Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: nKpn6M4yLj6+IEdOYSIevWh+h83XQYMRbV3xrSQoCy8=
Subject key identifier: BF:78:B2:2D:B5:5A:7D:1A:00:98:30:79:DC:31:D0:FA:5D:B6:E7:8A
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 01967341CCAA2E73D21EEC3F1CB150666D9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 06C6
Signing time: Sat 26 Apr 2025 18:00:14 +0000
Manifest this update: Sat 26 Apr 2025 18:00:14 +0000
Manifest next update: Sun 27 Apr 2025 18:00:14 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: 2DDfXUiH85YC1X3PgfdtyKVgjPw.roa (hash: IX38bNkkduAXN8SBzl133Uzin5uXQV9chMH9hhrcGco=)
3: 5O5OsM3NhBX9ufi05PLP13l29To.roa (hash: 3SSp0jqDRZlrWNGbYWPuIP2g5yvlTpjsrbIVea72fZ0=)
4: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: QSNjNwWlIPQBOo566fSIx/mlihx/iTEdEf4fIW0rJJ8=)
5: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:41:cc:aa:2e:73:d2:1e:ec:3f:1c:b1:50:66:6d:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Apr 26 18:00:14 2025 GMT
Not After : Apr 27 18:00:14 2025 GMT
Subject: CN=bf78b22db55a7d1a00983079dc31d0fa5db6e78a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6f:6c:1e:94:a6:4f:5a:aa:aa:64:16:b0:91:
15:1e:5e:3d:c6:82:cb:3d:99:cd:a8:3a:48:3e:50:
c4:10:99:1b:6d:dc:c3:9e:a1:ac:2a:2c:ee:34:da:
f3:e4:53:19:91:c5:81:9a:d2:40:2b:23:85:9a:3d:
95:dc:dd:72:3c:9b:cd:2c:0a:48:1e:ca:5e:6a:6f:
27:77:46:85:bd:e8:fd:57:55:44:bf:7e:aa:5a:3c:
7b:02:7c:24:79:30:2d:fe:c6:50:2b:25:10:00:25:
51:a3:af:44:2a:9d:00:2b:97:60:58:6e:f3:a9:eb:
da:07:09:e2:2c:e4:e6:54:8d:32:a8:cc:a2:d4:3b:
bd:8f:5f:5c:3d:fb:04:97:65:e3:0f:ac:03:d9:9d:
12:13:15:83:85:c7:17:78:68:6f:c4:a4:22:3e:94:
86:34:82:92:76:ee:4c:b3:98:d6:84:b0:5c:97:1d:
8d:56:89:ab:93:65:42:28:f2:42:d4:72:c2:e7:e4:
a9:96:1b:4f:b0:94:fa:5a:a5:9a:77:20:10:49:75:
2d:33:11:54:b8:06:91:8c:4e:97:bc:81:ec:32:0d:
12:dc:b3:60:c4:31:8f:20:fd:3e:2c:85:5c:fc:32:
36:25:f3:50:1c:8a:de:57:91:cc:76:dd:00:6b:09:
c8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:78:B2:2D:B5:5A:7D:1A:00:98:30:79:DC:31:D0:FA:5D:B6:E7:8A
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:61:b9:f6:9c:7b:9a:03:af:37:aa:9e:2a:3e:a9:77:98:7e:
68:7e:87:33:b7:d0:27:15:6b:e6:af:f9:45:02:83:82:cf:75:
8d:a2:40:75:62:bb:da:20:b4:86:73:06:ec:1a:fd:eb:3e:4d:
30:0f:f4:fe:d9:4a:f4:6e:f8:53:15:a3:0e:a1:33:a6:68:9a:
d8:63:bd:ee:02:25:48:f2:20:49:78:a8:9e:05:e5:b8:ef:0e:
41:7a:53:35:2b:c5:79:71:b2:79:c4:89:3c:d3:80:ac:1a:ac:
10:fe:46:0c:71:a8:47:dc:5a:e3:a5:cd:7c:fc:77:8b:03:21:
1a:7a:93:ea:bb:f5:01:12:e3:b5:2e:2c:e2:60:24:c7:17:e2:
47:cf:57:64:24:81:5f:9e:f4:35:09:91:ec:57:7f:10:bd:53:
96:29:ec:90:b2:5d:39:56:62:1b:c7:35:96:24:29:ba:7a:55:
ac:63:15:7f:d4:cc:70:71:2c:7d:d3:c4:5b:51:c4:8f:cf:03:
58:bb:56:8b:cf:b7:44:bb:a7:38:6c:a0:b8:49:73:2e:f5:ad:
ea:83:1f:1d:12:ae:24:90:18:8b:99:40:fd:d3:1b:96:81:ed:
40:c0:c5:5f:e4:eb:33:20:ac:c7:b1:08:fd:6b:13:ef:90:e4:
27:e5:95:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 00:11:23 2025 by rpki-client