Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
File: oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft (raw, json)
Hash identifier: fs1gHBkJqtNZLFLEhCGZ6gmb+kPyPiWtGTj9j1W8lQY=
Subject key identifier: 1D:AF:10:74:F2:80:E0:F4:AD:60:35:12:42:F9:15:F0:AF:58:C4:23
Authority key identifier: A1:35:7A:7D:0F:03:2E:9C:DD:4A:03:1D:52:D3:B4:04:7C:03:94:1A
Certificate issuer: /CN=a1357a7d0f032e9cdd4a031d52d3b4047c03941a
Certificate serial: 019682EC202A031CF6E07E6CC7929FC10DF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
Manifest number: 1513
Signing time: Tue 29 Apr 2025 19:00:34 +0000
Manifest this update: Tue 29 Apr 2025 19:00:34 +0000
Manifest next update: Wed 30 Apr 2025 19:00:34 +0000
Files and hashes: 1: oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl (hash: wEZaQMWzL7wTxBI8VS0iZUiZVI/QZbB3a3CFAusycCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 19:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:ec:20:2a:03:1c:f6:e0:7e:6c:c7:92:9f:c1:0d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1357a7d0f032e9cdd4a031d52d3b4047c03941a
Validity
Not Before: Apr 29 19:00:34 2025 GMT
Not After : Apr 30 19:00:34 2025 GMT
Subject: CN=1daf1074f280e0f4ad60351242f915f0af58c423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:85:4c:54:3b:82:2b:1a:a6:96:e2:8e:f4:d6:
76:db:8e:25:f5:fb:50:6c:5f:d3:7f:87:ff:50:9b:
87:6a:5b:27:ec:34:2e:07:2c:2b:ee:fa:45:fb:7e:
42:17:2f:16:a4:81:cc:5e:f3:fe:2a:13:00:85:5a:
4b:25:08:c9:9e:1c:ce:ea:18:29:ab:43:bd:5d:a3:
7e:81:af:ae:d3:fa:d3:66:98:57:e4:18:0a:46:1c:
30:69:a7:4b:42:57:9e:99:c8:0a:fa:ae:f3:e0:10:
09:06:68:ab:c7:44:3f:d6:6c:7d:e9:fb:52:0c:11:
8b:1f:95:28:8d:f2:1a:e9:03:3c:94:a0:30:d1:89:
ed:14:4d:50:5a:53:cc:10:8c:96:c3:ca:d6:94:0a:
e3:c1:55:b9:da:9f:ae:a2:22:ab:31:2f:bc:3c:1a:
7e:fe:ca:61:fb:f8:77:0a:a8:88:a2:2d:31:a4:cd:
0d:27:e7:f4:61:be:53:92:56:03:75:f0:7a:d0:9f:
8c:0b:7b:9a:03:f0:7b:d5:76:8c:ab:25:6b:15:c8:
13:3b:96:a7:86:c6:c7:0c:37:60:70:cb:50:77:af:
26:a7:a6:92:8e:2e:02:55:f7:59:f7:1c:ae:71:db:
05:64:6c:d7:20:b4:a0:dd:da:9e:af:e1:e4:ad:1a:
7b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AF:10:74:F2:80:E0:F4:AD:60:35:12:42:F9:15:F0:AF:58:C4:23
X509v3 Authority Key Identifier:
keyid:A1:35:7A:7D:0F:03:2E:9C:DD:4A:03:1D:52:D3:B4:04:7C:03:94:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:35:b5:f0:5c:f3:c3:5d:a5:08:f1:46:17:8c:32:a2:1b:8e:
10:e9:34:3d:ea:e5:4b:ba:b2:0d:17:86:99:4e:c7:13:ff:ec:
a1:e3:4d:d1:a8:53:97:03:bf:26:56:05:57:d4:0e:40:d8:80:
13:0c:cc:37:32:d7:0f:3b:d2:f5:79:0b:9c:c5:22:8a:72:80:
84:60:77:19:2a:e2:24:55:08:b0:7b:46:93:3d:ff:4e:83:45:
c5:46:b0:47:66:a2:d5:ce:56:e1:34:0b:33:15:e2:23:1a:1b:
69:7e:ff:e7:bf:f9:65:1d:22:12:1b:2f:e3:a1:dd:c2:d8:17:
79:58:70:50:12:e7:a1:b3:e1:ca:91:d8:0e:32:ed:fd:dd:e3:
fd:62:f0:87:e7:ec:f7:28:b8:bb:ce:5f:5d:7f:2f:2b:ef:f0:
fb:c8:18:28:79:d0:bc:ad:04:e5:d7:7b:88:46:b8:34:9b:86:
44:11:34:4d:04:61:72:0a:2b:b6:0b:cc:bf:d3:87:0c:b8:bb:
75:50:b7:12:83:c7:80:c1:1b:e7:dc:3b:a7:0f:55:02:0d:2c:
79:d3:6c:42:e1:be:42:0d:67:b6:a2:ad:29:e4:4f:c3:88:78:
6f:df:d5:66:61:b5:9b:d5:b5:c4:6f:48:83:01:3f:5d:1b:1e:
73:6c:a7:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:45:01 2025 by rpki-client