Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
File: otCM3GpDDvDaiCmRcla2rY0KNvk.mft (raw, json)
Hash identifier: kdc2tsT+9zwvdLc4mARQPiwCEfTZRMBA3HTU4rZG0bI=
Subject key identifier: FB:4F:D8:13:A6:C5:60:A5:41:9A:96:A6:75:A7:0F:B6:BC:1F:31:F5
Authority key identifier: A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
Certificate issuer: /CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Certificate serial: 0196B7B55A8301D5023AA75E51458AF06E6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
Manifest number: 0754
Signing time: Sat 10 May 2025 01:00:37 +0000
Manifest this update: Sat 10 May 2025 01:00:37 +0000
Manifest next update: Sun 11 May 2025 01:00:37 +0000
Files and hashes: 1: otCM3GpDDvDaiCmRcla2rY0KNvk.crl (hash: 5z7LCjKSunBmQApHUaK5sv+j45nyIEwe2uIs9zkR6XM=)
2: uWHHQqBwsm-RgF6BGlPrCIiU5u8.roa (hash: c70DUe86Dscr+BOk1RbQf+gmFBszpSvbzYy8111R1f4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 01:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b5:5a:83:01:d5:02:3a:a7:5e:51:45:8a:f0:6e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Validity
Not Before: May 10 01:00:37 2025 GMT
Not After : May 11 01:00:37 2025 GMT
Subject: CN=fb4fd813a6c560a5419a96a675a70fb6bc1f31f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:77:9b:b8:75:e7:11:d8:33:b9:cc:38:d7:e7:
20:7b:a7:cd:2c:a7:55:b4:14:ea:80:2b:89:90:cf:
dd:1e:fc:6c:c5:d0:94:1f:6f:39:a4:94:23:1f:bc:
14:8b:40:cd:52:f2:e3:88:ef:00:de:7e:d4:42:55:
99:08:a1:12:61:49:60:8a:07:1a:6f:7f:01:8f:0f:
2a:e3:1e:84:d7:be:ad:26:0c:58:20:ec:20:27:67:
90:36:2c:91:0d:49:d6:62:03:c2:23:67:26:d5:7a:
99:3e:c5:d9:1b:b4:f7:bb:ee:83:2b:7c:82:29:5e:
0a:16:65:dd:dc:89:ef:87:fe:24:e0:bf:20:b0:3e:
0d:13:ce:94:3b:2c:88:d6:76:d7:b8:56:ea:04:42:
10:84:6e:05:c6:36:40:21:00:55:06:69:f2:c4:76:
c5:d4:9e:60:8a:11:d3:d3:9d:c3:72:d7:ad:c3:0d:
16:c6:ef:c0:6c:fe:55:f2:d0:0e:8b:63:b7:4a:fc:
db:f7:72:06:dd:89:8b:96:80:c0:81:31:06:ae:c8:
9d:d0:f7:19:22:3c:88:9d:1b:ca:5a:18:cd:af:a4:
02:9f:36:ee:7e:65:19:22:f7:71:f8:e0:dd:01:60:
ec:f9:af:28:5e:56:9b:ea:b5:ce:80:9b:09:2b:4a:
95:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4F:D8:13:A6:C5:60:A5:41:9A:96:A6:75:A7:0F:B6:BC:1F:31:F5
X509v3 Authority Key Identifier:
keyid:A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:6b:f0:5f:57:3d:7d:4a:95:07:08:72:ba:ee:51:5a:d6:7d:
8d:f6:90:85:5d:97:0b:95:c2:23:24:d5:93:1b:41:f6:32:63:
a8:42:ec:b8:08:12:b9:f5:17:d1:d3:d2:65:bf:62:e1:63:e3:
33:46:73:d1:bc:49:76:83:1c:da:db:9e:98:de:2a:ae:31:e8:
a4:1b:3a:ee:a0:a4:69:23:d7:fc:f4:32:41:d0:02:ef:ca:26:
3a:d1:94:12:36:e5:72:02:1c:cc:65:77:fa:46:9b:b1:96:b0:
39:50:34:c9:15:69:de:a7:71:36:69:eb:8e:3b:05:51:c6:7b:
f8:06:a0:2d:60:56:3e:39:91:54:72:2e:77:e3:1c:e1:07:dd:
34:f8:c7:eb:72:20:8d:07:3f:a5:5b:36:54:87:36:21:8c:a0:
13:30:1c:3b:42:89:b0:02:07:2f:c3:79:2e:24:8a:97:06:89:
9c:51:c5:36:fe:ac:e9:a2:20:11:47:f9:a8:41:e6:07:c6:82:
45:dc:53:51:ae:7b:07:dc:9e:c9:19:c3:48:a8:33:47:98:31:
4d:aa:44:51:55:9a:c4:7f:7d:cd:b3:c0:61:6f:0b:bc:da:53:
a9:2c:4c:d9:a4:cf:29:36:8d:ef:d5:59:3c:82:3f:51:7c:71:
9a:5e:20:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 06:18:57 2025 by rpki-client