Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
File: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft (raw, json)
Hash identifier: U6/uAXPSMiRthrGygsNnZ6+K9GvAslV/IDclOeaguTc=
Subject key identifier: 30:23:68:BB:EF:95:1E:F1:9A:60:E0:52:07:84:E5:54:21:B5:1D:89
Authority key identifier: 3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
Certificate issuer: /CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Certificate serial: 0196771EF9B671CDB44FDD7A60EB4D75FE53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
Manifest number: 150F
Signing time: Sun 27 Apr 2025 12:00:40 +0000
Manifest this update: Sun 27 Apr 2025 12:00:40 +0000
Manifest next update: Mon 28 Apr 2025 12:00:40 +0000
Files and hashes: 1: MChEll1heVmbFidBBJvsHOrl4fE.roa (hash: ARoQGxRNkrRdwVI3hmAp61vYLz+zRk9Xivm5xOWKmgg=)
2: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl (hash: 0t7bYfIvSV2N2GxwQFE+xvDcMjzM5dA4JHJHBY6D4jE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 12:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:1e:f9:b6:71:cd:b4:4f:dd:7a:60:eb:4d:75:fe:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590
Validity
Not Before: Apr 27 12:00:40 2025 GMT
Not After : Apr 28 12:00:40 2025 GMT
Subject: CN=302368bbef951ef19a60e0520784e55421b51d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:10:ff:12:23:02:ab:4e:67:6a:21:1b:ce:8c:
db:5c:0a:c0:f4:ab:85:ff:8c:ab:06:0b:39:8b:25:
8c:a2:22:39:ef:c1:f9:b8:fc:2f:86:54:ab:57:51:
64:e1:25:93:4d:0a:e1:79:f7:f3:db:bb:a7:2d:82:
e4:a8:2c:a6:be:23:81:92:47:0b:7c:53:73:8b:60:
cd:1d:d8:87:c4:15:40:15:6c:0b:69:5f:b0:95:1c:
03:99:01:83:22:f8:de:1c:2c:88:24:12:ef:00:96:
8b:57:d9:d3:ce:bf:7b:b6:0c:3e:44:b4:aa:4a:ee:
90:21:ad:1c:78:e4:15:36:78:48:71:cd:db:e6:e8:
5a:f6:8d:f3:cb:14:22:84:95:b8:f5:ae:0f:11:db:
d1:b8:7c:52:d3:a1:95:4d:b5:2d:cf:9e:f6:40:51:
e2:6b:fb:07:dd:e2:25:e5:c5:c2:ea:82:56:87:7f:
44:25:51:1f:0e:86:cc:f4:1d:f3:ec:f4:ad:a3:b1:
6a:46:8b:3c:52:87:c3:a6:2e:91:26:0b:8e:19:42:
48:ed:cb:61:79:82:8b:3e:7a:aa:59:e0:9e:07:b7:
8c:62:d0:ae:61:bc:51:6b:60:ee:4c:51:8b:30:7c:
0f:fe:25:a6:55:8f:74:dc:2e:4b:9c:81:98:7b:1d:
7e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:23:68:BB:EF:95:1E:F1:9A:60:E0:52:07:84:E5:54:21:B5:1D:89
X509v3 Authority Key Identifier:
keyid:3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:0f:74:94:dd:9d:33:fd:83:3f:13:c1:58:ab:e4:fc:83:da:
06:6b:27:12:9a:15:4d:7b:35:eb:ec:31:15:2d:dc:4f:0b:96:
f6:df:f6:29:04:a5:dc:4f:0e:5d:c0:89:ec:74:45:79:73:e5:
d5:90:f3:04:2a:85:4f:b5:78:5e:fc:41:1b:d7:05:c7:7a:20:
89:40:9a:8f:13:e8:88:a9:b3:5f:5e:6d:1c:ae:c0:d5:ab:cf:
c5:92:47:8a:36:05:33:ce:44:fb:5e:5e:3c:d5:48:dd:67:ab:
26:4a:0b:6e:37:99:7f:21:5b:73:67:6f:c6:e0:53:20:77:aa:
bb:31:0b:bf:82:ba:19:51:db:22:4d:f5:88:5e:0d:f3:51:4c:
cd:70:b7:fc:95:dd:ab:a1:79:eb:22:e0:ec:05:25:8f:94:47:
77:a9:9e:b9:bf:b7:f6:e6:18:8f:73:5f:28:5d:2a:c1:af:14:
f2:70:3c:94:90:cb:0c:6b:41:4e:47:bc:ca:b4:34:33:e9:5d:
03:14:d6:e3:e2:03:da:60:f9:1e:a9:6e:0e:65:ab:43:87:25:
69:e4:d3:db:4f:fe:1c:b1:02:7d:0b:bb:df:4e:0d:63:71:7c:
77:77:c8:46:bd:dc:e6:c0:a4:9c:57:03:06:54:f2:a1:74:a9:
92:e7:dd:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:11:08 2025 by rpki-client