Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
File: otP5vJZWutwm594auw-nLD1yjdg.mft (raw, json)
Hash identifier: BCvc/5yUC3sfif9M66Se8Q0d94vDiEYrM4rc3ZJ8b0s=
Subject key identifier: F3:65:31:E8:43:0A:04:44:3B:98:1A:39:53:C8:E5:82:AC:8B:1F:E6
Authority key identifier: A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
Certificate issuer: /CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Certificate serial: 0196767AA888439F2C56BAD11899BB502746
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
Manifest number: 0174
Signing time: Sun 27 Apr 2025 09:01:12 +0000
Manifest this update: Sun 27 Apr 2025 09:01:12 +0000
Manifest next update: Mon 28 Apr 2025 09:01:12 +0000
Files and hashes: 1: otP5vJZWutwm594auw-nLD1yjdg.crl (hash: +X9EGk4P9QZwwld8qRrx4magT7ddCtKXVy2hK5FHeNQ=)
2: yntKueGdh_gRYfTjbFRGz4s6BD8.roa (hash: 8wVmYZSgIm0dCsPvd2oqoO7MS+FukiT5t5Ke1EaX2FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 09:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:a8:88:43:9f:2c:56:ba:d1:18:99:bb:50:27:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Validity
Not Before: Apr 27 09:01:12 2025 GMT
Not After : Apr 28 09:01:12 2025 GMT
Subject: CN=f36531e8430a04443b981a3953c8e582ac8b1fe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b4:2a:cf:00:b6:b1:d8:33:13:3b:35:9a:0c:
1e:6d:28:2c:b8:2f:97:f7:d4:31:6a:11:ef:66:9a:
4b:a4:87:12:bb:19:1b:ad:e2:bd:82:79:63:27:33:
f1:22:66:c2:37:cc:ae:b5:c7:36:93:23:6f:1d:5d:
e5:4e:c5:2d:6f:2e:fe:ac:47:59:54:15:8d:8e:90:
e5:4a:9e:bd:cb:5d:d6:7b:ee:38:e9:6a:31:47:c3:
c1:46:f9:87:f0:d6:0d:06:24:af:81:22:58:02:62:
00:27:ee:32:1f:5a:a2:b3:36:d0:29:7a:1f:ce:42:
81:5b:e1:0f:a9:56:dc:67:54:5a:13:b2:0a:08:a4:
89:04:08:f9:37:0f:2e:0e:07:4e:f8:84:0b:77:0f:
e1:a4:89:5e:f8:da:3e:ab:97:60:c6:5d:2a:b8:a2:
2b:f3:7e:63:6b:1b:b3:ea:38:8e:d4:a7:94:5a:0f:
7b:f5:3f:0c:ae:20:c1:4a:6c:52:d0:f9:4d:c2:37:
9c:8b:cd:4e:bc:32:09:e7:77:37:b3:4e:d8:55:b2:
c2:92:42:ea:a2:22:1e:33:f4:4c:da:6f:2b:0f:d1:
f0:76:d0:77:2c:c5:07:a4:54:2f:94:69:3f:10:ed:
19:b7:90:fb:21:15:76:23:aa:bc:5d:49:80:39:0d:
90:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:65:31:E8:43:0A:04:44:3B:98:1A:39:53:C8:E5:82:AC:8B:1F:E6
X509v3 Authority Key Identifier:
keyid:A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:6e:c2:b9:ff:82:3e:37:4a:59:13:1d:ab:d9:44:6b:fa:90:
ed:47:ec:e2:50:3d:dc:13:7c:7a:cd:89:33:0d:98:49:8c:11:
a0:4e:76:2f:7f:7b:44:c8:8e:18:bd:88:70:de:e4:b7:0c:1a:
4a:65:16:54:d4:39:0a:55:4e:da:88:67:bf:f7:63:cc:02:f2:
dc:40:e5:40:d1:ca:b1:c1:0a:30:64:64:fd:68:22:9b:0a:bc:
4d:c6:81:1a:a2:ec:78:82:a3:89:7e:e4:58:9f:6a:b7:cf:33:
c2:fd:01:da:5d:28:a3:8b:81:cf:71:5b:7d:b1:07:42:66:4c:
d0:42:b1:e2:75:ef:c1:70:1d:e4:39:1f:28:91:4d:4a:5e:67:
d3:d2:fb:c4:a9:e9:4a:8d:7a:dd:61:15:b2:98:c4:d8:c4:d0:
9a:86:88:72:40:fb:72:7a:73:96:04:f9:6e:6e:4d:cd:d7:e3:
a4:77:c9:3e:54:06:1a:4f:10:8f:93:33:94:f4:84:4d:49:18:
a6:82:77:53:91:88:d6:41:72:60:3f:c7:7b:b9:35:54:0b:55:
84:02:f3:a0:b8:6c:91:14:f1:33:a0:92:4a:34:80:3c:6c:da:
13:e2:d0:6d:60:db:f6:f3:e9:e5:40:15:05:49:44:7a:ab:92:
0b:46:5d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:09:49 2025 by rpki-client