Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
File: OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json)
Hash identifier: Fry7Ij7+vFt+lPPWx/WWFylRtCl6yJh12PyFFbvL6gk=
Subject key identifier: 8C:F3:5B:77:11:7B:EC:0E:06:E8:53:D5:1E:DC:DF:CD:8B:70:A9:91
Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
Certificate issuer: /CN=3a611bc291ff1de02256f2315345680603fa4edb
Certificate serial: 0196C2DD61BA0B17B1356F7890ECB6BC41FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
Manifest number: 03FC
Signing time: Mon 12 May 2025 05:00:10 +0000
Manifest this update: Mon 12 May 2025 05:00:10 +0000
Manifest next update: Tue 13 May 2025 05:00:10 +0000
Files and hashes: 1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: sKLRhGB9IxGsIgpIk2uzKsriujLVaBlV46M121GHMIY=)
2: WMqMrN8GSXOfRqdUfWDSfGSeNoY.roa (hash: +HUvEm/zmLGsWH85M7k1xXVdXwdEmqkh5XDlJHFGu2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:dd:61:ba:0b:17:b1:35:6f:78:90:ec:b6:bc:41:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb
Validity
Not Before: May 12 05:00:10 2025 GMT
Not After : May 13 05:00:10 2025 GMT
Subject: CN=8cf35b77117bec0e06e853d51edcdfcd8b70a991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1a:22:1b:cd:b6:87:44:dc:55:60:f7:91:4e:
17:56:ba:93:e2:eb:7a:74:81:7b:72:a1:59:2e:19:
eb:95:3d:eb:2b:84:aa:92:f3:b8:b3:07:71:8f:61:
74:56:c7:1a:e2:46:80:e1:b9:99:39:70:02:db:ae:
60:a5:a4:51:bd:ac:a1:14:d7:43:18:5b:f1:c1:2a:
f7:74:74:17:fd:48:97:e7:19:95:c7:b0:84:2e:eb:
bc:dd:c6:1f:27:8b:11:e2:e8:42:c6:de:b9:dd:7c:
6f:a3:ab:81:12:a2:9c:32:e3:ed:c3:80:99:f9:49:
d0:9c:38:28:2d:9c:d4:0b:1a:3f:28:dc:fe:22:3a:
cc:49:b6:f5:0d:d0:c2:a5:cb:71:da:0e:03:b8:b2:
36:32:c8:9a:a8:a6:e8:eb:35:5b:dc:6e:0b:5b:69:
ca:93:6e:d0:b3:a8:3c:2a:eb:6c:12:c7:1f:df:c9:
c7:90:f6:0d:dc:65:9e:05:cb:24:a0:fb:ce:a2:c0:
47:8b:1a:8e:a9:8c:ba:dd:28:f3:71:ae:39:8e:ff:
cd:63:b4:34:f2:1a:59:7b:86:79:b9:0f:93:b0:5f:
5e:96:63:8c:f1:99:fd:c1:68:f7:f7:82:97:54:3e:
b3:31:66:b6:7b:ba:0a:c0:ae:02:d8:84:a9:80:b7:
ec:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F3:5B:77:11:7B:EC:0E:06:E8:53:D5:1E:DC:DF:CD:8B:70:A9:91
X509v3 Authority Key Identifier:
keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:9d:c6:93:a8:a7:f1:34:0a:d5:bd:ca:88:6b:65:36:98:b7:
3a:b8:df:c0:7d:32:26:d9:d3:38:06:76:b4:9c:80:ae:8c:d9:
6a:44:93:0b:d3:7a:b4:c4:9c:45:8f:d7:3d:07:4a:52:cb:a2:
2f:78:80:ab:c6:0f:21:87:ea:96:46:53:ff:5c:3e:d1:41:cc:
2f:8b:d7:f6:92:96:80:c4:04:d6:5a:15:52:3c:54:4a:35:a0:
a3:ed:69:70:d8:46:e4:83:be:7a:28:f5:40:f5:a4:f5:39:c3:
10:82:dd:40:1b:61:53:0a:e0:e4:d2:9f:e0:02:fa:dc:42:ce:
b1:2c:e9:53:8b:63:5c:6a:f7:a1:ce:f4:1a:2d:85:57:93:f4:
f9:2f:c4:f6:44:b8:02:26:ef:b8:3a:8d:84:7e:f6:01:f2:41:
c5:b2:f9:36:39:a4:a9:14:dd:6c:04:5e:5f:f0:76:61:03:06:
6e:9f:a8:cb:0a:1b:b6:10:1f:9e:d6:d9:65:9b:88:27:cb:29:
96:9b:3c:a8:ba:40:e0:a2:82:a6:3d:1f:2f:ee:56:0a:61:c1:
c1:61:56:7f:0b:ab:10:f2:c0:d1:13:4f:e4:07:47:ac:b9:ca:
60:b9:2e:0d:ad:ff:6a:38:69:10:2d:5c:f4:76:c1:ad:d0:88:
64:6e:76:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:02:40 2025 by rpki-client