Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: OcvPo0IGuZlPEkSXGE9Bix3V8M1/Y+PVm1q7rfEMvGo=
Subject key identifier: 26:23:AC:BA:CA:4D:AE:88:29:D3:05:60:A4:40:29:CB:93:39:B9:D9
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 0196846CEE91A38A0FB779D0EDA9AE472D05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 1268
Signing time: Wed 30 Apr 2025 02:00:53 +0000
Manifest this update: Wed 30 Apr 2025 02:00:53 +0000
Manifest next update: Thu 01 May 2025 02:00:53 +0000
Files and hashes: 1: CHrue45DLIyJD4ONNTGJ0TL9VsA.roa (hash: u/OfuNsymZa5oGvy4EyVltbtk9eDJK5E1jdXxm1UcXE=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: xb9tI/Il91LulY3XVKDTbGGBJ65SJGs4AQEHSP5RsFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:6c:ee:91:a3:8a:0f:b7:79:d0:ed:a9:ae:47:2d:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: Apr 30 02:00:53 2025 GMT
Not After : May 1 02:00:53 2025 GMT
Subject: CN=2623acbaca4dae8829d30560a44029cb9339b9d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:59:53:a9:86:81:a6:86:f7:f5:c7:ce:c1:59:
42:1f:c1:11:4e:d7:62:f7:ef:d7:a9:90:25:fe:46:
2e:12:51:28:53:f6:fe:6b:52:bc:ae:93:04:50:9f:
4c:01:13:80:1f:b4:b5:9a:d7:bc:67:76:0d:b7:4d:
d8:1c:05:19:b4:da:51:1c:fc:64:c4:50:0d:33:32:
8e:4e:4e:72:a3:3b:f9:f6:bd:da:76:ed:25:37:7b:
a6:7f:c5:0b:d3:76:14:4c:2f:bb:d9:92:f3:cd:aa:
4b:58:64:20:df:ff:f9:ca:22:26:ef:ae:b8:10:10:
9d:4c:1d:73:6b:58:f8:a5:7d:df:d7:47:c6:1d:d2:
4d:8f:9e:a0:b3:19:ff:82:26:c5:75:0e:31:16:61:
2b:a3:66:39:bf:79:c0:d4:55:ea:18:34:a1:eb:9f:
25:aa:fc:48:20:1f:03:30:04:db:91:26:1e:39:b3:
a9:b5:78:9f:1b:54:c1:3e:70:7d:49:19:55:55:e2:
64:65:12:59:83:49:ff:93:2b:a0:ff:4d:a6:4e:2b:
54:ea:fe:51:8d:72:c5:6e:f5:83:87:c6:09:5e:d0:
d8:8c:ac:33:86:f1:43:1e:1f:fa:31:11:70:d4:f2:
fe:52:16:8d:8e:75:24:3a:bd:66:b6:55:54:87:cc:
06:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:23:AC:BA:CA:4D:AE:88:29:D3:05:60:A4:40:29:CB:93:39:B9:D9
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:af:9d:38:17:9d:5f:ed:fd:39:c2:73:0c:db:d5:9f:c3:17:
eb:c5:ef:88:59:8a:d8:4d:08:5b:7f:b9:b2:08:b1:bc:b3:89:
74:53:28:88:09:ea:97:c8:65:38:f1:59:7b:aa:9a:b7:99:21:
81:8a:7e:31:fb:da:50:dd:65:94:fa:9f:6e:fb:35:ba:3b:9d:
f6:63:44:39:62:df:84:69:f9:de:58:7d:1d:65:de:69:59:d6:
9c:74:30:99:87:48:7c:7b:b0:dd:dd:05:ce:7e:ac:21:50:41:
21:11:57:65:a0:0d:d8:5c:ce:65:6e:e0:c4:d6:b8:ab:f9:bc:
17:05:c7:a9:16:e8:1b:0c:28:3f:4d:68:87:4c:fa:38:9f:6c:
67:01:6c:9d:83:1a:c5:24:6e:f3:6f:58:71:9e:cf:44:20:f0:
73:4b:bf:2d:79:82:22:c8:d2:bf:16:55:39:22:fc:27:c6:f9:
fd:54:14:07:f2:50:76:21:28:24:94:0a:50:18:f7:90:af:4b:
6d:0e:54:84:ca:5b:94:ce:51:8d:23:ec:8b:89:11:3c:a2:75:
53:cf:70:bf:23:c5:23:7b:65:74:e8:e6:65:01:7f:68:64:be:
5e:c0:aa:6b:d5:29:3d:7b:01:d7:af:f4:61:1c:42:0b:f3:a8:
b9:53:85:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:44:35 2025 by rpki-client