Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/3b4d8e-06e8-4ea2-927b-a79630b06d93/1/OndQiZTKTSzBidNfM4KiqKtXuEs.mft
File: OndQiZTKTSzBidNfM4KiqKtXuEs.mft (raw, json)
Hash identifier: rgk5ESQq/wff2YjUu9Co/yUNUssZ3w7HWv0zGUPvX4c=
Subject key identifier: 64:EE:A2:05:39:70:DC:38:F8:BB:FC:E0:E9:78:FF:96:8E:AF:0F:80
Authority key identifier: 3A:77:50:89:94:CA:4D:2C:C1:89:D3:5F:33:82:A2:A8:AB:57:B8:4B
Certificate issuer: /CN=3a77508994ca4d2cc189d35f3382a2a8ab57b84b
Certificate serial: 0196526D602453833C2C54C292DFC612CB4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OndQiZTKTSzBidNfM4KiqKtXuEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/3b4d8e-06e8-4ea2-927b-a79630b06d93/1/OndQiZTKTSzBidNfM4KiqKtXuEs.mft
Manifest number: 05E1
Signing time: Sun 20 Apr 2025 09:00:21 +0000
Manifest this update: Sun 20 Apr 2025 09:00:21 +0000
Manifest next update: Mon 21 Apr 2025 09:00:21 +0000
Files and hashes: 1: OndQiZTKTSzBidNfM4KiqKtXuEs.crl (hash: IHn1ZamNSN4FI8T/iIeqLa2bcIlZfFduE39BuSILb0c=)
2: Wwk65fWkkC0KWWHed6RDHU5zdWE.roa (hash: OdE2ZmnpDqD8iDsUuCtPuylwN6Gs7CMSGI3EhFPXcxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/3b4d8e-06e8-4ea2-927b-a79630b06d93/1/OndQiZTKTSzBidNfM4KiqKtXuEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/3b4d8e-06e8-4ea2-927b-a79630b06d93/1/OndQiZTKTSzBidNfM4KiqKtXuEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OndQiZTKTSzBidNfM4KiqKtXuEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 09:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:6d:60:24:53:83:3c:2c:54:c2:92:df:c6:12:cb:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a77508994ca4d2cc189d35f3382a2a8ab57b84b
Validity
Not Before: Apr 20 09:00:21 2025 GMT
Not After : Apr 21 09:00:21 2025 GMT
Subject: CN=64eea2053970dc38f8bbfce0e978ff968eaf0f80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:53:46:64:45:3c:b9:11:2c:30:d8:68:f3:cf:
58:d4:02:87:f4:1a:5b:7f:68:cf:30:d2:b5:59:9c:
11:a8:0a:cb:2a:ac:57:a1:cb:c8:42:30:f9:8b:f9:
0e:ce:e2:a4:fe:04:9e:de:58:37:97:4c:74:1e:80:
82:fc:84:8a:c8:20:0b:b1:ce:1d:86:2d:2d:32:c0:
b8:6a:f9:8a:27:61:02:7e:18:68:eb:9a:ba:79:69:
72:f8:44:7f:e7:74:f2:70:ac:1f:8f:55:a9:9f:3f:
40:2d:b4:41:50:b5:56:d4:ba:b0:7f:36:74:e1:5f:
e0:42:01:4b:bf:4f:2e:28:24:cd:52:7a:c3:dd:25:
b1:5a:ad:06:94:57:f3:a9:30:3b:a1:c9:68:5d:87:
91:5b:03:88:60:02:b2:30:a1:91:13:3e:23:c2:d3:
d8:bb:b0:a5:17:af:5d:d2:3f:7d:d1:06:06:0e:bb:
9a:91:8f:06:c9:cf:a3:4c:06:cb:ae:3a:5a:cc:4b:
f0:d1:dc:a2:9c:63:a7:f0:6e:eb:91:95:d0:ba:2c:
ca:8b:90:b5:a2:00:c3:22:2f:cb:86:34:8f:68:31:
31:03:75:bf:e4:7d:63:c8:68:bd:e0:d0:b9:c1:43:
a6:76:34:3e:10:69:5b:ff:69:90:9c:0e:f9:21:b3:
03:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:EE:A2:05:39:70:DC:38:F8:BB:FC:E0:E9:78:FF:96:8E:AF:0F:80
X509v3 Authority Key Identifier:
keyid:3A:77:50:89:94:CA:4D:2C:C1:89:D3:5F:33:82:A2:A8:AB:57:B8:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OndQiZTKTSzBidNfM4KiqKtXuEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/3b4d8e-06e8-4ea2-927b-a79630b06d93/1/OndQiZTKTSzBidNfM4KiqKtXuEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/3b4d8e-06e8-4ea2-927b-a79630b06d93/1/OndQiZTKTSzBidNfM4KiqKtXuEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:fd:02:4f:6b:3a:a4:8d:0b:4e:d5:9f:3f:a6:94:a1:30:fa:
2a:fe:55:98:41:14:80:13:2d:ad:d8:1c:d8:be:89:e3:96:b7:
b9:d6:13:21:6b:81:5d:e4:f8:8a:29:65:fb:5f:4e:6f:ef:2d:
aa:ee:4f:13:dc:a1:39:8f:c0:48:2f:db:de:3c:4b:ae:b7:64:
13:a3:68:1a:4c:38:bd:a6:0a:26:19:65:cc:d5:50:b3:f5:bf:
c1:10:1d:d5:fa:f7:11:d4:ff:a1:a7:0c:27:b0:16:4c:55:78:
d1:b0:15:46:30:42:14:df:1a:c4:cf:ba:0e:c6:3b:97:41:c8:
f8:12:50:b7:b9:b4:d6:1f:4a:58:dc:ee:99:4a:5e:d6:2e:64:
1b:24:44:59:cd:d2:2d:7b:b2:b8:3a:18:58:64:fa:ec:44:a3:
2d:af:56:d3:57:14:d2:57:e2:4c:55:22:bd:0d:ce:65:2b:b4:
95:7d:b6:14:f3:a9:da:4e:d2:4e:a2:0a:3f:0b:3f:2f:0d:ee:
48:e8:ae:da:a1:08:1b:80:a1:4b:c0:f9:4d:a7:a3:f1:6c:21:
26:90:8b:eb:a9:5a:8d:33:c6:e3:99:fb:7d:36:82:c8:36:aa:
99:95:8b:c6:b2:db:a5:98:3b:f2:f0:88:8e:ae:22:03:1c:95:
b9:df:7b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:37:42 2025 by rpki-client