Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
File: owjczEdYTD-oJh23kmouQBcrP3k.mft (raw, json)
Hash identifier: yHkhnHWroPr7DsYcZvgEoFLSqkLQ49ffLRyYZTr1riY=
Subject key identifier: 16:76:30:6D:34:9E:9C:40:9F:6C:FA:A7:66:A2:36:0B:13:84:03:93
Authority key identifier: A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79
Certificate issuer: /CN=a308dccc47584c3fa8261db7926a2e40172b3f79
Certificate serial: 01967379256C4F5D91313D44CD5BF16BF11D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
Manifest number: 01DF
Signing time: Sat 26 Apr 2025 19:00:41 +0000
Manifest this update: Sat 26 Apr 2025 19:00:41 +0000
Manifest next update: Sun 27 Apr 2025 19:00:41 +0000
Files and hashes: 1: owjczEdYTD-oJh23kmouQBcrP3k.crl (hash: KdofKVQ0Ca/Ca56CoaahEW2V0rA1TJiBIH0PzuZAk0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 19:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:79:25:6c:4f:5d:91:31:3d:44:cd:5b:f1:6b:f1:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a308dccc47584c3fa8261db7926a2e40172b3f79
Validity
Not Before: Apr 26 19:00:41 2025 GMT
Not After : Apr 27 19:00:41 2025 GMT
Subject: CN=1676306d349e9c409f6cfaa766a2360b13840393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:23:3c:2b:75:0e:7e:e8:66:f5:1a:64:94:84:
7a:95:db:7e:c8:de:67:41:ab:9a:1a:35:ec:f0:09:
c1:24:92:a4:1c:8c:ad:88:ed:a0:6d:b6:bd:09:e4:
cc:40:90:cd:80:e5:5c:f0:5c:55:62:06:22:01:ce:
0d:d7:66:41:fe:21:7f:ea:76:98:ff:fb:e4:9e:b6:
a1:25:34:8c:7d:3e:72:27:b2:e9:6b:0b:4e:78:4c:
84:fc:e7:e5:c4:ff:aa:a9:3f:b2:ff:b5:3f:8a:ad:
2c:55:b4:29:b3:2f:68:7c:31:fc:b8:e1:3f:b2:54:
e9:2c:00:58:59:95:86:60:d5:f4:30:07:84:60:0b:
f5:ca:68:46:03:81:61:b7:1a:5e:31:73:73:b5:c2:
dd:55:01:36:ad:09:78:9d:89:e6:42:fe:61:88:a1:
da:b4:72:86:04:90:35:ea:c4:9e:9a:38:b2:88:b3:
3b:bf:d0:65:46:36:d8:69:de:e4:89:a2:d7:9c:2c:
bf:87:59:1c:25:ee:75:86:4e:94:67:09:7e:0b:28:
3a:3f:6c:d7:2a:3a:94:d5:e8:92:ab:a5:a5:b6:6f:
0c:a5:c4:d6:e5:41:95:e4:cf:81:b9:0a:48:0c:06:
ff:db:b5:a6:6e:74:dd:d7:bb:2a:e8:e1:17:c1:0f:
29:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:76:30:6D:34:9E:9C:40:9F:6C:FA:A7:66:A2:36:0B:13:84:03:93
X509v3 Authority Key Identifier:
keyid:A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:2f:b5:1b:72:79:2f:8d:d0:33:41:3c:59:59:a1:93:14:49:
4c:40:2b:87:59:b6:c1:67:81:5d:dc:ef:b7:f3:ce:94:c9:bf:
1d:a6:e3:3d:9e:aa:0b:b8:bb:60:db:0b:3f:2c:f6:b4:35:ce:
7e:81:63:75:bc:fa:47:23:79:ab:75:2d:d8:0e:ce:25:02:7b:
c1:fb:d6:f7:f8:5b:a2:4d:ae:11:25:f2:03:81:59:0c:7d:9f:
1a:bc:e7:90:43:77:47:52:96:ed:21:23:ae:c1:77:e6:6a:16:
de:94:1d:3b:db:b5:69:d5:5f:61:48:80:0f:f0:ef:f8:20:50:
29:33:e7:ee:e7:74:b5:fa:04:26:9e:21:a6:d0:2d:d3:06:93:
ce:58:8e:27:22:2d:7f:66:bb:62:3e:a8:1f:51:41:d5:f7:da:
18:38:74:7f:8e:24:b9:8a:6e:0e:b7:68:e5:b4:39:60:1c:0a:
16:b4:0c:b2:de:2d:5f:82:a9:32:79:7a:c8:33:a0:5f:5e:6d:
7d:f8:92:11:cb:e4:30:78:d7:ee:86:46:b5:db:6c:93:33:e3:
78:9d:0e:68:86:c8:ce:23:89:d1:59:a2:2b:a7:0c:7e:ad:d9:
51:cc:37:69:5c:ba:af:16:0d:f6:de:7e:35:58:1b:41:78:3c:
5f:9e:f6:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:52:29 2025 by rpki-client