Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
File: Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft (raw, json)
Hash identifier: NMmlA6TrRo7aTuh+KH3aNpcjftfFTyWGhfR5SvJicxI=
Subject key identifier: 23:4E:F3:23:E9:B9:33:B5:0A:50:3F:68:29:98:92:5B:C6:B1:2B:97
Authority key identifier: 3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
Certificate issuer: /CN=3adfd48a97720cd854029ddb266c51f91f07670d
Certificate serial: 019653805E4DAF2D33EBB929494156534B6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
Manifest number: 0AFD
Signing time: Sun 20 Apr 2025 14:00:43 +0000
Manifest this update: Sun 20 Apr 2025 14:00:43 +0000
Manifest next update: Mon 21 Apr 2025 14:00:43 +0000
Files and hashes: 1: Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl (hash: fcTKs17ekt3kz2drrxEFq/iB79QvsOhMv7ZKKFZ9SZ4=)
2: vm_KzfoiY4cVzVJi9fJVQUcZlJs.roa (hash: lyBGyAokiSjopS7O45WDbuUZk8SIrQSCpnYKsmtEQ5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 14:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:5e:4d:af:2d:33:eb:b9:29:49:41:56:53:4b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adfd48a97720cd854029ddb266c51f91f07670d
Validity
Not Before: Apr 20 14:00:43 2025 GMT
Not After : Apr 21 14:00:43 2025 GMT
Subject: CN=234ef323e9b933b50a503f682998925bc6b12b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2d:29:6b:19:1d:f0:17:31:03:f6:6e:39:1c:
d8:37:c8:fd:29:9e:3c:93:3c:74:04:dd:a5:48:e7:
5f:94:6e:c1:0d:ca:bd:ac:0a:45:c0:33:30:c1:19:
b2:a1:c9:ca:40:01:5a:7f:9f:e3:5d:98:b6:9c:04:
00:04:5d:41:50:86:b4:c1:d4:59:9c:d1:3c:f5:69:
fb:55:ef:0a:4a:27:8a:3c:94:bf:31:11:ac:b8:b2:
4c:5f:dc:82:8d:7b:5d:2e:c2:a7:62:84:a1:36:7f:
c5:66:b1:c6:f9:d4:aa:26:5e:88:bf:bb:d6:d5:bd:
f6:2f:19:1e:d7:a5:25:c7:e8:9d:44:75:ae:24:07:
10:6f:25:ff:92:d8:a4:cc:fc:f5:6a:ed:2d:06:e8:
ad:42:e3:da:04:e0:4d:1d:23:9a:6b:89:47:4a:8d:
f9:e3:bc:56:9b:b1:dd:23:9f:70:f6:45:16:9a:85:
de:72:24:f9:23:24:54:08:f1:cd:71:40:0d:3c:94:
c3:b0:24:d6:e9:2c:d1:cb:f9:f7:b0:dc:df:12:6e:
02:d1:be:df:92:8d:eb:21:e3:2c:c4:2c:d8:ac:9b:
cc:e3:84:48:53:35:d4:5b:e8:5b:66:27:2a:7e:20:
ac:2d:fe:52:6c:3f:2a:d0:5f:9c:7d:f4:c3:33:94:
a6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4E:F3:23:E9:B9:33:B5:0A:50:3F:68:29:98:92:5B:C6:B1:2B:97
X509v3 Authority Key Identifier:
keyid:3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:d8:4f:13:82:08:db:3f:02:3e:75:74:a9:b2:2c:b6:3d:a9:
e9:02:75:34:98:fd:e3:82:64:b7:9b:0b:6a:35:d8:ee:ee:31:
79:6a:d9:23:7f:7a:cc:0b:ea:7a:7f:7f:52:7c:63:46:b4:ae:
91:d9:ab:52:40:14:63:7b:1f:fe:74:79:25:b4:44:ed:05:73:
80:ab:04:12:72:68:f0:09:54:98:3d:0e:c5:9c:17:87:42:a9:
41:ec:3e:a5:60:91:28:ff:e8:d2:20:a2:18:81:33:d4:5e:29:
76:19:4a:0b:d2:55:83:23:5e:9e:81:3e:23:e8:86:d8:4d:2a:
d5:91:cb:bf:e9:b4:a6:fa:28:a2:45:2e:a2:6f:6b:d5:60:96:
37:28:f5:a4:3b:23:a1:bc:97:5b:aa:c7:04:06:1e:f3:06:ff:
bd:1c:90:ca:99:6c:0b:23:4a:36:54:02:2b:55:0f:1c:19:cf:
70:de:ab:e0:a2:70:3b:57:08:e6:e0:b5:6b:f5:ce:c9:90:a4:
fb:ef:2c:50:30:8a:cb:43:d6:b9:9b:66:68:38:cc:fb:6e:96:
08:6e:10:cb:bf:a1:66:3c:22:8d:55:06:22:38:5c:89:c6:13:
40:4a:43:ea:0f:b1:72:7f:32:68:8c:50:19:91:dc:ef:56:3b:
73:fa:d5:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:19:21 2025 by rpki-client