Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: V4FMtrD8xELkMql/FpdYPVxrAXMFJ8keqytVtYKx/K0=
Subject key identifier: 70:76:E6:E1:63:00:34:38:29:B5:4C:87:B1:AA:7E:47:63:FE:95:55
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 01967F0FB1339A952904F0E1F6DC303BA074
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 1028
Signing time: Tue 29 Apr 2025 01:00:56 +0000
Manifest this update: Tue 29 Apr 2025 01:00:56 +0000
Manifest next update: Wed 30 Apr 2025 01:00:56 +0000
Files and hashes: 1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=)
2: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: gUlib7P4idRr6hGpelvOg9TJFj1MwBlaB9IafOZweuc=)
3: lKnLzY94Z9zOTG6_1gzuoDIJ_5Y.roa (hash: veP44H4IXhWwV/CHwiAUB7r/bJ77LhyJozTjkioLQx0=)
4: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=)
5: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:0f:b1:33:9a:95:29:04:f0:e1:f6:dc:30:3b:a0:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Apr 29 01:00:56 2025 GMT
Not After : Apr 30 01:00:56 2025 GMT
Subject: CN=7076e6e16300343829b54c87b1aa7e4763fe9555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:29:a5:a7:52:58:83:44:10:1e:9f:1f:16:
1f:eb:df:c9:ac:c9:db:5d:27:16:60:75:2d:3f:9e:
04:bc:f7:cd:70:a4:de:de:3d:ae:1e:36:3a:c3:4c:
9d:aa:ac:44:30:c6:13:58:01:a3:34:3c:ea:69:a5:
0b:8e:27:2e:38:8d:13:c2:01:50:23:d7:d1:b6:03:
3e:21:19:ce:6e:e9:b1:77:c5:18:f7:62:7e:10:37:
0a:7f:77:57:f0:36:cf:3e:b4:76:08:5f:5f:c1:3e:
7b:19:47:d5:6d:33:38:3c:26:fd:aa:aa:8d:63:ea:
89:9f:77:c4:be:bd:5c:c7:99:da:2d:0a:98:74:fa:
26:e5:0e:7c:03:34:6d:a6:f6:2e:e3:95:80:b3:48:
5a:7c:fc:7a:c9:12:f6:bd:19:83:d6:78:97:09:88:
83:6e:69:3a:ce:cd:07:76:61:f2:42:b4:16:6f:ec:
8f:0b:2e:77:55:87:48:35:5f:c4:a7:5e:1a:28:a2:
70:ce:04:8e:4d:50:ad:8a:4c:29:1a:79:c1:e0:b6:
8e:73:08:fa:11:db:90:98:08:fa:77:f9:b5:f0:d5:
10:8f:34:4e:be:2f:6b:73:16:4e:6e:6d:16:5d:67:
de:0e:d6:15:1a:aa:cc:56:c8:d5:d6:15:20:fa:4b:
d4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:76:E6:E1:63:00:34:38:29:B5:4C:87:B1:AA:7E:47:63:FE:95:55
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:1a:84:94:03:5c:71:3d:dd:d0:92:77:1b:25:0e:e2:ff:d6:
e0:c6:72:3e:88:1e:0b:eb:67:43:ac:0d:c6:95:a0:8a:d8:ec:
b9:28:db:93:8e:92:cc:3a:f2:16:c4:0c:70:b7:81:31:60:15:
c0:b0:6f:e1:9e:6c:c3:f7:b3:3d:fe:62:2a:a6:21:90:d6:f5:
ca:1f:08:e3:f4:b4:12:fd:db:fb:c2:c9:ee:50:83:61:db:23:
3d:08:e6:03:da:fd:e6:7e:8e:99:0c:a8:83:d5:e2:05:4b:98:
bc:ce:c4:32:a3:90:8d:99:a2:99:42:6c:ff:85:2c:a5:06:e1:
fd:ae:3c:78:f3:f2:76:82:aa:19:8e:90:d7:a4:0e:13:5f:83:
2b:c9:b8:58:6d:09:ba:f3:32:05:df:03:18:b9:10:49:7a:e4:
8e:81:c7:05:42:7a:fd:d7:9f:81:34:5b:61:e9:5d:9b:45:85:
c8:cb:ed:4c:90:a6:ca:e1:c0:c4:34:70:63:72:7e:ad:65:a9:
dd:8b:8f:a5:56:0e:fa:e8:19:d3:0d:b4:b2:44:cc:5a:78:c7:
f8:1d:da:77:ce:3a:70:6d:55:e8:a9:a5:88:2b:5a:b1:f8:e0:
86:26:8c:67:68:67:6f:02:5f:7a:86:8b:56:df:6c:6a:6b:80:
31:8f:a9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 06:21:10 2025 by rpki-client