Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft
File: Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft (raw, json)
Hash identifier: uAx2d5h2WzgLQX4CnKkgcmUk9XlZBgexH26ggnliAAg=
Subject key identifier: 40:68:6B:88:98:18:6F:07:D6:40:59:A7:06:DF:E7:B5:13:5B:F8:72
Authority key identifier: 3A:ED:D3:C7:27:3D:9A:B3:64:A3:14:DA:48:1E:5B:A5:1F:84:29:6F
Certificate issuer: /CN=3aedd3c7273d9ab364a314da481e5ba51f84296f
Certificate serial: 0196BD8059D9682AB28BF337F8F6CFBCFAD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft
Manifest number: 1532
Signing time: Sun 11 May 2025 04:00:27 +0000
Manifest this update: Sun 11 May 2025 04:00:27 +0000
Manifest next update: Mon 12 May 2025 04:00:27 +0000
Files and hashes: 1: KfvqJ792oMd34Pp7PugqoZjhvkw.roa (hash: S302iUZeOLpzdWoDN+iw2GhCZ0Q0jKKUkWWXOnKtMnU=)
2: Ou3Txyc9mrNkoxTaSB5bpR-EKW8.crl (hash: u+T3lVhJfT199PpSnUw2BkRVVafLIEZDNsTrlvcclTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 04:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:80:59:d9:68:2a:b2:8b:f3:37:f8:f6:cf:bc:fa:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aedd3c7273d9ab364a314da481e5ba51f84296f
Validity
Not Before: May 11 04:00:27 2025 GMT
Not After : May 12 04:00:27 2025 GMT
Subject: CN=40686b8898186f07d64059a706dfe7b5135bf872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:de:aa:17:8a:fd:a7:4d:29:73:20:de:fa:cf:
08:65:c2:b5:43:a0:67:1c:6e:38:37:00:0d:3f:8c:
83:6b:b7:ad:e2:1c:84:d9:d9:e1:96:8b:7a:fd:e8:
d6:59:7c:95:dc:eb:6f:ee:f6:58:0b:12:6c:c5:31:
79:34:ad:f6:33:0b:e9:83:c8:2e:5c:a6:b3:7c:75:
74:b4:76:cb:ba:51:c5:1c:55:b6:c2:61:41:fe:2a:
ef:65:92:6c:99:59:52:3e:5c:72:17:d1:90:d8:e0:
89:da:a7:36:2b:3c:f4:56:1a:10:08:6f:f4:0f:ad:
b3:86:37:67:c5:ed:ed:31:50:fc:fd:fd:f9:10:9c:
f4:18:25:8d:84:63:da:83:98:ae:dc:1e:45:6b:b4:
0a:83:8c:8f:c2:d1:84:0b:f9:60:7f:f0:24:53:97:
5d:86:64:04:38:3d:3d:e7:fd:e1:e8:90:3f:fa:3b:
39:f1:6e:ba:80:2a:1a:ab:f7:cc:75:87:da:f1:79:
ba:75:8a:95:21:35:73:d4:a7:a0:9f:c9:84:90:b3:
eb:22:41:90:8c:33:1c:0a:cf:41:ba:38:b6:fe:03:
16:a9:b9:35:22:68:92:fe:aa:73:30:2f:2a:d3:03:
cd:3d:68:c9:56:cb:53:34:38:58:b4:85:cd:cc:37:
15:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:68:6B:88:98:18:6F:07:D6:40:59:A7:06:DF:E7:B5:13:5B:F8:72
X509v3 Authority Key Identifier:
keyid:3A:ED:D3:C7:27:3D:9A:B3:64:A3:14:DA:48:1E:5B:A5:1F:84:29:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:89:98:a2:55:46:73:9e:2a:c7:8c:91:a9:cc:9b:ce:a8:d8:
27:aa:00:90:c6:15:99:4d:6b:64:9e:2b:b8:94:3f:bf:ab:f3:
97:61:0d:22:df:17:d9:b6:93:20:51:08:22:f7:f0:1a:85:d9:
4a:72:bd:dc:28:17:97:f4:36:1c:98:00:34:57:3e:c2:e0:2a:
78:53:f2:22:16:1e:c7:91:3d:e0:58:c7:38:8c:ac:bb:d9:9a:
b5:f9:69:9f:1b:c3:2c:6d:8a:a1:e3:d3:41:54:9d:b1:02:ab:
d2:dc:5f:cf:04:4f:0c:41:45:6c:8d:93:18:8d:56:ab:f5:41:
44:86:24:66:c1:87:a0:ed:f2:fa:33:3d:c6:91:06:01:a6:7a:
ee:23:27:b9:a3:87:8e:a2:72:44:df:9b:4e:d8:a1:45:b9:b7:
26:cc:ca:8b:b7:86:89:07:72:b2:3e:93:74:d5:5d:ae:2b:a0:
f0:82:dc:b8:11:eb:8d:fc:59:17:35:a7:5d:01:14:b1:49:bd:
34:a9:9c:1a:9f:95:ec:dd:c7:1a:b1:49:d9:03:be:f6:a8:72:
2c:cb:37:89:8d:a9:9c:f8:88:74:b0:25:8d:0d:28:2f:66:ed:
47:34:35:96:05:76:4c:7f:8e:ff:83:e8:25:58:85:d4:90:06:
51:d5:53:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:09:02 2025 by rpki-client