Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/OtXXx76RJlDXFCPNPCUW2pQJ7bY.mft
File: OtXXx76RJlDXFCPNPCUW2pQJ7bY.mft (raw, json)
Hash identifier: sReglw78HSL25Jx0v+vkwZt6NQeZa9mgvMFlx1CNrJE=
Subject key identifier: E4:F2:CA:2D:C0:B5:5E:5A:8E:16:8F:B7:CB:33:D2:3B:DD:F9:00:21
Authority key identifier: 3A:D5:D7:C7:BE:91:26:50:D7:14:23:CD:3C:25:16:DA:94:09:ED:B6
Certificate issuer: /CN=3ad5d7c7be912650d71423cd3c2516da9409edb6
Certificate serial: 01965D963682458D4A1FCD623F87A9AB3B15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtXXx76RJlDXFCPNPCUW2pQJ7bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/OtXXx76RJlDXFCPNPCUW2pQJ7bY.mft
Manifest number: 0344
Signing time: Tue 22 Apr 2025 13:00:47 +0000
Manifest this update: Tue 22 Apr 2025 13:00:47 +0000
Manifest next update: Wed 23 Apr 2025 13:00:47 +0000
Files and hashes: 1: 1r8kB5Z6z_RNw4FuCZ-nelK6Npw.roa (hash: n6aAyuQfPwHavwhm028DG/DEDv2en3wM9tRCOWmzyME=)
2: OtXXx76RJlDXFCPNPCUW2pQJ7bY.crl (hash: E2OahkOSYwVFBBQaPqjPyPhLxITMtrSnSV5rXpl8fa0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/OtXXx76RJlDXFCPNPCUW2pQJ7bY.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/OtXXx76RJlDXFCPNPCUW2pQJ7bY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtXXx76RJlDXFCPNPCUW2pQJ7bY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 13:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:96:36:82:45:8d:4a:1f:cd:62:3f:87:a9:ab:3b:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad5d7c7be912650d71423cd3c2516da9409edb6
Validity
Not Before: Apr 22 13:00:47 2025 GMT
Not After : Apr 23 13:00:47 2025 GMT
Subject: CN=e4f2ca2dc0b55e5a8e168fb7cb33d23bddf90021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5a:6b:78:d6:a0:54:bb:73:53:e5:6d:a5:58:
5a:21:e8:d4:12:e9:76:55:7f:46:d3:42:cd:cf:3b:
d1:c2:36:5c:b8:8e:f9:b0:d7:44:36:a5:0f:55:a1:
a2:02:96:9a:47:02:ab:a4:82:b8:39:39:61:77:ac:
29:e7:c8:f1:60:6e:01:54:01:ea:87:21:ee:d5:99:
2e:83:ce:df:7c:6d:05:e3:43:6a:b0:e4:34:e2:e3:
d3:b7:29:7a:9a:c7:3e:cd:9a:1c:1f:44:d5:69:b7:
4d:fe:60:20:29:38:5c:e5:c2:61:c5:ed:bb:bd:81:
bd:ed:98:20:90:f8:1d:b6:b6:43:a7:22:f5:48:98:
0e:79:58:0f:8f:e0:6f:18:8b:39:d3:68:28:98:54:
2f:40:7d:47:58:e3:32:a5:c6:82:90:36:1f:fd:21:
7b:28:af:82:13:51:8f:23:07:b6:cf:3f:c5:82:ec:
bb:bd:38:77:5b:ef:31:1c:e3:09:2d:22:34:63:9f:
be:2c:55:b0:95:f8:c8:13:0a:48:8e:3d:7d:0e:27:
d5:79:66:4e:c6:e9:2b:ce:b3:d7:ab:23:82:80:5d:
21:dc:49:36:e1:fd:25:f0:24:1f:0f:f6:71:70:9e:
68:13:4b:90:98:3a:79:c2:c4:ca:55:e4:b0:27:98:
59:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F2:CA:2D:C0:B5:5E:5A:8E:16:8F:B7:CB:33:D2:3B:DD:F9:00:21
X509v3 Authority Key Identifier:
keyid:3A:D5:D7:C7:BE:91:26:50:D7:14:23:CD:3C:25:16:DA:94:09:ED:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtXXx76RJlDXFCPNPCUW2pQJ7bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/OtXXx76RJlDXFCPNPCUW2pQJ7bY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/OtXXx76RJlDXFCPNPCUW2pQJ7bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:9c:ee:18:8c:4f:dd:39:9d:79:2d:20:a6:0d:0b:7d:32:13:
0f:f0:ca:ba:8f:db:21:8f:f7:51:55:47:e9:89:c4:8d:ad:28:
ae:d1:33:49:a6:cf:32:0d:fa:a2:e9:d8:1a:02:6e:5a:f6:88:
ed:98:f8:14:47:d8:5b:08:1f:c1:68:46:c9:6c:66:45:75:cd:
95:e6:5c:7a:fd:e8:4d:e7:7e:30:00:c2:c4:04:4e:22:82:3c:
1c:c3:dc:66:fb:77:6b:0b:5e:81:93:c4:d1:a1:53:86:9f:eb:
24:d2:92:a9:4d:98:46:dc:e5:ad:be:ee:04:55:c4:c5:05:b6:
84:fc:16:86:c6:e5:b4:09:92:df:ab:9a:f4:03:bc:92:c8:30:
43:93:33:c8:1d:3e:dd:d8:02:f4:21:e7:c2:65:a1:a1:56:87:
1d:ee:80:fb:be:41:f5:ba:4a:f2:6f:71:88:dc:27:29:e8:0f:
dc:cb:dc:2c:e5:e2:3c:8f:ed:97:ef:81:a3:f8:f3:ca:ce:2b:
44:3e:35:89:fd:52:5d:00:54:4e:89:0a:d2:6c:9a:2a:01:c1:
01:02:c1:ba:c5:50:32:7e:75:70:61:99:33:b4:d3:3b:75:ee:
8b:7f:6d:18:df:48:10:d7:07:c8:89:1f:cd:2d:1b:79:17:38:
fc:28:bf:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:49:20 2025 by rpki-client