Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json)
Hash identifier: McokY/c+e0fHfn2+NliJJrvjlniinw0oFlB1ZnzyPew=
Subject key identifier: 40:40:DA:1B:D2:5E:71:4F:25:0B:0F:75:B0:B8:CF:67:7F:E2:D0:0B
Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Certificate serial: 01968EB98F29FEA9357EA57446842D4829DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
Manifest number: 0201
Signing time: Fri 02 May 2025 02:00:47 +0000
Manifest this update: Fri 02 May 2025 02:00:47 +0000
Manifest next update: Sat 03 May 2025 02:00:47 +0000
Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: ZgukOP0E5/3scPn+WPt8Nt641bS5TiUMaetpborm4Ck=)
2: Q5qSxQZ6AuTJXsJJ-9RRWDA26wA.roa (hash: 64WIeN1+JBWLPlD+mMTcZ54izCFjiXRNJWE/ls/16OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 02:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8e:b9:8f:29:fe:a9:35:7e:a5:74:46:84:2d:48:29:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Validity
Not Before: May 2 02:00:47 2025 GMT
Not After : May 3 02:00:47 2025 GMT
Subject: CN=4040da1bd25e714f250b0f75b0b8cf677fe2d00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a1:9a:ee:88:83:5a:9b:bb:77:5b:04:b7:80:
89:8c:6d:89:63:4a:9d:f1:d2:b6:fb:26:67:17:c1:
d6:14:46:74:3b:dd:24:a8:b1:c5:cf:c6:34:c0:19:
b6:d7:1d:ff:c1:34:90:58:82:e8:0c:c9:c8:26:83:
f2:11:0e:3a:00:0a:56:7e:ef:b1:ad:b8:f0:36:40:
13:72:81:32:e2:ea:c9:7e:0f:7e:f0:d1:53:b6:6d:
15:c0:d3:22:f0:a5:a5:5d:80:96:2b:d3:cd:f7:b2:
f9:79:91:e6:2f:81:d8:fd:84:e7:f0:92:a1:4a:ca:
30:f8:9e:53:39:8a:4d:b1:02:66:30:2d:79:fe:bc:
dd:60:1b:5a:48:b3:66:12:11:2b:ed:71:80:7f:52:
0e:af:32:31:26:6a:72:61:82:d9:76:16:64:fc:41:
36:06:ca:b3:3f:58:c7:ba:7c:95:dd:d2:10:58:4a:
f3:21:cc:c3:9f:3f:fe:14:76:93:91:e1:ae:12:47:
3d:47:f8:c7:97:72:77:a0:d6:8e:af:f2:69:bc:81:
77:3e:56:3b:82:19:ac:a0:93:bc:65:46:3c:47:a6:
9e:db:c6:94:89:a3:fb:3e:6a:3f:27:fc:bb:db:d9:
5e:74:19:81:fe:ba:bb:0b:b8:8c:09:57:cb:af:e7:
75:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:40:DA:1B:D2:5E:71:4F:25:0B:0F:75:B0:B8:CF:67:7F:E2:D0:0B
X509v3 Authority Key Identifier:
keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:c1:76:e7:ba:59:fc:f9:77:79:4a:dd:a3:a9:e2:25:c6:c3:
69:8f:76:fe:aa:27:87:79:47:7a:73:a1:a2:45:6c:67:3f:dd:
ba:9a:68:c5:86:14:19:08:7c:76:b6:38:08:8d:56:4b:a5:92:
d7:26:a4:d5:7b:9e:07:13:56:59:ae:2b:0f:3b:86:aa:ec:df:
d6:35:e9:63:44:1b:f8:d7:0b:fc:7b:cf:d5:d2:92:96:94:af:
01:7d:c8:b4:32:4a:5f:ce:ad:ff:fd:1f:c3:8a:7a:b0:93:8c:
ff:09:52:19:60:8e:27:be:66:0c:e1:28:03:0c:e2:c4:4a:bc:
0a:7d:ca:b1:4f:f3:5f:43:5f:da:56:df:e4:32:d9:01:e9:68:
2d:94:fd:f0:aa:d3:51:89:6f:15:42:05:bc:73:e2:52:de:35:
e5:7d:fb:43:25:26:e5:75:81:08:64:ba:83:24:be:fc:12:af:
88:d9:35:8e:df:42:68:db:bd:1c:3e:a5:c7:30:7d:5e:b0:40:
31:cc:64:5a:32:8a:93:3a:da:a8:ac:92:6b:fd:4a:53:a2:97:
27:87:17:38:43:f3:a3:40:b1:1e:42:3a:2c:40:9a:27:dd:35:
47:6d:2f:91:1e:86:7c:ce:51:00:9f:37:dc:c3:d8:33:2d:43:
ac:ef:7e:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 13:15:11 2025 by rpki-client