Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: iyEetQ9hf82F83U04Cq3TQid5mSg/xClYxp8rsjgOwo=
Subject key identifier: 0E:B8:C7:F0:62:7B:DE:EA:A9:EC:EF:82:43:AD:4B:25:08:B6:36:F1
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 0196CBE13C573FCB1967E76683E7C20415FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 153F
Signing time: Tue 13 May 2025 23:00:58 +0000
Manifest this update: Tue 13 May 2025 23:00:58 +0000
Manifest next update: Wed 14 May 2025 23:00:58 +0000
Files and hashes: 1: DyAD9klcag15NhnplKEMXi8dKqg.roa (hash: Zvr5j/JLyl2kQb4eL63NQCTsndBLbuYPjEiWULmfej8=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: zQc0Dpw8bmRJiF69hriUSm1k9BR+uXHT1F9RCOlw7kY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:e1:3c:57:3f:cb:19:67:e7:66:83:e7:c2:04:15:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: May 13 23:00:58 2025 GMT
Not After : May 14 23:00:58 2025 GMT
Subject: CN=0eb8c7f0627bdeeaa9ecef8243ad4b2508b636f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:51:ad:08:67:41:8a:06:c4:66:97:1c:4c:b1:
65:23:b6:ec:54:1d:8f:72:8d:c6:1e:dd:52:83:f7:
58:f0:a2:fb:6a:63:7c:7b:bd:d3:83:17:21:a0:d9:
1c:6a:31:0e:e6:8a:0b:64:82:9a:d9:66:34:86:9a:
90:45:5b:b7:1d:23:cb:ab:f5:5d:65:9a:94:75:e7:
ae:8e:37:7f:11:f4:de:ac:d9:2a:4e:3e:41:0d:6b:
a2:9c:a3:f1:29:32:2f:6e:5e:c1:3f:ad:52:4e:33:
9d:f6:57:5f:27:2e:c0:73:6e:71:a8:ee:bf:ec:6d:
ec:7c:7b:53:93:98:8a:ab:a5:44:ee:59:3e:63:b2:
e2:f0:18:70:a5:cb:e0:13:3a:5d:04:3c:b2:43:9c:
85:0c:ca:49:41:7b:54:f6:c3:8b:8f:60:c1:04:53:
d2:63:3f:c5:78:fd:69:f0:be:9e:a4:ea:20:2b:7b:
74:83:28:b9:93:6e:1c:79:40:71:9f:fb:04:b3:a3:
f8:d2:f4:8f:ff:98:d0:bd:da:6d:74:cd:61:94:fd:
39:e3:1a:a6:6a:04:18:b2:52:ad:3c:47:07:6c:7e:
f3:cd:06:ee:af:30:b5:6a:77:37:ed:4f:3f:64:0e:
c4:94:09:83:85:cd:62:80:ff:c8:b0:3a:90:fc:c9:
cc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B8:C7:F0:62:7B:DE:EA:A9:EC:EF:82:43:AD:4B:25:08:B6:36:F1
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:93:73:12:22:9a:7a:c3:07:07:c5:09:b4:92:07:8f:49:cf:
d5:49:59:e8:27:89:e5:73:dd:c2:b7:28:d3:c4:75:a0:25:99:
80:76:24:77:c2:29:fe:9f:bd:98:ef:60:6f:f4:75:b6:62:56:
59:44:a4:0a:dc:dd:b2:53:5e:ed:80:2f:ee:d8:94:a1:17:f0:
bf:42:4b:5a:9d:95:de:02:c3:64:3a:99:ae:5e:5f:d0:29:ba:
f9:80:89:19:21:a1:96:5e:95:f9:d2:9c:d9:fd:61:43:ad:bd:
99:a0:54:d2:a7:a8:e5:75:57:77:58:b6:69:8a:a7:4a:62:e0:
c5:9c:b9:62:22:66:d1:18:01:cd:79:d4:76:18:21:9b:bd:59:
a0:af:e7:ba:4f:60:59:6e:08:ba:ff:47:10:74:52:76:b5:a1:
46:05:85:58:66:82:71:3f:b2:43:d5:4b:57:e4:ff:6a:21:f8:
27:d0:05:92:58:23:62:91:f3:70:05:63:7f:90:33:b3:10:b1:
b6:48:df:38:50:a3:17:57:aa:40:fa:e6:aa:30:4c:b1:d2:ea:
a9:71:0b:5c:25:ae:64:24:f9:58:30:6a:2b:11:66:f5:66:cb:
30:1b:33:a4:79:11:72:c7:4c:a3:63:f6:5b:88:ab:14:06:00:
ac:fd:1a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 06:18:14 2025 by rpki-client