Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: qhQrFKK2M1KHAE4PGZ88rlUEnR7VSIu9T+rmWWTJSqw=
Subject key identifier: 90:2A:AB:8F:EE:3A:C8:F2:8B:73:A3:3E:72:F1:93:A7:71:97:E2:7A
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 01968134A91C36035E2AC2191AEAA8AF57BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 1A
Signing time: Tue 29 Apr 2025 11:00:34 +0000
Manifest this update: Tue 29 Apr 2025 11:00:34 +0000
Manifest next update: Wed 30 Apr 2025 11:00:34 +0000
Files and hashes: 1: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: 81xHqqW6K0CoNk29K1nxXh2dam0yq4/S7yNOpK5urVA=)
2: cvTvlJFXIrx4LNBKFN32BnQowu0.roa (hash: 2SQfqAvlePWceYDa/Gr4IqsSS7uQeMq3g8yyqM6DnK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 11:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:34:a9:1c:36:03:5e:2a:c2:19:1a:ea:a8:af:57:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Apr 29 11:00:34 2025 GMT
Not After : Apr 30 11:00:34 2025 GMT
Subject: CN=902aab8fee3ac8f28b73a33e72f193a77197e27a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:86:f1:04:f2:56:c3:08:33:ce:ca:27:51:03:
3e:21:48:18:1a:3b:46:97:16:f7:77:30:9e:f5:dc:
3a:c1:e5:28:3f:49:cf:19:90:fd:0b:e7:b2:83:90:
20:32:28:73:d9:43:ca:f5:05:56:db:ed:2c:36:24:
9a:44:16:8c:93:7c:af:a4:01:5d:75:09:55:14:0d:
ad:8a:aa:60:a4:f5:40:65:b0:a0:bd:3e:b0:a9:c8:
13:0a:ef:c3:f0:58:88:dc:2b:57:37:e3:5e:d5:ea:
29:5a:f3:5a:ab:bf:23:27:82:07:96:79:5e:fd:bc:
23:da:3d:fd:7e:ff:54:0b:cb:85:93:77:21:f1:03:
a3:96:e4:dd:6a:a4:3a:31:94:8f:73:41:dd:70:83:
b9:94:1b:62:a3:55:dc:2f:f9:b0:50:0e:f8:17:8d:
0c:90:1f:4e:e7:1d:f7:e0:6a:51:62:3c:1e:08:26:
cf:b1:ed:bd:2e:b8:9a:09:1e:fb:d1:9a:3e:da:37:
f7:46:a6:10:8a:04:a2:4a:54:7e:f5:44:85:6c:c7:
65:88:7b:f5:e4:56:ae:92:86:25:ed:e4:59:6d:8e:
ca:ef:62:eb:bf:53:ad:fc:38:a3:8a:b0:a3:3b:22:
1f:7c:d6:c6:8f:15:13:4f:44:bf:58:df:6d:fc:a6:
ab:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2A:AB:8F:EE:3A:C8:F2:8B:73:A3:3E:72:F1:93:A7:71:97:E2:7A
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:62:43:05:c8:71:d4:43:3b:18:59:f4:f4:db:82:f2:60:95:
38:f6:8d:7f:e0:1d:39:a2:fb:23:e3:44:d4:ce:11:f2:95:7a:
21:6d:42:c8:94:92:b0:49:8f:d3:5b:95:f0:cb:07:c2:94:f2:
1b:af:c3:38:19:dd:ea:5a:91:20:23:eb:0d:66:ca:41:d4:c7:
37:0b:5b:6c:6c:7a:cd:f3:19:62:60:9a:29:8d:be:ad:e3:27:
0e:7d:6f:49:29:19:09:51:1e:2c:9e:e3:25:80:45:76:5f:f4:
ea:8f:e7:69:07:bd:6e:e5:1c:17:d3:30:6d:88:50:4b:e7:26:
39:36:e3:89:a4:57:c9:3a:f6:58:45:2a:a8:ab:b5:dc:c9:78:
f6:1e:bf:33:5f:19:b9:eb:30:f8:a2:d5:ca:15:3d:1c:e0:69:
87:24:74:6c:46:50:70:b7:92:25:4d:b6:3a:4f:41:7b:6f:28:
cd:f8:ae:c9:6c:39:bc:89:25:26:d2:ba:e7:4f:e6:c8:48:df:
6e:32:ac:dd:12:d2:89:69:8d:f9:cb:9f:a3:5c:2c:e5:12:7e:
6d:83:b2:c2:92:27:42:93:86:cf:23:2a:18:12:4b:b2:fb:1e:
f5:d6:b4:82:6d:80:c9:e7:06:1e:8c:f5:0c:dd:cd:c8:99:57:
c9:b9:8c:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 19:51:09 2025 by rpki-client