Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
File: O849R0p3XOR3Y3FjK8GWyh9Owjs.mft (raw, json)
Hash identifier: CEw0nVXm+McGxm0HPLjeHqZeJhlLKOd7EBd1E8x+6go=
Subject key identifier: 5E:69:7B:0A:D1:E4:BF:B2:7F:5B:B2:47:19:F7:7E:5C:36:BB:53:1E
Authority key identifier: 3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
Certificate issuer: /CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Certificate serial: 01969070E58B013C739CDF1F3B8FDDB03267
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
Manifest number: 01B7
Signing time: Fri 02 May 2025 10:00:40 +0000
Manifest this update: Fri 02 May 2025 10:00:40 +0000
Manifest next update: Sat 03 May 2025 10:00:40 +0000
Files and hashes: 1: O849R0p3XOR3Y3FjK8GWyh9Owjs.crl (hash: DMbfGHrRYiL1Wpykw2ZxOfgszOEVICPSpEGwjsQDl+I=)
2: aqZglDYGnEsB53FUZu6hOgHFRNI.roa (hash: PiTo1HXxs70zjyTF54PbMNKhREuF1Fd5QySzyhgibes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:90:70:e5:8b:01:3c:73:9c:df:1f:3b:8f:dd:b0:32:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Validity
Not Before: May 2 10:00:40 2025 GMT
Not After : May 3 10:00:40 2025 GMT
Subject: CN=5e697b0ad1e4bfb27f5bb24719f77e5c36bb531e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5c:42:f6:31:9e:ce:16:54:8e:35:ed:b6:41:
7f:db:54:10:c0:5a:ec:54:df:c6:ad:04:58:48:98:
5c:db:15:ec:13:6d:f0:88:e5:a3:c3:ba:56:52:09:
f9:fe:87:c4:ca:7a:c3:76:ac:1b:dc:5f:dd:ca:7e:
8e:ef:0a:5c:a4:05:61:74:d3:71:f0:f2:7c:43:80:
eb:1e:f5:a2:0b:02:98:61:dd:44:6d:3c:1b:fc:d8:
b9:97:66:32:6e:01:90:4a:44:d1:5c:23:6d:99:8a:
cd:ff:25:43:27:36:de:33:8e:b7:c6:c4:30:73:31:
81:93:ce:78:59:c0:51:0b:e1:9a:28:98:d5:a8:ef:
6d:ea:64:25:75:d3:d0:3c:99:9f:4b:70:55:a6:6f:
fb:bb:71:46:ad:71:97:ad:a5:db:ad:24:9b:4f:32:
d6:d3:37:2d:36:22:dd:65:f5:5a:02:d1:89:e1:da:
e5:c7:f1:45:78:fc:9e:39:ee:ac:bb:f3:1d:a7:04:
2e:a4:5b:6b:ef:e9:89:8f:4f:3d:be:1d:81:6d:0b:
f5:26:99:16:e3:4e:91:19:39:11:8d:fd:6f:af:93:
a3:4b:cb:0f:50:9f:21:02:b7:de:29:09:19:2c:b2:
08:78:c3:e0:5d:e4:8f:6b:7f:00:a2:49:74:f0:ad:
1c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:69:7B:0A:D1:E4:BF:B2:7F:5B:B2:47:19:F7:7E:5C:36:BB:53:1E
X509v3 Authority Key Identifier:
keyid:3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:79:82:a2:96:9e:56:fc:1d:2a:92:5e:6f:39:67:9a:a5:49:
73:38:fd:21:6f:2c:11:07:8f:7b:be:62:c6:d6:d2:5d:53:35:
18:94:cf:24:78:be:58:5c:5a:5f:32:49:a2:e7:69:cb:a3:17:
70:54:01:71:d5:6a:1e:21:a1:09:83:40:a1:bd:33:ff:c8:b8:
28:ad:00:ac:b0:d8:96:5e:d6:27:7b:15:9c:e3:b1:2e:ce:38:
e0:0e:05:8a:1c:4b:60:6a:4f:65:12:6e:8b:4c:07:f6:ee:6e:
0d:29:e7:4f:d2:41:dc:ee:64:e0:a9:83:f1:be:2b:57:f7:45:
49:8e:7b:52:db:3a:27:16:12:db:d3:81:55:23:62:e7:e2:9e:
e3:91:08:fb:82:a1:ca:59:5e:8c:23:19:48:92:b0:01:ab:2c:
b1:d4:bb:f2:26:f3:f1:68:a7:92:f5:77:61:58:55:40:40:1d:
43:61:3a:3c:b7:5b:67:5a:98:50:d8:94:2c:48:af:de:ce:dd:
af:28:ac:1a:89:0f:fa:c6:65:cd:99:1d:32:1b:c0:3e:16:bb:
08:95:b3:42:c2:86:77:ae:16:a4:52:af:cb:67:09:70:b2:17:
26:c8:31:0d:d4:c9:ea:30:e6:ea:d3:18:fb:eb:01:98:35:a0:
db:bc:4f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 20:20:09 2025 by rpki-client