Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
File: O849R0p3XOR3Y3FjK8GWyh9Owjs.mft (raw, json)
Hash identifier: 2fRug5R7vxKaFoTVpNFQBzq2xhtD0jhZYJdlaNK+JB0=
Subject key identifier: EE:C8:A9:DE:C3:DE:32:E9:E6:99:1B:8E:02:D5:0E:B8:A0:AD:D2:30
Authority key identifier: 3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
Certificate issuer: /CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Certificate serial: 0196D219954D0BD085972A37F1C3D05E7B58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
Manifest number: 01D9
Signing time: Thu 15 May 2025 04:00:13 +0000
Manifest this update: Thu 15 May 2025 04:00:13 +0000
Manifest next update: Fri 16 May 2025 04:00:13 +0000
Files and hashes: 1: O849R0p3XOR3Y3FjK8GWyh9Owjs.crl (hash: CgrLWeAhmM6ACTncmt0qyiz0uARp/4BDSugNzITbqt0=)
2: aqZglDYGnEsB53FUZu6hOgHFRNI.roa (hash: PiTo1HXxs70zjyTF54PbMNKhREuF1Fd5QySzyhgibes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:19:95:4d:0b:d0:85:97:2a:37:f1:c3:d0:5e:7b:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Validity
Not Before: May 15 04:00:13 2025 GMT
Not After : May 16 04:00:13 2025 GMT
Subject: CN=eec8a9dec3de32e9e6991b8e02d50eb8a0add230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:f5:ee:67:78:fb:af:aa:30:b1:48:8c:c6:98:
f2:33:17:aa:63:67:23:97:be:33:e0:b3:8e:e2:15:
2d:9f:25:a3:b8:8d:89:46:ff:0c:73:18:4b:5e:59:
9e:8c:0d:df:2a:ee:13:5b:05:81:7c:94:06:48:40:
e7:81:23:d9:d9:58:e1:d1:37:ca:b1:b2:9f:b5:a1:
56:ba:c2:e3:25:09:dd:55:bc:7a:71:ef:1e:ab:db:
b2:fd:51:fc:d9:e4:b7:bb:02:7a:5f:7a:2c:ed:42:
9d:a8:a7:ad:8c:9c:68:7c:3c:ce:fb:df:68:71:81:
ad:60:f9:73:b8:99:73:f1:2e:81:b6:8c:d7:87:0c:
92:e0:3e:41:31:b3:1f:c0:f4:8e:25:bf:3c:55:10:
7e:f3:13:14:26:1f:6e:d1:ea:ed:7b:ad:8a:56:6f:
b5:51:d4:37:c2:a3:49:6f:d3:f3:c5:16:44:d3:b4:
c4:51:a5:3b:73:ea:45:b9:e5:7f:0d:25:7c:c1:c8:
17:4b:ae:c2:1b:02:92:c1:8d:60:c5:24:2d:cb:8d:
74:13:ef:85:12:a8:b1:7e:ef:df:b9:ca:eb:56:e0:
55:06:83:18:46:d4:79:36:4c:97:c7:8c:21:ae:6a:
03:22:41:dd:b0:a2:1e:25:35:a0:a3:dc:70:07:d6:
03:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C8:A9:DE:C3:DE:32:E9:E6:99:1B:8E:02:D5:0E:B8:A0:AD:D2:30
X509v3 Authority Key Identifier:
keyid:3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:5b:4c:df:97:ad:7e:ee:8b:6d:03:5b:19:18:36:b9:bb:79:
ad:b9:dc:60:96:0d:7e:8e:2e:ff:df:73:f6:62:0f:9d:5b:77:
d8:d0:c0:b7:d2:a3:10:41:cb:36:8f:79:2f:ce:88:e4:e8:95:
5c:27:37:24:d2:43:0b:76:10:56:bb:a0:ad:06:4a:42:df:b4:
1d:45:fd:2c:35:45:90:e6:f5:b4:07:b8:f7:2f:1a:00:4d:72:
d5:2b:1b:6b:4d:b3:52:f2:4a:d3:21:96:36:80:4e:bd:f3:24:
53:78:f2:0a:1c:1f:72:92:03:1c:99:7f:a2:ab:0f:a4:25:9a:
4f:7e:3c:01:ee:34:35:0d:89:bf:35:0b:3f:1d:6f:a6:ef:68:
97:19:1a:c3:2d:e3:bf:3e:c2:d0:a1:24:50:85:1d:2c:e0:95:
8c:32:e8:db:41:03:56:08:40:43:2d:b9:27:90:0b:56:a0:aa:
df:e8:67:ec:c4:5c:8b:41:31:dc:e8:ab:7f:bd:81:a7:19:bd:
ad:2d:0e:9a:c7:b2:a5:67:08:31:87:8d:25:34:44:30:5a:bd:
b6:57:c2:7c:87:35:3b:df:4f:0f:de:11:88:77:d6:bb:b3:a2:
4a:50:e1:9d:ae:c3:07:2f:d8:c9:df:db:7e:f8:64:a2:e9:b3:
8c:c2:08:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 06:54:43 2025 by rpki-client