Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json)
Hash identifier: nf0ZmS3yNXGSdrXEDsOL40n8UQfueNvrjbCmBuRWZNs=
Subject key identifier: 92:82:7C:E6:F1:A2:7F:D4:E4:21:00:5B:93:9E:E9:15:BF:C0:24:29
Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Certificate serial: 0196B89109D0D306512765EC3B932708BCAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
Manifest number: 104E
Signing time: Sat 10 May 2025 05:00:35 +0000
Manifest this update: Sat 10 May 2025 05:00:35 +0000
Manifest next update: Sun 11 May 2025 05:00:35 +0000
Files and hashes: 1: AmLrnFBBUwarj708-brt5mXEs6c.roa (hash: rrDod4wiM6+h8On16PiqN3FEJpayPPTDmJ6oUSkO4ZE=)
2: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: ley7+zb8tMyRcYaSuSnBPYEDTyvmpvSw1EqtydeXvEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:91:09:d0:d3:06:51:27:65:ec:3b:93:27:08:bc:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Validity
Not Before: May 10 05:00:35 2025 GMT
Not After : May 11 05:00:35 2025 GMT
Subject: CN=92827ce6f1a27fd4e421005b939ee915bfc02429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:76:dd:12:64:3b:db:39:c1:73:ff:dd:f3:44:
73:81:3e:41:fe:a6:94:7b:d8:3c:40:6b:c6:73:2d:
e1:00:3c:07:be:fa:f1:6c:f0:52:b1:1a:f5:a5:60:
74:11:fd:0d:d5:39:9f:28:ca:ae:c3:94:e9:1b:7b:
f5:1a:97:b5:b3:43:76:15:b9:77:91:bf:e8:69:89:
33:32:11:34:9b:2c:1b:c7:e8:49:4b:ef:a1:e9:5b:
e6:6a:8d:05:ec:1d:fb:2a:e8:2f:6e:cb:ab:1d:40:
12:d8:44:45:55:83:95:2f:d8:2d:e2:f5:8a:41:0f:
8d:7c:54:c5:07:92:63:48:7b:33:86:b4:92:1f:1e:
00:69:86:6c:cc:64:27:bf:62:64:d1:c8:83:41:63:
4d:c4:93:13:e4:ba:90:8c:26:fe:d5:0c:32:ce:c4:
2f:df:bc:11:ca:39:ee:c3:12:64:8f:b5:f5:ee:78:
b1:3a:89:8c:16:ed:dd:b7:9d:8c:c3:43:93:e1:98:
0b:7b:9c:67:4f:d5:70:1b:90:a8:35:11:e9:d0:cf:
48:d2:66:62:65:a0:fc:9f:de:b5:c6:7f:af:55:d1:
45:b2:64:d5:47:f1:36:d3:df:2e:c5:c9:f5:b6:48:
39:e2:c2:9c:4f:82:16:30:53:c6:1a:ce:e3:3c:6c:
4f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:82:7C:E6:F1:A2:7F:D4:E4:21:00:5B:93:9E:E9:15:BF:C0:24:29
X509v3 Authority Key Identifier:
keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:cd:da:73:a3:8b:bd:48:c1:a3:ed:eb:64:c8:61:06:de:22:
0d:5c:7b:51:4b:5a:0b:cb:4c:44:a3:e1:8b:ff:81:33:1c:80:
f3:2c:ab:d7:48:58:56:9f:1f:70:ab:02:92:4d:e8:c9:80:b2:
f2:d0:d2:62:e4:ef:2a:db:f4:79:47:52:e3:30:8d:af:6d:c4:
42:75:4d:a7:28:69:10:fc:c8:21:6e:d1:7a:5b:8b:77:a2:94:
20:74:da:67:46:c7:2b:58:c9:52:e5:d2:c8:9d:38:c4:86:d4:
dd:54:e5:b2:d6:9e:c2:11:70:3a:a5:38:06:2f:59:89:0e:0f:
c9:10:1f:70:f9:da:67:a0:6a:c4:da:ae:12:06:dd:96:3d:3f:
8d:08:37:16:dc:35:a5:9d:2e:ab:52:7f:ea:8d:fa:a2:83:a5:
06:d3:1d:90:f2:25:4c:7f:2a:19:60:d9:17:b8:ba:7d:ea:6a:
d0:63:20:a4:d2:9a:35:3c:9f:70:56:d4:aa:78:f5:94:92:42:
6c:be:92:0c:f0:75:a2:e5:56:2f:6a:2c:08:fb:8a:12:f9:7b:
ba:44:2b:f6:98:f4:71:7d:a0:0b:b4:2d:80:3f:bb:17:1e:39:
b7:9a:4d:1f:1e:bb:bb:38:98:29:88:30:ae:78:2f:8b:48:01:
0a:67:5d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:32:50 2025 by rpki-client