Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
File: O2MTmh9PiMMM7iIckUajbbVU_3A.mft (raw, json)
Hash identifier: JXCLTt56zkrLUbnYi/IjUSl2TfxIHW8qwgMfU/fV8go=
Subject key identifier: D4:A5:DC:CA:CF:53:37:FC:06:60:E5:E3:10:7F:B7:00:DB:28:1A:77
Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Certificate serial: 0196A08871581D868BC6C2EA359FD7809C66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
Manifest number: 07BF
Signing time: Mon 05 May 2025 13:00:18 +0000
Manifest this update: Mon 05 May 2025 13:00:18 +0000
Manifest next update: Tue 06 May 2025 13:00:18 +0000
Files and hashes: 1: JoFwTwAv-_c9ZLWMyBNEWDPvfas.roa (hash: ErYlkkNh49mz7B2O46c+uSN3yYpaocdKkRzHsCd2I3A=)
2: O2MTmh9PiMMM7iIckUajbbVU_3A.crl (hash: s5t3l6SfvhRtUTNI/3s0jZwW7HuEmq8IGUI34Fommco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:88:71:58:1d:86:8b:c6:c2:ea:35:9f:d7:80:9c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Validity
Not Before: May 5 13:00:18 2025 GMT
Not After : May 6 13:00:18 2025 GMT
Subject: CN=d4a5dccacf5337fc0660e5e3107fb700db281a77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a7:82:14:6f:fc:29:7a:1c:a3:22:ff:9e:7e:
8f:d3:03:f2:d4:d7:c9:ed:0b:9e:28:b3:60:b7:a7:
6e:58:df:0a:d1:e7:67:c9:43:4d:eb:21:47:4f:dc:
f3:88:3a:dd:59:84:86:4d:33:6a:b8:f8:66:c7:23:
65:54:de:67:4b:b9:59:f0:4b:d7:06:01:fd:85:8a:
bb:1c:9f:3f:cf:64:d9:4a:1c:2a:f6:54:94:a1:50:
09:54:53:23:18:84:85:03:61:59:88:29:03:67:83:
24:22:fa:a7:91:42:57:37:5d:5a:de:f6:67:8b:59:
c5:b0:68:e5:a2:a0:94:45:c1:de:53:75:ca:0d:14:
32:ad:4f:64:74:10:d4:31:1e:95:d6:ad:ed:55:15:
84:4b:eb:ba:7b:7c:3c:76:06:64:30:cc:d0:34:1e:
81:23:7c:ea:b2:c8:ce:31:4c:63:9f:26:49:f4:58:
f5:fe:90:1d:40:26:9f:e2:e7:7b:83:ef:36:51:ae:
31:98:a3:65:0b:60:b8:51:87:6c:26:fb:da:81:a2:
d4:8a:38:e5:09:2d:a4:ea:44:1f:a7:b5:3d:a3:77:
eb:c9:7c:be:05:45:39:a1:d1:6e:cc:cf:3e:b2:b4:
02:07:c1:2f:fe:f0:5d:c2:fc:d6:73:7c:59:70:ca:
d1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A5:DC:CA:CF:53:37:FC:06:60:E5:E3:10:7F:B7:00:DB:28:1A:77
X509v3 Authority Key Identifier:
keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:fb:20:00:45:70:9c:a8:01:c9:c5:02:9c:21:fb:c9:44:f9:
6e:88:1a:99:e8:66:d8:74:65:e2:2f:67:8c:2e:31:9a:0a:23:
e7:6e:04:70:49:e3:eb:cf:09:25:34:14:20:b7:10:0c:1a:ac:
32:a7:b4:06:3c:50:f3:a6:ec:3c:fe:60:cf:0c:52:b4:be:27:
b6:1f:36:36:d3:db:2b:61:a3:5b:7c:16:7d:fe:e0:46:bb:ad:
aa:14:c0:3f:ec:be:1a:de:e7:38:73:ee:df:f8:66:e8:e5:9e:
9e:d8:00:b3:ff:ae:d6:88:e5:1f:38:72:88:06:6b:be:4e:ba:
0f:c5:04:79:9c:3f:50:91:fe:e5:f4:6e:d5:e0:49:71:d8:8b:
f5:51:c4:bb:e8:33:77:2e:6f:49:3b:f8:53:2e:e3:a3:a8:e4:
43:26:cc:50:53:1e:68:e2:3d:3d:63:ce:2b:5a:3a:f5:45:fd:
65:86:2a:1f:03:12:ff:22:61:b2:79:75:a4:ac:cd:b2:ce:4b:
e3:32:fa:63:23:3d:4a:20:b4:46:8d:50:e5:89:1b:07:80:dc:
db:81:1d:fa:96:95:8c:cc:d9:56:d1:03:91:40:db:a6:73:f7:
ed:86:2e:27:89:8d:a8:52:50:09:4e:eb:48:78:9e:dc:2a:95:
bd:85:a9:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 16:15:13 2025 by rpki-client