Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
File: Or-t4neb0SyuiYiSakZi11cIawE.mft (raw, json)
Hash identifier: mqRUP3dlZbSyj9gNa3KmJekxCxisRh4pxBngI/+Y8gk=
Subject key identifier: 39:2E:21:E8:C8:C6:A3:37:1E:B5:6B:61:73:3F:93:BF:B3:86:4D:A5
Authority key identifier: 3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01
Certificate issuer: /CN=3abfade2779bd12cae8988926a4662d757086b01
Certificate serial: 01968624275AF8469434AB125AFC6D4FE15A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
Manifest number: 0A3B
Signing time: Wed 30 Apr 2025 10:00:38 +0000
Manifest this update: Wed 30 Apr 2025 10:00:38 +0000
Manifest next update: Thu 01 May 2025 10:00:38 +0000
Files and hashes: 1: Or-t4neb0SyuiYiSakZi11cIawE.crl (hash: qYrO6QLxlKmxtwXDHJBKvXNXMmVQt2KVO6hwSkBRX7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:24:27:5a:f8:46:94:34:ab:12:5a:fc:6d:4f:e1:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abfade2779bd12cae8988926a4662d757086b01
Validity
Not Before: Apr 30 10:00:38 2025 GMT
Not After : May 1 10:00:38 2025 GMT
Subject: CN=392e21e8c8c6a3371eb56b61733f93bfb3864da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fe:07:9f:31:48:88:4f:86:c8:3a:74:d6:62:
fc:ed:28:34:52:44:de:22:f3:18:2b:10:40:1b:2c:
bc:1a:12:8b:fa:c4:2c:11:61:0f:f7:a3:77:a4:63:
15:a9:e0:3f:f8:22:14:45:14:8d:af:74:92:79:84:
a5:43:00:7c:cd:41:09:60:6f:aa:1c:28:c9:d9:54:
fb:7c:66:58:77:ac:78:59:d6:f4:b5:54:c4:7b:3a:
71:c8:7a:3a:d5:a5:ac:ca:53:62:0a:de:6d:4e:31:
c7:46:0c:69:3e:15:7e:f1:7c:74:49:ae:38:87:03:
0a:21:16:3d:f4:2a:12:9e:d1:ce:8a:63:80:d3:be:
cf:19:95:03:4f:3c:66:72:65:f5:7d:4c:9c:68:ff:
66:75:11:c8:77:d6:a6:ce:ca:0d:fb:56:80:1c:4b:
3c:3d:56:65:69:74:f2:8c:4d:47:79:fa:bb:ee:5c:
d7:c2:44:72:e4:4e:98:f1:76:98:d8:37:89:ca:a6:
3e:66:3e:41:64:f6:9b:0b:49:2e:93:cc:9e:97:c0:
27:96:f7:27:03:1c:eb:02:ed:97:ce:82:f9:f5:27:
d4:f1:31:3b:81:d7:ed:d5:21:f4:c3:44:3f:08:54:
17:3f:23:c5:3e:d7:23:e9:79:71:6c:84:e6:4d:c7:
0f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2E:21:E8:C8:C6:A3:37:1E:B5:6B:61:73:3F:93:BF:B3:86:4D:A5
X509v3 Authority Key Identifier:
keyid:3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:15:5a:c9:e3:c6:f6:63:ef:d1:03:b0:93:bb:d9:24:df:80:
19:78:d8:f5:cb:45:31:6e:31:be:92:16:3c:ef:0a:95:ee:6a:
71:16:e5:70:d9:96:e9:66:fa:6f:ec:26:e4:88:8c:c8:3a:0e:
d6:69:38:9e:fa:de:70:d9:89:b5:5c:2c:6a:4c:55:c4:69:d1:
db:a8:61:51:99:f8:cc:cb:bc:95:ce:0f:c0:c0:87:b8:ef:31:
ad:32:5b:40:a3:63:b4:4e:36:15:65:2b:f8:58:72:2c:fc:55:
32:97:73:a3:a5:19:bd:6e:c3:40:3d:21:1d:72:40:40:f8:f3:
11:e1:3e:70:1e:36:cc:ac:6a:28:95:1d:5c:3d:f7:a6:29:72:
d4:5d:69:e7:a8:87:d0:0d:78:ba:a5:94:c9:2b:f4:7d:79:3b:
b0:27:f1:47:16:c9:d7:90:de:9e:a4:6c:7e:f4:41:b8:55:23:
b9:c0:16:e3:9e:f3:66:b0:48:77:a8:75:d2:e5:94:06:15:c9:
35:e5:89:35:33:3f:4a:cf:71:85:c4:76:4e:2e:aa:89:3d:89:
25:18:61:b6:6a:e1:a5:45:fe:55:f1:29:b2:96:99:7b:e3:cc:
a8:68:ba:61:7d:84:40:10:bf:6a:3e:12:d2:64:43:ff:f9:63:
8b:d5:02:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 13:38:08 2025 by rpki-client