Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: bmDS9AzVnpPq0LqzRWd4MqKB1hfQhVPoPFrt7oYzxo4=
Subject key identifier: B7:36:1A:C5:E3:4A:9E:A8:E8:AC:98:A7:7F:23:33:60:1A:1E:1D:94
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 0196BD127C28D721A565E324EE10CB94C22F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 09C3
Signing time: Sun 11 May 2025 02:00:27 +0000
Manifest this update: Sun 11 May 2025 02:00:27 +0000
Manifest next update: Mon 12 May 2025 02:00:27 +0000
Files and hashes: 1: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: YDIf7p2C3MMv5Q30UBDoit8XtSUe4SfUIHq+q/MBCWU=)
2: iKF-Q9PfXOLXW4CJahZRW_VogkE.roa (hash: +qqtPKI3qMehNAw49JzdFyEOoExudNvSKeInlgLAy1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:12:7c:28:d7:21:a5:65:e3:24:ee:10:cb:94:c2:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: May 11 02:00:27 2025 GMT
Not After : May 12 02:00:27 2025 GMT
Subject: CN=b7361ac5e34a9ea8e8ac98a77f2333601a1e1d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1c:99:92:57:57:13:d0:d1:3f:58:16:8a:f0:
52:e3:ee:e6:d5:41:37:ea:57:bb:99:62:f4:57:d8:
b8:76:f6:79:1d:10:a9:ee:b1:7a:02:27:74:55:a9:
6a:0a:05:ff:be:ee:c5:22:e7:1d:0a:03:92:66:ce:
1c:44:81:c6:9c:b0:d3:61:55:a1:0a:e5:72:af:ef:
b2:42:84:94:7f:c2:5e:d0:a3:e0:d2:20:6e:05:d2:
d3:41:9f:bc:53:23:47:6d:77:9e:9c:58:1d:ae:37:
8a:74:a1:5e:a4:ea:02:94:66:79:31:8b:38:ec:00:
f6:15:aa:08:d1:99:c9:d2:52:97:e4:02:cb:7a:22:
81:13:e4:78:25:36:bf:a6:57:bf:36:fd:1e:82:6e:
24:6e:55:3a:48:ab:06:cf:08:0f:a4:98:23:ec:0a:
b0:34:aa:50:6f:03:11:5a:c2:36:80:29:50:a3:06:
11:88:01:bf:33:1f:ff:56:c0:0f:64:52:bd:00:0c:
74:94:ff:e3:1a:3a:2b:c6:62:2d:b8:db:12:14:c4:
88:df:02:1c:cf:96:7e:b3:ee:3b:20:74:85:0b:f4:
46:03:eb:f3:83:90:b9:73:bf:3c:f8:93:6c:38:5b:
26:88:31:c4:af:04:65:53:02:30:03:76:11:85:d1:
5d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:36:1A:C5:E3:4A:9E:A8:E8:AC:98:A7:7F:23:33:60:1A:1E:1D:94
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:20:de:d9:74:63:59:6f:f7:ba:18:b6:06:73:15:ac:ec:1b:
c8:61:3e:99:48:d9:2a:eb:d6:9f:4b:de:d1:05:a9:77:28:54:
94:e6:43:71:cf:b4:c6:5f:39:da:69:d7:04:ee:d6:f3:95:08:
aa:f2:a9:c7:3f:3d:45:a0:7c:56:8b:46:94:cd:19:af:fd:a1:
27:70:55:7d:69:41:b9:26:8b:a4:03:7a:a2:d6:1f:30:19:3b:
4b:4e:93:65:fa:0f:2c:7c:a6:ff:9c:0d:18:9a:d5:e9:f9:64:
6e:ef:e9:c9:7f:82:e4:79:2a:53:de:59:ce:8a:34:7a:40:79:
0d:a3:14:c6:2a:5c:d5:cc:62:04:e2:b9:18:3f:59:73:38:8b:
c5:22:80:1d:05:61:c9:9a:39:2b:e8:a2:99:38:cf:fd:1f:dd:
38:e9:84:6f:1c:e1:03:bc:ef:98:ff:06:f0:e6:97:1f:12:d0:
a8:e0:06:c9:c4:b9:e4:c8:ab:26:ef:66:41:60:16:b3:7d:8b:
6f:2e:f5:66:28:f2:a9:bc:83:0b:c8:69:84:1e:47:05:19:26:
cc:ca:8e:ab:c5:e2:bd:7a:fa:c1:20:24:90:7f:f9:6b:d6:2c:
b1:5a:2c:bc:4c:e1:eb:c7:81:5a:c9:4d:33:10:39:74:a6:b5:
cb:5c:2b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 04:12:09 2025 by rpki-client