Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: 7nszmdATOdz9tKzYiN35VEgEsZ1zDkZ2xIpsKsD03rQ=
Subject key identifier: A6:F2:3F:17:B6:59:2B:3E:5D:04:37:FE:85:BA:01:A6:64:95:01:BC
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 0196BD127CA87CBD02E8254961B813CC4178
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 39
Signing time: Sun 11 May 2025 02:00:27 +0000
Manifest this update: Sun 11 May 2025 02:00:27 +0000
Manifest next update: Mon 12 May 2025 02:00:27 +0000
Files and hashes: 1: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: U5zcHgU9dRXXDUr2q+hnzE7fcGsOdJr42AN2h3KXLp8=)
2: cvTvlJFXIrx4LNBKFN32BnQowu0.roa (hash: 2SQfqAvlePWceYDa/Gr4IqsSS7uQeMq3g8yyqM6DnK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:12:7c:a8:7c:bd:02:e8:25:49:61:b8:13:cc:41:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: May 11 02:00:27 2025 GMT
Not After : May 12 02:00:27 2025 GMT
Subject: CN=a6f23f17b6592b3e5d0437fe85ba01a6649501bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b7:60:af:e4:f6:16:1a:01:4b:c0:3d:90:93:
9b:06:03:c5:0e:e6:59:ea:c9:22:2f:2f:45:28:3a:
bb:1f:84:20:88:de:44:b3:08:56:4a:bb:3c:68:96:
a3:fb:24:79:fe:ef:1e:cf:a5:c9:c7:08:b7:f7:f2:
6b:9e:34:d2:6b:27:ef:a7:43:43:56:a7:a8:c5:1a:
15:1e:49:ed:e3:01:4d:72:a3:05:e6:c8:25:28:d6:
5a:82:0d:9d:11:e0:4b:80:42:82:05:37:08:c7:9c:
2a:8c:9e:80:f6:cb:72:81:b6:68:c8:91:ab:74:16:
2e:63:d9:1a:97:c0:27:46:61:36:e5:45:28:5c:29:
2f:27:5f:a4:80:3b:48:65:6d:ae:9c:42:45:fa:6f:
7d:80:82:d3:a9:32:b3:b5:7d:5e:d8:09:78:52:6e:
cf:b7:9a:23:90:1a:a7:4b:30:05:f6:95:d1:66:7d:
03:51:3b:f3:5f:a3:cc:ec:97:d7:1d:73:b6:12:62:
95:04:ca:03:68:72:a6:74:f5:34:f6:38:1c:ac:06:
fb:01:0e:07:21:a5:b0:22:ba:90:d6:fc:dd:6c:11:
bd:1e:97:7f:af:75:03:7b:58:b9:70:2a:8c:0c:89:
64:2c:f2:66:60:c7:1b:a2:db:c7:9c:8a:0d:63:8c:
38:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F2:3F:17:B6:59:2B:3E:5D:04:37:FE:85:BA:01:A6:64:95:01:BC
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:d8:a2:8a:e7:72:8c:db:28:2f:e2:f5:6b:f2:f0:db:b4:bc:
79:de:bb:78:23:4f:1f:14:6b:8c:d8:78:d9:7a:46:88:f0:91:
39:f5:a4:1c:57:cf:51:13:c8:78:04:4b:f9:d8:98:1e:30:97:
d5:20:a2:7f:7e:7f:cd:43:fb:9b:93:9a:86:b4:af:bc:81:2b:
ec:e1:0a:5b:1e:5e:59:0d:60:b6:06:9c:51:89:13:51:82:0d:
b3:f9:40:50:ce:f4:c9:26:70:69:63:88:8b:c9:5a:d1:46:cb:
59:c5:d6:fa:00:c5:3f:a8:aa:a1:f8:b0:96:12:59:2b:ce:07:
da:00:41:22:c3:aa:cd:0f:94:2f:c9:87:2b:71:4b:52:1b:97:
a4:70:c2:0e:9d:f1:a8:a3:d3:e3:2f:4e:01:32:27:6c:31:b9:
ec:a6:f7:e7:5b:8f:9d:5f:c7:02:a0:9b:b4:da:9c:c9:13:97:
87:57:80:e3:b5:a1:fb:f2:55:5b:b5:3b:09:69:26:6b:3d:bb:
e0:82:c7:cf:0b:cd:f9:27:ff:af:fe:8d:e3:0e:fe:bd:d4:e0:
78:65:58:5e:0f:7b:d0:66:f3:aa:18:19:30:a1:6b:1b:79:7a:
10:60:ba:0a:d8:3b:8c:cd:36:38:f6:50:e4:8f:3f:76:79:0c:
c2:51:36:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 08:13:11 2025 by rpki-client