Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: J4S9xDoqFwEMr9UA2BCbIHuxFvuVJ3x9iBvTOt/ikTA=
Subject key identifier: A9:72:EB:80:2B:9F:59:29:4E:0A:61:64:07:F0:C4:90:3D:F3:A0:C3
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 01967A57782C1869A3804E79A4559107F25D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 0F64
Signing time: Mon 28 Apr 2025 03:01:14 +0000
Manifest this update: Mon 28 Apr 2025 03:01:14 +0000
Manifest next update: Tue 29 Apr 2025 03:01:14 +0000
Files and hashes: 1: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: cbY4OE0+W8MnCbPgTS5I8nV5SZC3A9+ssNCQWQw94TY=)
2: SyALsZDSYtge1NmYRoKzwbP5Vv8.roa (hash: rjh76rxbo7HoAknp3g/P2hhQiBIAvMqHmifN8tVtg/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 03:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:57:78:2c:18:69:a3:80:4e:79:a4:55:91:07:f2:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Apr 28 03:01:14 2025 GMT
Not After : Apr 29 03:01:14 2025 GMT
Subject: CN=a972eb802b9f59294e0a616407f0c4903df3a0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:64:c6:d5:15:7e:a7:1d:ae:56:00:68:5f:41:
b2:81:6f:0c:94:55:eb:af:35:8a:82:e6:a0:50:dc:
18:6b:8e:82:a6:da:0c:e8:ac:d7:c4:ae:6e:db:90:
14:20:ed:c7:8f:d5:31:1e:5f:93:1d:e9:23:db:b5:
21:0b:d9:a4:15:a1:6c:e3:35:09:b2:22:a1:a5:c7:
a2:dd:d4:20:e6:6d:9a:d0:fb:d9:8c:67:af:82:f5:
7c:98:5b:7e:72:85:57:42:2b:e5:33:c6:01:ac:41:
ea:81:15:3d:4a:35:03:f8:4d:a5:1a:46:e5:72:b1:
0e:18:75:51:6b:3e:3c:f2:4c:95:11:02:e6:d2:e0:
df:68:e5:10:22:b6:68:aa:f8:f9:75:2b:6a:38:60:
ff:77:d4:25:c3:44:fe:28:2b:b6:55:92:d0:f5:51:
34:5b:97:60:50:6e:e5:6b:f6:fe:cd:df:e4:51:8f:
8c:d4:8f:22:bb:74:81:12:e3:ee:12:47:fb:33:ab:
53:ac:a8:ef:b4:79:dc:cf:fd:13:8d:7e:bf:24:5f:
f8:2b:5a:09:ef:2e:5f:d4:b9:f0:9e:13:83:ab:c8:
a0:c5:b0:11:95:17:34:c8:f7:f4:dc:0a:87:42:42:
e3:e1:a4:06:e5:48:80:5c:d2:df:17:4c:07:f6:0f:
b0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:72:EB:80:2B:9F:59:29:4E:0A:61:64:07:F0:C4:90:3D:F3:A0:C3
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:bb:97:f2:22:51:44:74:5f:aa:50:08:9a:e9:fb:fc:73:41:
0f:68:3f:00:4f:d3:16:d0:48:4b:7e:ca:d2:f7:2d:cb:ff:84:
88:69:28:28:c6:8a:29:5e:3c:72:fc:d8:9f:b7:d1:f9:bf:cc:
3a:3a:c0:88:ef:16:4a:0d:83:a2:78:51:0b:b1:23:b4:79:37:
a7:2a:e9:8d:1e:95:d4:81:eb:dd:8b:e7:db:47:38:45:8d:77:
56:ae:fa:d5:75:a0:8f:e5:10:3c:61:b7:38:0c:c9:8c:62:8c:
5c:01:84:ea:7b:6b:71:a4:c2:16:b1:6a:7e:ba:e9:21:2d:cc:
0e:9a:cf:8a:d5:80:b4:5a:f2:52:8e:26:65:7e:fc:40:e2:d4:
f7:e8:53:89:09:64:5d:0a:81:fd:6d:ed:b3:26:b3:30:2a:60:
63:f5:72:c4:b6:5d:56:4c:3b:c3:36:2e:1d:06:6b:4e:a2:1e:
e7:c7:ad:69:e4:40:82:90:e0:79:dd:0a:62:a4:ec:8e:5a:ac:
d3:5d:43:41:01:5b:c0:e2:46:92:bc:f5:ce:ee:bc:98:7c:64:
8f:f1:93:4e:43:f5:44:21:f4:98:0c:3f:23:93:4d:64:38:cb:
b2:e7:07:15:f6:05:77:5a:be:47:2c:3e:c9:43:42:35:91:38:
e5:51:dc:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:17:05 2025 by rpki-client