Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
File: ORxdMzEUXsjicYdvgEIge50Ay2Q.mft (raw, json)
Hash identifier: x99gO0GbVgk1DF9U7hyGTQNeM6f+JzPgMFiPCoXPwGQ=
Subject key identifier: 86:E3:00:7F:1E:D5:25:5D:2F:21:69:FA:19:F4:26:8C:FF:1E:71:1E
Authority key identifier: 39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
Certificate issuer: /CN=391c5d3331145ec8e271876f8042207b9d00cb64
Certificate serial: 01967EA1B4E6BD313F9A00C64BB050CDED5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
Manifest number: 0DEA
Signing time: Mon 28 Apr 2025 23:00:48 +0000
Manifest this update: Mon 28 Apr 2025 23:00:48 +0000
Manifest next update: Tue 29 Apr 2025 23:00:48 +0000
Files and hashes: 1: ORxdMzEUXsjicYdvgEIge50Ay2Q.crl (hash: 1BcQ648Frz0HSj203P6nTBIMNUXykI5niMZDCCw5BLY=)
2: OST4PzA3ppU9tim3_KfBBcrqcgQ.roa (hash: 7aAkIwPTKpTiRriNWV3feZU6/0BHu+h2F1+5PEi7g88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 23:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:a1:b4:e6:bd:31:3f:9a:00:c6:4b:b0:50:cd:ed:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391c5d3331145ec8e271876f8042207b9d00cb64
Validity
Not Before: Apr 28 23:00:48 2025 GMT
Not After : Apr 29 23:00:48 2025 GMT
Subject: CN=86e3007f1ed5255d2f2169fa19f4268cff1e711e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:12:d3:72:eb:03:54:04:41:aa:54:47:47:58:
f3:ef:c3:59:9b:bd:3d:46:52:63:41:b3:d1:5e:e7:
98:de:f8:f7:cf:a9:a0:49:e7:2d:b8:c3:82:3a:08:
5e:0c:c5:be:cc:e6:30:68:6a:10:41:f1:84:a2:15:
b9:da:30:00:74:76:64:b3:65:28:89:ce:58:aa:41:
6e:7f:7c:ad:8a:cc:1f:9c:1e:a5:50:b1:84:eb:b0:
d0:44:c7:48:36:07:03:f1:59:89:c6:10:18:29:3e:
bc:e9:72:6a:6b:df:e2:0f:21:d4:42:13:41:03:7a:
3b:9e:21:20:10:8b:90:dc:05:60:cc:3b:d3:bd:57:
6e:f2:d8:4e:9c:97:48:c7:9f:b2:a7:33:e9:79:46:
ca:3b:99:72:6f:1b:c9:52:b2:ee:be:a9:44:ba:be:
cc:15:9b:c5:ba:ff:5c:1c:c5:42:ca:e1:90:99:f3:
c4:2d:b2:5e:0d:90:49:50:20:0c:6f:cf:0c:a6:99:
eb:a8:22:7f:9d:39:d4:88:05:ad:12:63:6a:28:34:
8f:5c:d2:39:11:e1:3f:1a:cf:46:5c:fc:77:79:36:
ca:4a:f2:80:d0:4a:ed:69:72:13:7e:64:20:10:74:
c1:79:d5:2f:8a:d3:8f:9c:6c:3e:c6:31:c8:d7:c7:
71:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E3:00:7F:1E:D5:25:5D:2F:21:69:FA:19:F4:26:8C:FF:1E:71:1E
X509v3 Authority Key Identifier:
keyid:39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:f6:f7:9a:6e:db:4b:6f:34:8d:47:39:dd:4d:f1:eb:e4:bb:
c4:92:ad:c6:0f:be:44:4e:c1:05:b0:16:85:b8:b5:bb:08:55:
e8:9b:69:05:1d:d8:64:c3:7e:72:c7:b0:7b:9a:b3:da:65:8c:
9c:94:e4:55:21:55:6e:7c:fe:5f:f8:a9:8d:d1:d9:a6:03:96:
d9:91:f1:94:42:81:da:94:21:a0:cf:d7:38:fa:18:b4:85:0a:
17:8f:47:6e:4c:4a:30:85:9c:41:ea:e8:06:02:4d:39:53:6e:
52:56:ce:9b:23:80:ac:3c:eb:2d:ed:90:f7:0d:cb:a3:e5:eb:
31:ad:7e:dc:f2:6b:ff:3c:f7:2a:1a:a6:56:5b:ce:78:73:9d:
c8:54:79:f1:a8:8b:92:31:c0:51:62:28:95:2a:ca:39:61:a7:
70:79:66:4f:b3:db:72:1b:65:91:a8:b8:54:8e:70:94:33:a9:
08:1e:3b:f9:25:65:16:f4:ee:0f:cb:1f:78:34:ab:b3:1d:f6:
a2:30:7e:a4:b5:26:88:05:e6:67:2a:b3:c0:5f:67:a9:8e:ba:
f1:42:9a:85:59:8b:63:1e:ce:02:4d:f8:d6:6a:14:dc:fe:6b:
5c:13:89:1b:22:4a:82:cf:d6:05:3e:35:dd:d7:3a:47:8e:f6:
19:74:f6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 06:09:41 2025 by rpki-client