Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
File: OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft (raw, json)
Hash identifier: EPzBh/9hD1akO7XoY7twWBnkJDw5oCv3kvSdWEuKE9Q=
Subject key identifier: D9:42:5F:B2:8E:E9:5D:09:76:33:34:FC:69:9B:42:75:B7:E6:D9:C7
Authority key identifier: 3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51
Certificate issuer: /CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351
Certificate serial: 01969ED0E296A526351BA82EE07FAA0BF993
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
Manifest number: 0F3E
Signing time: Mon 05 May 2025 05:00:11 +0000
Manifest this update: Mon 05 May 2025 05:00:11 +0000
Manifest next update: Tue 06 May 2025 05:00:11 +0000
Files and hashes: 1: OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl (hash: /R7WWCM+wAK4IzBwnbpdn2IyIwWFX1S6BSjjwraYQ40=)
2: fmsKsNJsScyYZyH8RUfSLeG-UJA.roa (hash: XWgPxzT1eqv4he1A7biAZG6QqWis59ng7mldQueWS0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 05:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:d0:e2:96:a5:26:35:1b:a8:2e:e0:7f:aa:0b:f9:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351
Validity
Not Before: May 5 05:00:11 2025 GMT
Not After : May 6 05:00:11 2025 GMT
Subject: CN=d9425fb28ee95d09763334fc699b4275b7e6d9c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e6:76:42:9b:c6:50:d3:f2:8d:ae:a1:21:47:
25:fa:27:2d:d2:d7:fa:d7:32:74:af:87:fd:84:81:
d2:ea:39:06:4f:34:a7:22:bf:73:d5:20:b6:90:1b:
14:db:5f:3e:a0:d1:16:fc:63:0e:0e:49:6e:7a:3b:
ac:ce:6d:77:4e:fc:13:4b:ee:5a:78:fb:d2:28:3f:
56:ec:25:c6:55:97:b2:92:d7:5c:a7:fe:14:cb:60:
c8:ad:d5:cd:92:36:38:07:f9:7a:cb:ea:2d:5c:99:
9b:a7:e7:49:f8:3c:84:ee:56:9f:d3:4f:89:20:b3:
cf:ed:bc:73:f6:b5:95:f7:59:77:52:0e:e8:eb:bc:
77:9b:b6:a2:ba:f8:aa:56:8b:fe:39:ea:db:36:a7:
96:5b:12:52:55:cb:ae:e5:3c:40:10:d4:00:95:06:
12:44:fd:14:60:18:22:6e:a8:dd:58:39:48:7a:fe:
ba:b6:db:29:77:2d:84:86:cb:c3:8f:26:71:87:b2:
2c:8f:e1:25:3e:98:31:82:7a:c5:83:67:14:ed:2d:
dd:f7:fb:2e:3b:22:e7:91:0a:24:ed:e4:e7:93:1a:
90:7f:ea:79:56:19:4c:ca:56:78:9e:65:42:d3:9c:
53:ec:2f:49:ea:2e:5d:76:bd:24:ea:f7:a4:42:f9:
6f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:42:5F:B2:8E:E9:5D:09:76:33:34:FC:69:9B:42:75:B7:E6:D9:C7
X509v3 Authority Key Identifier:
keyid:3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:e6:26:46:6f:00:a4:af:77:75:fa:ab:48:13:d4:c0:67:a5:
c1:04:c2:80:f4:11:a0:71:95:ce:ca:f2:10:6c:26:87:ae:7d:
bd:9d:81:f3:35:13:bf:aa:38:d3:9a:94:79:87:10:87:c8:54:
71:29:4d:80:68:24:02:7a:30:ce:22:f0:5f:b5:d4:b4:13:f5:
1f:c8:99:e9:46:27:f4:26:10:28:0a:30:44:d2:14:22:c3:67:
8c:2c:2c:8a:02:d6:0b:e8:a1:81:f0:ba:7d:1d:ad:66:4e:1a:
60:d0:34:92:ca:5d:f7:37:b2:62:49:bd:40:b6:1d:a8:b0:91:
0c:df:eb:8d:7d:51:19:2e:e2:7a:27:b5:fc:77:5e:92:54:60:
e4:54:8c:20:81:f7:7e:98:bc:b7:bd:71:65:24:d7:aa:9c:1f:
72:96:24:72:41:df:c9:0d:fe:07:14:4b:80:f0:02:6d:16:10:
09:87:9f:45:73:f5:b2:08:7f:be:08:ef:aa:52:37:75:75:65:
1c:8b:09:95:6e:e8:61:b1:5e:60:9e:18:42:a5:c3:bc:dd:27:
90:3c:a7:01:a3:b6:4f:42:13:a7:06:f7:9f:a6:2f:f9:8d:7b:
7d:62:16:09:86:78:0f:06:d7:44:20:ea:e9:b7:50:64:13:58:
d9:2f:8b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 13:54:09 2025 by rpki-client