Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft
File: OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft (raw, json)
Hash identifier: Izyi+tmHXeGgPOqwXhr7RPqRrOCtcvct+4AjaPCVi5Q=
Subject key identifier: 40:A2:02:D5:57:89:83:B1:DA:74:00:20:F3:A7:2B:A6:9E:A7:0A:FE
Authority key identifier: 3A:74:E0:7C:2D:EF:CA:14:BF:2D:6C:7A:15:D5:A9:33:0D:09:37:48
Certificate issuer: /CN=3a74e07c2defca14bf2d6c7a15d5a9330d093748
Certificate serial: 01965FBB745E95E29EC4092B5F7EA1DC04C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OnTgfC3vyhS_LWx6FdWpMw0JN0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft
Manifest number: 047F
Signing time: Tue 22 Apr 2025 23:00:42 +0000
Manifest this update: Tue 22 Apr 2025 23:00:42 +0000
Manifest next update: Wed 23 Apr 2025 23:00:42 +0000
Files and hashes: 1: OnTgfC3vyhS_LWx6FdWpMw0JN0g.crl (hash: RIeHAr6qp+9vhvcuj6EMxnJKAdB7AXL2r5w7h/rYCOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/OnTgfC3vyhS_LWx6FdWpMw0JN0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:bb:74:5e:95:e2:9e:c4:09:2b:5f:7e:a1:dc:04:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a74e07c2defca14bf2d6c7a15d5a9330d093748
Validity
Not Before: Apr 22 23:00:42 2025 GMT
Not After : Apr 23 23:00:42 2025 GMT
Subject: CN=40a202d5578983b1da740020f3a72ba69ea70afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ce:99:16:96:27:79:c1:6a:25:bc:45:ee:bc:
44:0e:87:e1:8b:46:b7:c3:25:99:45:89:7a:43:4b:
40:cd:ac:19:d1:66:2b:a8:55:74:18:7a:d8:47:fb:
29:92:00:60:f6:39:7f:33:fb:dd:83:e4:4a:42:cf:
89:2f:ed:14:19:ff:1a:ea:50:17:0c:47:5e:22:0f:
7f:43:57:63:00:25:56:6a:95:8d:18:79:0a:ca:2d:
97:d6:53:cd:34:06:b7:df:ba:97:83:62:3f:e3:3a:
c9:5c:2b:7e:52:35:0f:36:b9:71:8a:05:aa:65:37:
14:c4:9f:00:5d:c2:f1:5f:c1:4d:6c:0f:62:7f:0c:
f9:68:df:db:1f:5b:6e:23:c8:10:df:ee:7b:90:51:
04:05:98:e0:9e:c1:41:78:d5:4e:3e:be:59:8f:20:
94:6e:50:76:eb:e0:bb:20:ec:56:78:17:bf:07:02:
49:b8:1a:81:aa:ea:7c:8d:f5:ce:65:52:d3:51:68:
36:82:6a:41:ed:c5:b8:b7:57:af:e4:0c:b1:c2:0e:
05:0d:b2:a6:60:5d:86:1c:cb:b1:87:32:4f:1e:b9:
cb:54:ef:a8:17:04:d8:24:eb:8f:10:72:c2:2b:cc:
27:75:5a:91:55:c4:01:dc:50:0f:ff:5d:b9:a8:6a:
e2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A2:02:D5:57:89:83:B1:DA:74:00:20:F3:A7:2B:A6:9E:A7:0A:FE
X509v3 Authority Key Identifier:
keyid:3A:74:E0:7C:2D:EF:CA:14:BF:2D:6C:7A:15:D5:A9:33:0D:09:37:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OnTgfC3vyhS_LWx6FdWpMw0JN0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/6587d8-5898-45a4-a5e3-d642e4b081bd/1/OnTgfC3vyhS_LWx6FdWpMw0JN0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:ac:a1:c6:c7:6b:9c:34:50:0d:f2:d2:86:a2:88:db:1c:45:
c5:72:db:70:0a:74:a7:11:b4:4a:7f:a4:6a:b9:7c:1f:27:57:
be:e1:8e:13:72:0a:dc:cd:55:1f:36:47:4e:6a:50:7e:e3:1a:
e9:6d:19:c5:2a:61:53:6e:56:fc:cc:c4:27:0b:6b:85:f0:67:
1e:23:0c:d2:cc:5d:76:23:4a:b2:cc:25:fd:b1:b9:11:59:7b:
1c:51:b9:7e:eb:47:65:ed:6b:6f:d2:80:e4:09:88:b7:cd:88:
fc:ea:33:76:11:40:23:1b:dc:4d:78:4d:b8:fb:3e:b2:8c:f1:
93:82:52:b6:05:76:aa:5f:c2:0f:5e:d1:16:bf:8f:fa:6c:ff:
12:74:d8:b7:c2:69:ad:2a:0d:d9:13:e8:9c:bb:e6:fd:4f:42:
ea:71:b8:15:dd:c3:be:70:f1:6f:56:4e:22:03:99:a4:ec:55:
37:d3:fa:7a:3e:89:39:47:98:05:e5:05:e1:35:d8:db:90:f4:
b2:fd:16:37:a1:da:f2:d9:bc:1f:0a:d7:4e:54:2a:85:b4:9a:
48:34:67:48:48:e6:15:69:e1:48:1a:f8:11:42:7d:4a:06:b0:
6a:69:e1:49:11:f6:f0:a7:e2:48:94:be:b1:0b:a2:38:8d:47:
b0:5e:b6:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 05:13:37 2025 by rpki-client