Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
File: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft (raw, json)
Hash identifier: 0tRC42+wCzN4htRov/vE206W2eiqbK2XI9JEak+vqPY=
Subject key identifier: BB:CD:2D:49:0B:59:EF:FB:36:E3:C4:3D:04:6A:C9:A2:93:27:7A:F2
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 0196C0B84F54638A018D13258F816F25B9D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
Manifest number: 0A03
Signing time: Sun 11 May 2025 19:00:26 +0000
Manifest this update: Sun 11 May 2025 19:00:26 +0000
Manifest next update: Mon 12 May 2025 19:00:26 +0000
Files and hashes: 1: F3oEv0QBT7ejRZnF2aTKoyEK5cI.roa (hash: MTTLBQPL1aOScQOGtAiCwXpSCEzlrz60TWKC9wTFgO4=)
2: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl (hash: +X0WBxa2OY5ZXPrZRyz/aTn+USgNhhzuQupmugDrr7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 19:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:b8:4f:54:63:8a:01:8d:13:25:8f:81:6f:25:b9:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: May 11 19:00:26 2025 GMT
Not After : May 12 19:00:26 2025 GMT
Subject: CN=bbcd2d490b59effb36e3c43d046ac9a293277af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a7:8a:a9:68:3a:90:5f:d7:93:f6:01:a9:65:
af:f0:61:78:ee:a5:bf:42:d7:9c:b8:01:2a:45:5b:
03:fc:57:c3:4b:b6:a4:f8:46:35:84:08:39:25:d9:
9d:04:cc:56:ec:2e:dd:bc:c3:64:25:0c:e8:08:78:
44:05:6e:69:a2:d2:9d:af:9a:2e:35:f1:07:63:48:
ee:3c:bd:e1:07:0b:df:93:0c:88:37:ac:a9:5e:bd:
e3:d5:5b:32:26:8d:21:0a:35:67:65:5a:c2:d1:22:
da:34:d9:61:36:ef:fd:bd:2a:8d:96:eb:3f:51:1f:
80:ad:fd:55:cd:dd:5f:d4:c3:26:c6:18:c5:c0:e5:
e3:29:f1:07:39:e7:41:91:50:05:b7:8a:21:70:96:
01:a7:3c:39:45:51:93:a2:3e:06:9b:3e:1f:d7:97:
fc:b5:5d:d3:65:ab:92:b7:04:ae:f4:c9:3f:27:f9:
29:06:75:20:6b:12:00:78:16:fb:2c:7b:ed:fc:3c:
ff:d0:d8:d5:6c:61:62:bd:a8:5f:6e:00:89:05:02:
e8:4f:94:f0:d1:b2:3c:32:cd:d6:f0:1a:2d:d6:47:
89:34:6b:43:b9:0c:4f:f8:fc:bb:cb:63:e0:70:69:
e0:21:98:91:f4:e9:cc:d5:36:7e:cd:d6:1f:41:63:
83:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:CD:2D:49:0B:59:EF:FB:36:E3:C4:3D:04:6A:C9:A2:93:27:7A:F2
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:2b:f9:c9:e7:c2:c4:09:7d:04:08:ff:45:c3:63:b2:11:5f:
e7:10:a2:e4:9f:6b:aa:ab:41:71:1d:53:73:d9:40:09:a3:b0:
3f:0e:f3:13:21:47:99:20:f5:24:99:b3:ed:53:ed:d3:3d:33:
eb:74:11:b2:11:79:f8:c6:9e:60:9c:7d:9e:b6:99:cd:71:7b:
fb:77:9f:73:5c:fb:46:dc:ba:1b:98:72:6e:b8:05:0f:63:93:
7b:ac:f5:cb:7e:5b:d9:01:d7:02:4e:93:b5:d2:cc:51:90:70:
6b:52:e4:f1:02:cf:b9:c1:26:7a:66:fa:22:95:43:b8:22:e3:
be:13:1b:7d:4a:a9:66:58:a7:41:34:9d:c4:a3:0e:61:d8:ff:
e5:65:b6:90:e5:db:b6:3a:97:fb:d1:43:fe:72:db:c6:8f:e2:
1b:ab:44:1f:f3:26:0f:8f:37:df:a9:7c:9a:cf:1e:72:b7:44:
4b:40:61:73:ca:36:3b:bc:05:c4:78:95:f3:80:4e:22:24:5b:
5c:91:15:16:9b:92:cc:db:37:6d:b2:a0:1e:4a:37:6d:24:47:
23:7a:c1:7b:8a:92:30:4b:7c:2f:23:5f:e5:8e:6f:38:de:f3:
d4:a7:9b:48:58:d7:b2:a5:72:64:f7:9b:64:e6:c1:08:98:79:
00:af:94:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:07:00 2025 by rpki-client