:34:ff:6c:2e:85:58:63:02:de:
7b:2f:53:35:e5:39:ba:b5:d6:bb:83:e8:b7:6d:bd:
9d:10:37:b6:5a:73:89:47:d7:c5:2e:e6:92:47:97:
8a:ef:da:ca:d7:0d:fb:eb:8c:2c:c4:98:48:9c:44:
55:38:39:c4:a1:4d:42:70:18:1b:78:32:aa:fc:7c:
8a:49:65:2e:a1:b3:c6:fb:cc:36:96:f0:4d:f2:c1:
e2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:4A:0B:41:50:6F:78:D0:F2:88:5F:69:63:14:53:3B:DD:72:52:51
X509v3 Authority Key Identifier:
keyid:70:E2:B3:41:7C:39:C0:FE:3B:BB:BC:4D:52:3E:D4:37:B2:9C:5A:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:99:05:9c:43:ba:17:11:10:16:82:11:1c:8c:19:80:5b:97:
f1:59:d3:d3:64:61:58:19:4d:02:80:3b:2b:bb:7a:bc:42:31:
90:8f:68:88:6d:c3:a2:5c:6b:ee:69:f4:26:6a:aa:7f:9e:62:
e6:c9:92:cf:6b:62:d5:9e:b7:15:69:bd:27:c0:83:8b:0e:96:
1e:a9:fb:41:93:b2:34:60:31:cc:85:46:d1:2e:0f:10:3f:43:
2c:a0:be:d4:1e:0d:78:87:89:03:ea:e0:03:65:0d:5b:68:d9:
20:19:a2:e1:9b:28:c2:b5:8d:e2:c3:88:c9:da:d3:22:66:09:
a7:94:43:6b:97:9e:3e:32:f7:f6:87:94:7f:74:24:ef:cd:ee:
17:ac:4d:c7:37:c2:47:ab:e8:54:32:10:6a:78:b8:13:ea:fe:
e8:e4:9f:d9:44:bc:3a:97:52:91:e0:80:d4:5c:75:42:e6:10:
12:5e:d7:6d:c2:21:2e:73:8e:34:d7:87:5b:4a:6e:04:03:2b:
b0:22:6e:2d:b3:d5:67:45:51:bf:aa:44:eb:7b:2d:5a:d0:59:
3d:35:37:2e:1b:ef:e8:44:87:17:4e:bf:b8:e3:f6:5f:54:48:
ce:63:01:7c:90:8a:61:40:8b:78:ec:99:0d:d6:43:0f:2b:8d:
fe:ee:4c:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 16:45:45 2025 by rpki-client