Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: dTfdD2oewiV9c7w9BMrF7Jw8wysrfQBbDsAB57MxFUY=
Subject key identifier: 63:7F:A8:DE:C5:8C:F0:76:1C:EA:3C:22:F7:B2:21:A5:54:9F:0F:B9
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 0196723049CB036408AE62D6445A4EB90ED7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0BB2
Signing time: Sat 26 Apr 2025 13:01:29 +0000
Manifest this update: Sat 26 Apr 2025 13:01:29 +0000
Manifest next update: Sun 27 Apr 2025 13:01:29 +0000
Files and hashes: 1: MdL7TM_8FI4FSNKpOGmHEkxh3Ic.roa (hash: kNSd9iF0Y8DMXrvxWEyFS2FyQT8gup1m11Nuuk6HbNM=)
2: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: MUWG6p5qJdGz+f5ey+3D7S+BLcn5gwhgIdR4eQBjcP8=)
3: cwI21tJzYqOr9HSPPCz6L9ZgwVI.roa (hash: XU/ushJjB+n9xmj9cQdOxUY6BAOcpjTXGMQ5mCVCcNA=)
4: nKxYgxU46C1nM-kLwKHXoqpeCuk.roa (hash: acmNPfWY5Vqfewon1zfQxYgK/f0iZyi1LFngzxJT1rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:72:30:49:cb:03:64:08:ae:62:d6:44:5a:4e:b9:0e:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Apr 26 13:01:29 2025 GMT
Not After : Apr 27 13:01:29 2025 GMT
Subject: CN=637fa8dec58cf0761cea3c22f7b221a5549f0fb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:dc:90:b1:ea:9d:b5:fc:90:d7:bb:34:f5:8b:
b4:1b:27:ce:d4:55:98:29:b4:65:eb:5a:b0:0c:d8:
60:66:6f:db:96:86:95:17:c5:65:ea:86:11:94:95:
85:a8:1d:f6:a6:fc:4e:67:28:ee:c8:0f:bd:80:fa:
fb:29:9a:00:8a:1a:72:b5:92:e6:4b:5c:1b:08:ef:
27:56:78:30:bb:e9:1c:4b:b9:b0:1c:b7:d6:b9:5a:
d7:f4:62:fc:67:f6:90:61:03:5b:38:7e:31:84:b3:
98:27:a1:a9:6d:83:0e:f8:6a:3e:23:2a:e2:13:9d:
68:67:7c:e7:b3:bc:87:16:d9:f2:5d:4c:e3:11:49:
99:b9:cf:99:2b:f3:1d:a5:c0:0b:6b:2b:94:ab:1e:
1f:a2:e2:17:cc:80:7e:08:ba:55:16:48:37:25:2b:
72:71:cf:ac:9b:ea:4e:39:48:99:ae:0a:65:7f:5d:
79:77:1e:53:cf:9c:5d:82:35:66:86:da:08:39:dc:
9a:03:68:e6:a9:2a:50:c5:c8:16:9d:77:ee:47:7e:
38:21:2d:20:17:92:32:65:d1:8e:a9:49:d1:82:49:
2d:7f:4f:db:e1:6a:66:27:9f:28:f7:e0:4f:aa:5a:
23:d8:fc:01:36:95:97:8e:e2:81:96:89:17:bd:45:
81:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:7F:A8:DE:C5:8C:F0:76:1C:EA:3C:22:F7:B2:21:A5:54:9F:0F:B9
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:76:45:ae:02:37:c8:d5:ec:c9:f0:5a:d6:6c:b0:fa:40:f8:
fe:11:d2:93:d7:be:0c:69:dc:05:d7:b1:ad:fb:4b:17:71:9b:
8e:da:c6:f9:6b:a9:83:b4:1f:b9:45:20:7e:a7:53:5f:3b:6e:
c7:c5:b6:82:63:7b:3f:29:e6:83:2d:db:6b:05:4c:68:18:39:
78:3d:c6:7e:7b:f7:13:64:87:a9:dd:ce:b9:05:c0:f3:75:ae:
3c:0a:2c:bb:3f:1d:c6:41:be:5a:72:e9:8e:2d:fe:ce:b1:06:
da:e7:05:63:eb:18:00:c9:b4:ec:67:9c:33:bc:85:c3:80:42:
67:df:55:35:0f:0c:55:c0:91:bf:aa:9e:0b:3e:51:52:35:04:
d9:ae:b9:bd:67:12:63:ba:c2:e6:35:6f:6d:93:89:1c:4c:4d:
75:54:16:1d:55:1b:f3:bb:4a:97:0e:fb:e6:6b:a0:97:13:1d:
2f:c6:67:7c:4f:82:e4:d1:2f:fb:22:00:10:74:07:ee:19:30:
a7:7e:0b:4f:7b:31:e6:81:78:96:75:5b:d4:3a:bf:7d:87:67:
68:51:4a:f6:27:88:30:5d:ff:1d:dc:01:80:e8:a2:ae:d4:89:
bd:1c:b4:d3:28:7c:60:23:aa:da:4f:0f:9c:aa:7d:d6:3f:90:
39:df:84:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:59:34 2025 by rpki-client