Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
File: iOpSVfiNS5VxicFC-KxWgcUMaKY.mft (raw, json)
Hash identifier: UVDOGUceH0oZQ6AfZm0tIpaBhJkxmkfrZXn7LwhV4VU=
Subject key identifier: 4E:FE:78:1B:22:6F:92:BB:60:F5:27:BB:4C:96:5B:C7:CC:F1:45:07
Authority key identifier: 88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
Certificate issuer: /CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Certificate serial: 019690DEBBDEE83820CD9221C749597A6327
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
Manifest number: 07A1
Signing time: Fri 02 May 2025 12:00:38 +0000
Manifest this update: Fri 02 May 2025 12:00:38 +0000
Manifest next update: Sat 03 May 2025 12:00:38 +0000
Files and hashes: 1: OdavAlmZTVSUEn8DEUG0x7Aup4c.roa (hash: zvm6Bet4M7SswbKtgyqQXpZEDV7VAUhO/RsUj5lDxjA=)
2: iOpSVfiNS5VxicFC-KxWgcUMaKY.crl (hash: LX+awPAjKw+oPvOZBfih/4jNJSszWFtoQG4kbCgpPYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:90:de:bb:de:e8:38:20:cd:92:21:c7:49:59:7a:63:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Validity
Not Before: May 2 12:00:38 2025 GMT
Not After : May 3 12:00:38 2025 GMT
Subject: CN=4efe781b226f92bb60f527bb4c965bc7ccf14507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:19:a0:3d:6a:de:c4:cf:2a:1f:9d:32:01:e5:
2a:7c:9a:15:bb:50:13:23:1c:e1:04:09:c2:c1:f6:
0a:d0:9f:db:9a:15:17:48:6d:78:c0:d3:22:df:53:
51:58:43:66:f5:c7:26:a9:db:02:3a:7e:02:5b:91:
f5:a9:0a:4f:c7:bc:e9:a7:46:86:ac:e3:0a:59:a8:
1b:e5:b4:6a:0e:38:3a:65:a5:1d:00:3b:02:2b:2f:
ec:7d:e5:53:8e:05:17:92:e6:4c:79:e4:5b:af:8c:
24:03:f0:11:d0:5a:a3:c8:c4:5c:ff:15:b3:ae:d9:
2e:f4:25:bc:bd:da:98:d3:24:15:65:97:97:27:1f:
30:50:89:89:b9:9e:41:ce:6d:6f:bc:f8:de:89:7a:
8d:18:ea:6d:a5:ea:ae:ba:ed:49:bd:a7:d9:38:f7:
f7:94:40:d7:4c:b5:cf:5e:4a:e2:cd:11:71:b4:dd:
7d:26:fb:7a:3f:48:a6:2f:09:92:cf:a2:6f:c9:80:
b3:af:9c:9e:93:e7:00:f0:25:11:78:3f:38:9b:51:
04:9c:a3:a1:8d:44:53:ed:2b:fc:ea:f0:72:21:f1:
7e:46:85:9c:fe:07:30:40:9e:30:c2:a6:c0:5f:43:
d6:c8:50:cb:54:07:43:23:08:f2:ee:38:28:d1:15:
8a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FE:78:1B:22:6F:92:BB:60:F5:27:BB:4C:96:5B:C7:CC:F1:45:07
X509v3 Authority Key Identifier:
keyid:88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:a8:f3:9c:9d:bf:95:31:1d:ac:29:ae:6b:73:8f:ec:ec:f3:
1f:d8:65:59:e0:73:b4:a7:5f:e9:cf:67:ce:a9:f6:d2:95:e4:
e1:c9:74:68:3a:d8:55:e5:21:9e:02:9c:8d:44:b2:f2:3b:4f:
40:06:ad:bb:cd:0d:00:c3:68:67:41:ed:c4:32:2f:e6:58:79:
6d:e6:b7:66:7e:18:c1:fc:a7:f8:7d:94:8e:c9:58:41:a8:46:
27:20:b1:c9:5f:29:bf:b4:8e:9e:fc:84:26:55:8f:ae:3b:ce:
72:77:3c:77:80:50:8b:42:73:33:71:81:bf:3b:e9:b0:c0:1a:
7a:eb:d6:b4:ba:d0:81:ce:91:9b:28:7e:d8:ea:5c:5a:78:ff:
d8:5c:87:32:5d:f9:e4:96:94:02:90:18:b5:f4:47:e5:9e:ce:
37:8e:f1:48:20:2b:00:b1:82:43:06:74:5c:b3:4f:e6:95:10:
1b:23:5e:9e:34:ff:c6:6b:e8:71:77:7c:4e:81:b5:09:ac:0d:
f7:e5:a2:76:b7:40:34:f2:38:a4:d2:71:e8:5d:a0:7b:a2:45:
03:c3:c1:b0:da:44:25:3f:5d:9d:c7:1b:1e:a3:5a:d7:08:f6:
41:f8:ac:b0:07:f3:e8:88:54:3d:ea:54:7d:d5:11:ca:87:79:
78:ad:ac:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 19:36:49 2025 by rpki-client