Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
File: OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft (raw, json)
Hash identifier: /dhWx29TMT0sqtVj1iPL7Cf4fbV1XdQLQQr45cjVx8Q=
Subject key identifier: 58:22:FA:CA:48:C8:4F:98:72:43:B4:D2:85:28:D3:E9:C5:CA:6A:D8
Authority key identifier: 38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
Certificate issuer: /CN=38f23798b67393e4039e3f9555e214d6737c1351
Certificate serial: 019684DA8184F780F6192B552BD5255614A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
Manifest number: 1519
Signing time: Wed 30 Apr 2025 04:00:34 +0000
Manifest this update: Wed 30 Apr 2025 04:00:34 +0000
Manifest next update: Thu 01 May 2025 04:00:34 +0000
Files and hashes: 1: OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl (hash: rLteizItCKhSrfVJnC7apWFeD4gD7W+kdoNu3S8w9Yk=)
2: Vpoq5ZpSGDP-ZXCmZlKnhArAK_Q.roa (hash: 38YyvusiUhw1DBRUCOnZouY1Y0JBlQCEkMbtx6PZeK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:da:81:84:f7:80:f6:19:2b:55:2b:d5:25:56:14:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f23798b67393e4039e3f9555e214d6737c1351
Validity
Not Before: Apr 30 04:00:34 2025 GMT
Not After : May 1 04:00:34 2025 GMT
Subject: CN=5822faca48c84f987243b4d28528d3e9c5ca6ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d3:f8:e8:ea:1f:fc:22:fa:fa:69:fc:ce:2f:
1d:4d:6a:38:34:e7:7e:00:33:0c:e7:aa:ac:53:80:
be:4e:7e:d3:3d:09:02:94:b0:4a:c6:9a:7a:f9:1f:
ea:23:4e:f4:33:5d:be:89:c8:24:86:5e:13:92:af:
07:0c:80:48:9a:fb:f9:e5:77:4e:60:30:69:90:4f:
78:d3:cc:79:ca:fb:06:81:34:2a:db:44:e9:f7:84:
f8:e1:8c:60:cb:d8:7d:8f:15:b2:62:7e:7b:5e:c4:
98:ce:39:c8:44:5e:67:3a:91:22:9c:4d:68:f8:c4:
55:8f:98:69:9e:de:36:b9:cf:ef:27:4a:16:eb:27:
4b:9d:9b:68:4f:eb:73:34:89:55:c1:a5:bb:26:15:
5e:95:19:13:ae:2f:22:a3:33:64:55:71:ca:28:7f:
78:c7:4e:a8:49:f0:96:bf:de:14:21:c1:8e:ac:5c:
62:4e:d7:8b:b6:c2:aa:fd:78:86:ff:49:0c:ae:f2:
65:c1:42:27:c5:14:6b:30:b5:f0:70:6e:a4:54:93:
0d:0b:75:08:e2:bd:c8:09:90:68:4e:25:14:be:3a:
93:f1:11:37:4f:56:59:66:31:9c:97:44:bd:40:ba:
e9:0f:46:fa:98:f5:d4:e5:b7:14:de:29:3b:55:6b:
b9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:22:FA:CA:48:C8:4F:98:72:43:B4:D2:85:28:D3:E9:C5:CA:6A:D8
X509v3 Authority Key Identifier:
keyid:38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:45:ef:a4:80:b4:c4:ca:19:83:61:f2:95:56:20:c1:cb:94:
30:e0:be:b5:e0:88:84:63:3f:8a:d8:15:47:3f:60:a0:d5:c6:
89:81:79:7e:59:e5:47:74:a1:66:79:cf:71:b4:b3:e1:49:dc:
50:84:4f:e3:70:a9:10:15:56:c9:4b:a6:a9:65:37:38:ce:8f:
33:61:d5:41:31:61:4b:91:6e:4b:f4:5c:33:31:c2:32:93:f1:
40:98:30:49:d8:d6:ec:0f:e8:4b:2e:32:c5:45:4c:37:1c:9c:
04:25:45:13:b1:f8:c7:2d:3a:a6:8b:19:18:2b:05:7c:c7:e1:
86:99:44:13:0b:c6:32:55:c3:95:62:e5:50:af:bb:f0:56:79:
69:7b:29:20:59:bd:aa:df:1e:08:0c:95:a7:84:e4:da:0d:9f:
ea:47:b3:15:46:38:af:23:78:84:a3:ec:df:6c:10:e6:75:dd:
e0:05:cf:25:be:b5:85:4a:08:3f:56:1c:24:b7:25:96:40:aa:
cc:7b:cd:7d:ef:7b:94:a4:26:a7:5b:f7:50:fe:e3:e0:c0:ad:
16:a9:b3:ec:2c:cc:db:98:d7:9b:87:72:a8:bb:0b:e9:1d:fb:
26:59:11:42:80:f8:42:c4:4b:de:10:49:34:91:d7:b7:4e:13:
c4:92:40:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 07:01:42 2025 by rpki-client