Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: xE+MwvMWo9Wl7k9l4YBApxheUX/j/VREA91603QQoeQ=
Subject key identifier: 2F:15:B1:F5:40:F3:15:A1:9A:55:1C:CD:2E:CA:A3:39:49:87:FE:0E
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 0196ACC3CD74CB555F2820B18810E348BB8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0DEF
Signing time: Wed 07 May 2025 22:00:35 +0000
Manifest this update: Wed 07 May 2025 22:00:35 +0000
Manifest next update: Thu 08 May 2025 22:00:35 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: dLvpQV2MsfSmfD4bIzjGAkjWhtS2WV2sZF6A4m5bbXc=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:c3:cd:74:cb:55:5f:28:20:b1:88:10:e3:48:bb:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: May 7 22:00:35 2025 GMT
Not After : May 8 22:00:35 2025 GMT
Subject: CN=2f15b1f540f315a19a551ccd2ecaa3394987fe0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:62:59:a2:b9:28:a1:f2:e1:6a:4a:61:22:9e:
c7:03:47:33:a1:75:7e:17:dc:d8:e3:58:9b:d1:c5:
7f:53:5f:95:df:68:f8:93:47:d6:9c:8a:13:f2:b0:
2c:cc:25:45:4b:63:db:8d:09:15:e1:b5:75:7f:6e:
3e:a9:ae:c7:10:29:d3:a6:2a:f4:ee:b5:2f:cc:a3:
49:73:65:89:98:69:05:c0:9a:3a:81:91:c3:c0:a6:
77:39:e5:d3:95:5e:b9:4e:c9:8f:49:b1:65:af:e1:
b4:8e:45:db:6e:54:75:af:eb:12:be:45:23:0d:ec:
2c:43:b6:94:7d:6a:49:a9:53:4f:e2:cc:3d:53:85:
89:57:07:79:fe:b8:84:15:6b:5b:45:f9:48:fb:a2:
95:e5:59:f0:bc:13:26:5c:a3:7d:6f:90:b0:9b:aa:
1e:a9:f7:47:a6:ef:e0:f7:70:fd:3a:00:2d:bf:a3:
6b:84:c5:7f:76:fd:b6:56:20:7d:43:f7:b6:68:3a:
af:53:68:d8:b5:43:d1:69:4c:a3:72:da:73:bb:4f:
1f:cf:07:22:5d:4b:58:6d:a0:13:54:6c:90:79:85:
2d:f5:53:a6:c8:f4:8b:b1:f4:1a:0d:96:ad:a9:aa:
99:8c:e1:eb:3f:b8:9d:a8:be:6a:74:89:f5:b1:1a:
44:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:15:B1:F5:40:F3:15:A1:9A:55:1C:CD:2E:CA:A3:39:49:87:FE:0E
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:7b:82:23:6d:27:da:95:60:47:a4:03:b1:0d:47:26:e8:31:
a7:af:96:6c:73:0e:34:a0:19:6e:1b:23:9b:3d:90:94:c3:6e:
12:a4:62:52:57:df:2c:59:df:c8:22:75:ef:58:60:ca:d1:d7:
7f:e0:fe:0d:22:1c:60:be:b9:58:9f:f9:64:c6:be:bf:6e:c9:
ec:97:bb:a6:cc:d3:e4:a6:93:ac:50:f3:43:7c:23:98:d0:02:
75:63:54:0b:e2:e5:0e:16:3b:4e:3b:7b:67:79:05:cc:d5:30:
54:98:33:35:f3:d3:5e:a2:b5:c6:e5:6e:9f:8d:9b:d9:11:7d:
db:c4:25:1e:7c:cc:1f:d0:64:a4:d1:58:4b:0d:3e:c4:64:36:
30:be:8a:07:c4:03:39:04:78:ae:30:4c:56:16:83:ae:69:fa:
c3:1b:dc:47:9e:a4:55:0a:93:fe:a5:a1:03:9d:86:1c:91:22:
6b:f9:45:58:c2:52:cd:bb:93:6a:0d:2f:d6:55:c9:af:8c:ed:
08:26:81:bf:5c:f0:71:06:d0:29:b2:94:be:03:0a:ab:cf:4b:
c9:f4:16:9d:3b:49:cb:d4:14:40:e6:4b:c2:f6:f3:b1:ad:a8:
95:93:b9:8a:1c:1c:6e:3e:c1:61:fc:b9:9d:ad:e8:95:cd:da:
34:a9:fb:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 04:59:42 2025 by rpki-client