Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
File: OneLgrqpeIoayvLsNothmB71HfI.mft (raw, json)
Hash identifier: CkzTJifsbGCzxh04l7mnnLYFvWCZDtyf+ay6MBHWDio=
Subject key identifier: 4A:EE:66:3C:09:CE:F3:01:69:47:79:75:D6:CD:BF:3A:4E:91:1F:9E
Authority key identifier: 3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
Certificate issuer: /CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Certificate serial: 0196778CB2B45B16852AAA460DB10A127071
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
Manifest number: 1515
Signing time: Sun 27 Apr 2025 14:00:31 +0000
Manifest this update: Sun 27 Apr 2025 14:00:31 +0000
Manifest next update: Mon 28 Apr 2025 14:00:31 +0000
Files and hashes: 1: OneLgrqpeIoayvLsNothmB71HfI.crl (hash: cma8t50t57ScWKszW5E7k15Yqe2ZtLvpv3dd3hQO3wo=)
2: tSdPmCF2mRPxF2tL9jrht8v9nd0.roa (hash: 25zx6oeH7z2ZyGM4y2LzPQiLw04ocTvL7Bq+gPKpw0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:b2:b4:5b:16:85:2a:aa:46:0d:b1:0a:12:70:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Validity
Not Before: Apr 27 14:00:31 2025 GMT
Not After : Apr 28 14:00:31 2025 GMT
Subject: CN=4aee663c09cef30169477975d6cdbf3a4e911f9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ec:83:71:c2:02:1b:eb:c9:08:3c:c5:fe:d4:
1e:d7:b5:99:59:d5:de:01:87:81:1b:01:aa:0d:54:
8b:f1:a4:7e:4a:8d:ff:d8:23:42:a4:60:ef:3f:96:
40:2c:54:b0:12:bc:12:54:59:ef:ed:61:7c:45:4b:
c0:0d:7e:c7:d1:35:04:03:5f:4b:db:df:22:de:d5:
a4:b1:20:92:a7:2e:74:39:ce:16:0c:2a:48:81:ec:
6e:69:23:6a:1d:7c:d1:2c:82:c7:f6:d7:1a:04:3f:
d6:57:db:af:f9:e1:4a:89:64:b6:21:80:84:f6:47:
19:a9:1f:c8:15:ab:8a:0b:71:c5:8a:81:22:88:47:
7a:92:47:d7:16:0b:f3:9e:63:fe:fc:54:44:68:9c:
dd:90:6f:d8:11:23:0d:f1:2f:ae:04:ba:df:f2:5e:
19:02:62:16:d4:df:4c:d9:a8:24:be:77:97:33:89:
29:ae:b6:fe:c1:7f:d7:18:f3:f0:67:65:89:04:1f:
c5:f0:6b:4b:e9:e2:c3:cf:f4:c9:66:f8:ad:8d:1d:
99:4b:4c:4e:8e:c9:18:c0:b4:15:7b:92:68:78:5e:
88:c2:78:72:95:c5:01:78:ae:98:45:ea:0f:8a:5d:
27:35:7e:c9:16:1b:82:7f:c0:34:07:9f:7f:92:66:
7b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:EE:66:3C:09:CE:F3:01:69:47:79:75:D6:CD:BF:3A:4E:91:1F:9E
X509v3 Authority Key Identifier:
keyid:3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:a7:3f:6b:3e:6e:16:9f:0a:37:78:10:19:92:2d:a0:0c:a5:
59:39:72:57:6a:08:c5:c6:4a:d1:90:15:66:ab:cc:43:01:e2:
0b:ed:1c:c8:37:9f:97:db:3f:ad:d8:9b:03:28:ab:d0:67:d8:
5b:d6:2b:5b:96:13:8f:07:d5:ae:cb:60:80:66:0c:c4:6b:8d:
7e:9b:6d:ce:23:6d:5d:d0:05:6c:ad:85:2d:05:83:1e:5a:77:
c8:65:b6:bb:9e:00:80:d8:9b:25:75:74:ba:40:e6:bf:c5:ec:
d8:4a:1d:38:ab:a8:de:90:a5:26:0c:05:30:3f:37:93:5d:8a:
88:e8:f6:84:9e:13:b1:87:52:26:4c:65:4c:74:74:20:83:c6:
1a:6a:32:7f:ab:19:75:c8:74:3c:6e:1f:06:fb:b9:99:42:fe:
a1:a6:07:d3:64:62:e3:b5:39:ba:30:7e:fd:b7:72:7e:0c:60:
f7:b0:0b:17:90:e2:80:a7:0d:ca:a0:4a:cb:df:3e:9f:bc:4b:
59:4b:eb:35:d6:43:43:b6:1e:36:34:55:7f:26:03:d3:60:d8:
23:c8:8c:cc:46:eb:dd:8a:47:2d:dc:1c:ce:20:0a:47:24:94:
5d:8c:91:33:ec:60:32:ca:00:58:0a:cd:6a:b9:2a:b3:a0:0d:
f7:ac:d4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:16:48 2025 by rpki-client