Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/35bb21-2239-4f77-a7fa-55de65a2ea3b/1/o3sePvrqidz80cjpfA6beAxhRl0.mft
File: o3sePvrqidz80cjpfA6beAxhRl0.mft (raw, json)
Hash identifier: Ya4OrerdIgnqkIbue3C/S3Nc9auaCcUf7noAnw/006k=
Subject key identifier: 99:8A:5F:7A:6F:E5:17:1E:1E:5C:84:4B:DA:B0:2A:10:0E:D7:DF:1F
Authority key identifier: A3:7B:1E:3E:FA:EA:89:DC:FC:D1:C8:E9:7C:0E:9B:78:0C:61:46:5D
Certificate issuer: /CN=a37b1e3efaea89dcfcd1c8e97c0e9b780c61465d
Certificate serial: 01968391B387F25E6A4EA766FFBAA0A8F1B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3sePvrqidz80cjpfA6beAxhRl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/35bb21-2239-4f77-a7fa-55de65a2ea3b/1/o3sePvrqidz80cjpfA6beAxhRl0.mft
Manifest number: 0B9D
Signing time: Tue 29 Apr 2025 22:01:25 +0000
Manifest this update: Tue 29 Apr 2025 22:01:25 +0000
Manifest next update: Wed 30 Apr 2025 22:01:25 +0000
Files and hashes: 1: o3sePvrqidz80cjpfA6beAxhRl0.crl (hash: dq4dkvG/w2gdsKZJPwrxbZE66wWHUbYFPjA+mTraN/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/35bb21-2239-4f77-a7fa-55de65a2ea3b/1/o3sePvrqidz80cjpfA6beAxhRl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/35bb21-2239-4f77-a7fa-55de65a2ea3b/1/o3sePvrqidz80cjpfA6beAxhRl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3sePvrqidz80cjpfA6beAxhRl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 22:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:b3:87:f2:5e:6a:4e:a7:66:ff:ba:a0:a8:f1:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a37b1e3efaea89dcfcd1c8e97c0e9b780c61465d
Validity
Not Before: Apr 29 22:01:25 2025 GMT
Not After : Apr 30 22:01:25 2025 GMT
Subject: CN=998a5f7a6fe5171e1e5c844bdab02a100ed7df1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9c:38:03:9d:1a:16:33:99:d2:79:8b:a5:f3:
a6:16:97:ed:55:06:4e:6c:a1:d5:97:df:52:05:9a:
c0:07:d6:32:fd:84:fd:f2:d4:bc:ac:64:c5:a0:11:
6a:42:20:de:1b:74:40:f0:b6:03:35:7e:97:67:7d:
c3:40:cc:6c:f6:27:d2:cc:11:a4:5e:96:06:92:c1:
b2:dd:ab:9e:20:41:90:5e:61:f5:0a:b2:be:c5:8b:
1f:8b:c2:cc:1c:fd:87:07:aa:32:78:22:a0:56:72:
0d:d4:a9:92:83:2b:53:39:23:99:94:56:5b:00:3f:
41:66:60:2f:e6:14:3c:c7:45:ee:e8:6e:f4:33:63:
e6:ea:50:e4:cc:28:8f:b8:62:3f:78:01:29:6b:85:
a2:91:dc:a5:24:77:35:4f:ca:7c:25:09:06:3f:1c:
75:6a:86:67:3e:50:98:99:74:1f:c7:27:4d:49:eb:
61:0d:f2:a5:b5:5e:52:6a:86:89:eb:8d:47:7b:d1:
6a:b1:20:8b:42:b6:db:b2:95:49:9e:cf:78:d5:57:
81:ea:2b:19:c8:65:15:bf:ff:e9:0f:35:51:c3:14:
ad:c3:19:d3:4b:4e:80:86:43:d0:fe:2d:02:02:b5:
c4:c4:f4:73:ed:1d:f9:37:6b:96:40:7a:45:58:0d:
df:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:8A:5F:7A:6F:E5:17:1E:1E:5C:84:4B:DA:B0:2A:10:0E:D7:DF:1F
X509v3 Authority Key Identifier:
keyid:A3:7B:1E:3E:FA:EA:89:DC:FC:D1:C8:E9:7C:0E:9B:78:0C:61:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3sePvrqidz80cjpfA6beAxhRl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/35bb21-2239-4f77-a7fa-55de65a2ea3b/1/o3sePvrqidz80cjpfA6beAxhRl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/35bb21-2239-4f77-a7fa-55de65a2ea3b/1/o3sePvrqidz80cjpfA6beAxhRl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:85:c8:a7:4d:ed:a6:e9:5a:3e:8d:0d:ea:4c:94:7e:d0:90:
b5:d4:6f:14:5f:d2:2f:fa:53:bc:8c:2e:c5:4b:9e:7f:6c:30:
74:da:4d:2f:3d:ea:75:6d:30:0e:63:a7:8e:a6:cb:47:a5:10:
fc:44:a2:49:19:c2:57:9a:eb:ff:5c:5d:37:ef:e6:6b:16:cd:
c9:51:e4:4b:5b:bb:05:c9:93:d7:67:a0:b1:5c:ca:34:0a:fb:
54:1b:3f:33:35:d0:71:79:f4:08:27:af:c1:5a:3a:51:b3:0b:
cd:19:04:25:f2:02:e4:65:db:ba:76:b6:03:00:cd:bd:4f:c7:
ab:ec:e5:fa:54:3a:e8:50:33:10:37:ea:13:b4:a7:69:28:a6:
3d:98:bd:4a:d6:28:b6:f8:b7:f2:2e:33:4e:eb:15:54:5d:9f:
8b:8c:e1:b1:1a:ea:68:07:32:29:47:ef:37:9b:b6:37:2f:42:
6f:42:e7:b7:9a:d8:41:97:c5:a6:49:95:7d:7a:31:58:34:e1:
29:15:90:17:ae:30:19:55:0c:26:46:84:3e:80:e8:ec:e6:bf:
72:9e:40:be:fd:58:18:99:c1:da:91:b9:d1:66:a2:74:25:44:
e0:8c:94:4c:2d:4f:d0:0c:2b:f3:bc:19:1a:16:85:5a:c3:7e:
76:13:0e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 08:16:24 2025 by rpki-client