Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ca71c8-13ba-471b-af98-bcca61e39cc3/1/O1HtwFDk-YX73VeMzgKtyIDGyKc.mft
File: O1HtwFDk-YX73VeMzgKtyIDGyKc.mft (raw, json)
Hash identifier: gPctvGGPr6N16i7UKmVNnCXTF7gpj2IzoYDxHqy9uWg=
Subject key identifier: 2D:E3:4E:EF:0E:1C:F6:57:7D:5E:28:F4:74:D3:78:ED:9A:CB:5D:95
Authority key identifier: 3B:51:ED:C0:50:E4:F9:85:FB:DD:57:8C:CE:02:AD:C8:80:C6:C8:A7
Certificate issuer: /CN=3b51edc050e4f985fbdd578cce02adc880c6c8a7
Certificate serial: 0196B7B63EF0BB83EE66ADB2F4B658642927
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1HtwFDk-YX73VeMzgKtyIDGyKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ca71c8-13ba-471b-af98-bcca61e39cc3/1/O1HtwFDk-YX73VeMzgKtyIDGyKc.mft
Manifest number: 0C8B
Signing time: Sat 10 May 2025 01:01:36 +0000
Manifest this update: Sat 10 May 2025 01:01:36 +0000
Manifest next update: Sun 11 May 2025 01:01:36 +0000
Files and hashes: 1: O1HtwFDk-YX73VeMzgKtyIDGyKc.crl (hash: M990BL6kWMzsFX1t1oiixao+pzIj9MMMb8DUnKvgUlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/ca71c8-13ba-471b-af98-bcca61e39cc3/1/O1HtwFDk-YX73VeMzgKtyIDGyKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/ca71c8-13ba-471b-af98-bcca61e39cc3/1/O1HtwFDk-YX73VeMzgKtyIDGyKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1HtwFDk-YX73VeMzgKtyIDGyKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 01:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b6:3e:f0:bb:83:ee:66:ad:b2:f4:b6:58:64:29:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b51edc050e4f985fbdd578cce02adc880c6c8a7
Validity
Not Before: May 10 01:01:36 2025 GMT
Not After : May 11 01:01:36 2025 GMT
Subject: CN=2de34eef0e1cf6577d5e28f474d378ed9acb5d95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:07:d5:16:e5:ec:03:a3:b1:c8:c4:ca:13:62:
2b:32:3e:49:e2:fc:e4:9a:e0:09:00:24:13:a1:e5:
00:4e:f7:fd:ea:ab:10:57:b2:f0:a4:f5:40:e3:e6:
10:1a:e0:b5:52:83:4e:3b:3e:10:74:b1:dd:41:08:
cd:cc:fc:c5:77:05:8c:09:7e:07:ba:8a:6a:8d:1e:
90:3c:61:72:ae:8a:b0:cd:5c:55:3e:57:ee:96:e8:
a1:4a:12:a9:cd:67:b0:1e:16:6a:66:a9:8e:70:e4:
b8:ff:72:ae:73:e6:f5:f3:a0:ad:f7:a2:05:83:b2:
b2:8d:32:4c:f0:c9:a1:31:66:85:da:14:9b:63:c7:
db:95:02:ee:67:fd:44:2a:cb:5f:a6:24:59:34:f8:
a7:a4:af:2c:3d:90:70:8b:f9:be:f2:7f:82:0b:76:
78:25:f2:6a:e4:39:4d:8a:22:07:a9:ed:f4:5f:18:
d4:95:08:a3:ee:95:24:50:f6:1c:2d:db:97:81:43:
53:db:bf:1b:a1:ad:c9:6a:d7:66:f8:51:18:39:70:
9e:c9:28:b6:60:33:ed:78:79:3f:5e:8f:e9:65:37:
86:95:0f:ea:4f:37:9a:3c:10:76:8a:60:86:78:5b:
ba:c8:be:0f:9a:ce:0c:66:91:a1:48:fa:1a:40:ab:
db:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E3:4E:EF:0E:1C:F6:57:7D:5E:28:F4:74:D3:78:ED:9A:CB:5D:95
X509v3 Authority Key Identifier:
keyid:3B:51:ED:C0:50:E4:F9:85:FB:DD:57:8C:CE:02:AD:C8:80:C6:C8:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1HtwFDk-YX73VeMzgKtyIDGyKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ca71c8-13ba-471b-af98-bcca61e39cc3/1/O1HtwFDk-YX73VeMzgKtyIDGyKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ca71c8-13ba-471b-af98-bcca61e39cc3/1/O1HtwFDk-YX73VeMzgKtyIDGyKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:cc:37:66:2c:20:55:13:21:38:26:2a:70:57:ae:fe:c8:6b:
a1:54:21:94:e2:e6:a4:25:d8:69:b0:85:21:8a:a1:df:b2:12:
e7:3f:5f:e6:66:20:8f:01:55:6c:5a:22:25:dd:41:9b:0e:79:
a8:b5:62:b5:ad:11:47:57:18:c4:49:52:b5:9f:e6:a2:59:0a:
ec:fc:5c:8c:b2:3e:eb:1a:dd:da:a1:02:dc:e6:03:c4:73:f3:
ab:73:89:9f:02:db:0a:d1:3b:8d:13:da:36:ca:6d:26:9d:cc:
83:9b:c2:f2:f5:95:e4:e9:76:6e:ba:dd:24:f9:6e:4b:f7:e4:
23:7d:a6:e2:79:00:bb:6a:d6:08:b4:2e:92:23:84:bf:11:8d:
e6:b5:e2:3f:b2:a1:46:74:36:b8:77:29:ef:53:33:78:f5:11:
43:06:fb:ec:66:e6:ce:32:e9:90:ce:01:a7:4a:bc:b0:dc:fd:
65:b8:f0:5c:44:35:1e:39:c0:53:c4:0a:9c:be:66:91:c5:04:
28:ee:8b:a2:ca:06:a6:9e:95:87:7a:d1:e8:b8:83:4e:8d:03:
e7:d4:4c:9d:81:e1:f3:58:94:54:55:43:3f:e7:68:7c:b7:f1:
86:c6:24:86:81:2b:a1:88:02:71:98:d7:b2:5a:0a:ec:c4:7a:
b3:96:d1:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:35:50 2025 by rpki-client