Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: AYrv8Ftsy1TKt1dvu+nnAYVPM+MU4PbRc4yTzetF5FA=
Subject key identifier: E8:FD:05:F1:DC:D8:42:86:CF:F2:54:A6:74:9F:E5:8C:F5:14:82:98
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 01969F08316C897113690AE2D67B215FDE0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 0F77
Signing time: Mon 05 May 2025 06:00:36 +0000
Manifest this update: Mon 05 May 2025 06:00:36 +0000
Manifest next update: Tue 06 May 2025 06:00:36 +0000
Files and hashes: 1: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: UKC7W9WLgyQkPr+mo94LHG+g2B6Yi3BdxrZFpbo8Vrk=)
2: SyALsZDSYtge1NmYRoKzwbP5Vv8.roa (hash: rjh76rxbo7HoAknp3g/P2hhQiBIAvMqHmifN8tVtg/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 06:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:08:31:6c:89:71:13:69:0a:e2:d6:7b:21:5f:de:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: May 5 06:00:36 2025 GMT
Not After : May 6 06:00:36 2025 GMT
Subject: CN=e8fd05f1dcd84286cff254a6749fe58cf5148298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a3:81:a0:f5:0f:94:b5:1f:02:6f:74:e0:af:
31:e9:ac:31:cf:12:69:1e:99:80:7c:94:91:ce:77:
9c:a9:0b:24:b2:a6:8c:67:f0:ea:6a:0c:c2:2d:f9:
28:df:8f:47:bd:dc:93:1f:56:62:f5:95:38:5e:58:
8c:8a:93:0f:e7:f9:a2:7a:6d:bf:27:63:04:f2:3f:
2e:17:0c:46:af:0c:7b:8a:65:3c:98:e1:b2:21:28:
b8:d1:34:25:3a:09:8d:8f:f3:c0:60:05:f7:13:bd:
ef:75:c0:bb:95:37:e1:eb:07:a2:4c:05:02:01:2b:
b9:68:9c:90:40:02:e1:62:04:50:5b:08:90:01:07:
d6:13:3b:42:15:7d:c2:f9:ac:ab:c0:76:e2:89:a0:
11:7d:c4:43:5b:0a:9e:83:3c:80:9d:f8:cb:c1:a5:
1c:c1:5c:c2:d4:76:d0:01:a6:13:ed:87:ad:92:55:
5f:98:c9:40:e0:01:9f:ae:e4:65:9d:32:4a:80:04:
9e:8f:58:71:72:0f:38:6e:27:fa:75:49:23:cd:ef:
e0:a6:57:7e:1f:1b:46:ef:6c:48:ae:d1:5e:a4:1b:
d3:be:56:5b:ff:8e:99:66:ff:25:1e:7f:40:b6:61:
34:07:05:32:b7:ba:ec:e6:31:f4:83:c9:59:89:f1:
b8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:FD:05:F1:DC:D8:42:86:CF:F2:54:A6:74:9F:E5:8C:F5:14:82:98
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:a8:61:1c:4d:29:0b:d6:35:ad:ef:9e:0a:8c:67:7d:37:55:
88:80:a5:43:1d:f1:08:f0:41:d6:81:69:d6:6e:e5:48:a7:1c:
7c:38:07:9b:5d:7a:85:0c:86:7b:3e:df:46:de:27:ad:c7:f6:
1b:53:b5:cc:5e:78:7a:13:24:51:e6:65:ba:11:34:7b:d4:17:
16:b2:3d:7e:b9:96:b3:a3:f0:a7:9b:a9:85:72:6a:00:a0:56:
e4:66:ce:c7:ee:57:b3:6a:73:cc:d2:75:d7:ea:e1:5d:8f:f1:
26:e8:57:0a:05:cf:14:2e:0c:b1:24:6e:d6:ae:2e:9f:c2:0d:
c9:e9:fd:31:9f:a4:5c:04:83:9d:e6:1b:40:0e:55:6e:8b:a0:
5d:d7:6e:aa:99:05:ad:e5:8a:aa:76:fc:53:cd:b4:f5:5c:41:
1d:f5:74:a2:ed:2e:81:b9:fc:75:72:ff:9a:0f:1f:b8:a6:11:
fc:e7:69:3d:99:05:09:2a:b9:4b:6a:87:c0:12:75:bb:e6:7f:
22:ec:13:6a:8b:d1:b4:a1:f3:38:63:1f:a3:3a:35:fd:30:90:
23:6e:66:cb:8a:a5:01:f1:2f:78:34:cc:ad:ad:a8:47:1e:e0:
0e:f5:bb:d9:8b:1b:18:b6:53:38:ea:66:a9:4a:49:56:80:db:
e6:39:03:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 16:15:50 2025 by rpki-client