Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json)
Hash identifier: OQLna2KNEO97ltil+BVf9XUg6jO5NrAbAnA+ZhKVgtg=
Subject key identifier: C3:88:AB:A5:61:8E:7D:BA:65:18:90:3C:06:F2:70:EA:EA:D6:AA:CD
Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Certificate serial: 0196ACC3F6C9A020465340DD4DF0BED5F302
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
Manifest number: 08D8
Signing time: Wed 07 May 2025 22:00:45 +0000
Manifest this update: Wed 07 May 2025 22:00:45 +0000
Manifest next update: Thu 08 May 2025 22:00:45 +0000
Files and hashes: 1: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: ckMTMx4j8wc1hmr2mH8AcD+o9965avB5pdmSgwpo11k=)
2: Uekfh-0K2vRcuzrLz8uBXFaOroQ.roa (hash: QN8HhWjjJPearCTxHxonyEJ2yJIbW9sXZXyp6RMDaE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:c3:f6:c9:a0:20:46:53:40:dd:4d:f0:be:d5:f3:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Validity
Not Before: May 7 22:00:45 2025 GMT
Not After : May 8 22:00:45 2025 GMT
Subject: CN=c388aba5618e7dba6518903c06f270eaead6aacd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5f:00:a8:e5:93:0a:ce:80:2a:a7:dc:4f:d0:
20:c4:bd:e9:10:2c:ef:7e:18:20:14:78:77:f7:4f:
5d:2c:10:ec:75:1b:5e:48:bc:ab:ef:0a:36:30:a6:
02:f8:95:ff:60:e8:96:7c:b5:04:65:55:00:68:52:
ee:c4:d7:74:da:39:d9:96:62:7d:88:a6:f2:fd:c3:
cb:82:ea:23:1e:4a:9e:ed:27:ce:14:13:78:6b:fc:
09:72:80:5b:f4:6b:2a:22:af:90:ec:78:56:87:c8:
56:33:b9:8c:ab:23:2c:50:69:cd:a5:bd:f1:37:c3:
12:f7:84:c7:14:17:25:c6:1a:90:ba:6f:32:a7:66:
28:fd:33:5c:61:57:94:41:69:53:59:4e:07:0c:df:
c2:8b:82:56:6e:44:03:a5:58:1a:a8:54:24:ae:60:
93:14:aa:e2:15:86:ee:47:02:74:08:b1:78:d3:35:
4b:48:40:80:07:ab:fa:95:44:8e:05:2b:f1:ad:66:
78:9d:50:31:5a:17:05:ab:65:2b:47:41:9e:d4:fb:
16:ed:30:a6:33:b2:b7:33:1f:a5:12:9d:f7:ad:0f:
1a:db:33:a1:81:22:67:29:68:68:30:b7:2b:a3:b6:
3a:9a:61:a0:b5:de:31:1e:7e:89:85:ad:5a:17:26:
5f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:88:AB:A5:61:8E:7D:BA:65:18:90:3C:06:F2:70:EA:EA:D6:AA:CD
X509v3 Authority Key Identifier:
keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:a8:5a:b3:42:02:10:05:23:7d:71:6b:20:01:51:f0:99:f2:
8a:84:85:6b:07:43:75:91:3e:63:d4:aa:3d:32:d0:ab:9c:01:
91:cc:e7:57:74:3c:fe:24:d6:83:e1:da:af:64:0c:db:2b:1a:
67:9e:6a:7e:9f:b4:eb:09:70:1b:70:07:7b:4c:fe:77:ac:94:
fa:02:dd:b0:0a:55:16:f2:09:03:19:1c:b9:82:66:56:e7:93:
a6:36:81:a6:08:c9:72:30:b0:f1:af:4c:3a:18:36:5a:13:81:
ba:34:01:a4:a7:d0:69:e5:45:c3:65:04:4a:32:1d:7e:a4:45:
8b:cc:09:fb:1b:44:74:a2:0d:9f:e0:40:3c:31:d2:4f:05:5b:
2e:d4:6f:1b:1c:0b:92:1d:1a:22:43:b5:46:10:ab:13:6b:c7:
26:9e:d8:56:ef:56:54:14:62:2b:6b:b8:87:dc:e2:77:25:f0:
45:7b:4e:af:e2:1b:cc:bf:6c:bf:94:ad:34:16:77:3a:c9:7c:
3f:63:ae:58:99:4a:85:57:7a:86:7b:d9:47:b1:46:b1:b7:5a:
4e:bf:e3:eb:c3:f1:66:ac:43:98:50:6e:c3:ac:fe:28:13:2f:
cf:3d:2f:99:b5:b4:0f:74:b2:d0:15:98:89:18:8b:a3:66:30:
83:74:c8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 07:34:46 2025 by rpki-client