Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: UjU8Rm/0J+62lRrVMxE+85KrX/kia4L9rPgp+4Khxdk=
Subject key identifier: 33:93:83:90:01:81:AD:1C:74:BD:19:2A:1B:FB:AD:5B:76:B6:93:96
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 01967D581AAD248306FED4AA9D9AB4F6EBBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 09A2
Signing time: Mon 28 Apr 2025 17:00:48 +0000
Manifest this update: Mon 28 Apr 2025 17:00:48 +0000
Manifest next update: Tue 29 Apr 2025 17:00:48 +0000
Files and hashes: 1: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: 73WZNtvAC6SC+k+CVXQ9yuGVycq3NJX7uxjmnyo2zOY=)
2: iKF-Q9PfXOLXW4CJahZRW_VogkE.roa (hash: +qqtPKI3qMehNAw49JzdFyEOoExudNvSKeInlgLAy1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:58:1a:ad:24:83:06:fe:d4:aa:9d:9a:b4:f6:eb:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Apr 28 17:00:48 2025 GMT
Not After : Apr 29 17:00:48 2025 GMT
Subject: CN=339383900181ad1c74bd192a1bfbad5b76b69396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:63:af:e5:4d:fe:a4:94:19:02:dc:f9:a8:dd:
50:64:16:0b:d7:6a:40:85:39:c2:49:f9:fb:d4:78:
63:2a:fa:a6:b0:cd:7d:7b:bd:ac:0d:86:ac:52:3b:
7b:bd:83:c5:4f:61:e9:dc:36:0c:3f:b4:9c:fb:28:
3d:7d:c9:15:9a:59:dd:19:0c:37:53:b0:11:cc:71:
3c:94:d7:0f:a2:91:6c:bb:dd:51:be:4e:9c:ff:91:
24:c3:48:09:d9:4d:f0:fc:61:d0:67:ef:02:d3:d7:
15:4c:c3:01:7a:f4:46:b6:bc:a9:aa:a0:da:21:e7:
24:81:7e:80:d4:76:48:70:b3:9f:90:6d:13:87:a3:
6f:39:a6:6a:1f:69:d5:89:c8:23:28:42:c2:4d:4d:
45:96:28:d1:ac:5c:d6:01:85:c1:7c:98:0e:39:27:
5a:41:ae:af:61:08:50:3f:da:ad:35:14:d5:f7:8f:
95:3b:18:e6:e1:42:61:3f:28:a9:7f:c7:83:e7:51:
7f:c4:18:c4:bb:a1:c2:1e:a7:12:c5:cc:03:5d:4e:
1b:8e:71:2a:14:7c:bc:68:f5:2a:6d:b6:6d:68:a3:
e1:d8:0f:0d:e8:fc:75:f7:5c:32:58:56:73:70:b2:
8f:dd:ed:77:53:a5:a6:0c:05:a5:d8:2d:d2:4d:ab:
b9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:93:83:90:01:81:AD:1C:74:BD:19:2A:1B:FB:AD:5B:76:B6:93:96
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:97:19:f2:ba:6a:11:3e:15:63:f6:a5:46:4d:bb:30:95:45:
69:8f:58:f4:0c:0c:dc:1f:41:3a:d4:f6:d3:56:9f:7a:fb:84:
6a:d2:e7:56:53:59:1e:94:e6:4b:3d:39:94:45:5e:6b:54:21:
b3:4f:3e:fe:f6:38:33:fe:9e:5d:52:82:25:dd:6f:2d:0f:70:
e8:09:8c:f1:be:f6:7c:96:6e:7e:8f:5f:f9:96:5e:44:aa:ea:
34:e9:6c:48:58:46:b1:f0:c2:3c:cc:0a:4c:57:1e:23:e0:4c:
bf:ab:fe:43:4e:cb:77:1a:23:9e:37:81:2d:ad:77:84:bb:33:
e0:d0:56:fd:03:b5:b2:21:63:06:b0:7d:b0:4b:4f:15:a1:d6:
cc:21:25:7a:19:21:f7:f2:ff:b5:4d:94:7b:7e:42:f4:89:6c:
bc:3f:9c:4d:ae:aa:9b:10:18:a0:55:c1:4d:46:1c:98:43:3a:
e8:64:28:9c:d4:b2:4c:0f:70:34:2d:3a:54:1f:44:8c:42:ab:
94:cf:91:39:c5:8a:06:76:be:6a:27:c9:86:48:67:8a:04:35:
ca:4b:67:c9:54:63:28:1b:02:8f:74:18:f4:01:65:de:66:9e:
1f:be:7a:f6:c3:3c:c9:f3:10:56:70:af:ac:29:11:f6:2b:3e:
70:36:a4:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:34:24 2025 by rpki-client