Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: SGndkbMkDOk/2b1HnvSw0SkTDkjhHSLJpaIqVc35v+s=
Subject key identifier: 30:99:53:16:FE:08:DC:3F:FF:DF:25:E2:2A:B4:DF:81:25:9A:C1:A2
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 01962B976622D16C86DF6EF8388FA989A01D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 14EC
Signing time: Sat 12 Apr 2025 20:01:04 +0000
Manifest this update: Sat 12 Apr 2025 20:01:04 +0000
Manifest next update: Sun 13 Apr 2025 20:01:04 +0000
Files and hashes: 1: DyAD9klcag15NhnplKEMXi8dKqg.roa (hash: Zvr5j/JLyl2kQb4eL63NQCTsndBLbuYPjEiWULmfej8=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: HkRVtAFqzzpRq8mNgkCTfCcodXx9vlGsakM+rvfKqHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 20:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2b:97:66:22:d1:6c:86:df:6e:f8:38:8f:a9:89:a0:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: Apr 12 20:01:04 2025 GMT
Not After : Apr 13 20:01:04 2025 GMT
Subject: CN=30995316fe08dc3fffdf25e22ab4df81259ac1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:8d:89:3e:bb:6c:3c:37:33:33:3a:77:c9:19:
04:12:ea:09:7e:8c:cb:6e:fd:dc:db:97:d2:ed:8a:
d7:f7:37:b9:76:b3:05:d5:f5:b6:d5:54:8e:1a:eb:
14:7e:61:aa:09:aa:13:6e:a0:ea:1f:9c:94:2c:10:
17:61:ed:2d:20:70:a4:c5:dc:4a:9e:e7:af:01:b2:
74:25:7c:a5:90:cf:33:1e:bc:b6:fc:57:24:6c:76:
55:17:32:71:c8:3c:f8:ac:27:d8:93:fe:aa:0c:fd:
7c:f7:71:38:7a:a9:a4:ba:1b:c1:27:a9:a1:b7:fd:
45:07:5a:c7:c7:ad:5e:87:09:5c:ec:0b:1a:a0:ce:
1d:4d:58:ad:cb:4e:75:e6:16:be:a9:fd:a8:55:00:
4a:4a:00:ff:1f:d7:01:f4:7b:27:df:d2:dd:59:00:
de:f4:6f:58:5b:aa:20:36:d9:a2:87:62:ad:ee:61:
a7:b4:88:d1:05:d1:5c:3f:1b:0d:5b:8a:3a:d9:14:
39:ba:4b:b3:a0:ab:a7:fb:94:3c:27:4a:dc:5c:e2:
a3:0d:92:bc:90:61:15:39:94:05:bf:13:3d:df:80:
aa:6d:8e:a4:17:43:e1:68:9e:0d:99:82:c1:b2:ac:
ca:3b:7f:8e:45:9d:40:e2:ab:76:19:49:02:64:a3:
95:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:99:53:16:FE:08:DC:3F:FF:DF:25:E2:2A:B4:DF:81:25:9A:C1:A2
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:00:65:8c:7b:58:f1:e3:f0:e0:fe:36:c4:a8:88:30:14:26:
6d:dc:ac:26:2f:ea:ba:a1:93:e5:5c:a7:8c:97:95:e7:2b:22:
94:ec:71:41:38:6e:6b:22:ce:68:09:2a:20:70:b9:f7:a9:f4:
5c:0d:ea:b7:5d:7a:8a:7a:44:8e:1a:4c:cd:04:3a:79:6d:5f:
52:4f:4f:19:28:fd:04:c0:e2:93:f1:37:e6:b4:01:93:5e:4b:
59:05:22:70:f1:63:cd:be:fb:64:83:db:9c:6d:b6:db:50:f3:
f9:47:a7:df:a2:68:5d:c4:cc:f7:51:d7:65:d0:e6:23:c1:94:
93:07:af:16:3e:c9:a2:47:6e:ca:3b:a4:76:99:3a:e2:4e:9f:
20:df:e5:92:6e:e2:24:1e:2f:6c:77:ac:bc:d0:0b:94:58:af:
08:19:5e:83:c4:73:4b:ac:7d:d6:58:24:48:01:b3:01:5c:47:
60:56:e4:d0:1f:95:22:b3:7e:a9:4f:a8:0c:23:95:21:c9:a4:
28:74:78:e8:25:4b:81:ce:e6:2e:1d:03:dc:11:3a:de:21:3c:
32:f3:1e:79:5d:86:3e:2b:56:e0:23:55:31:99:15:14:0d:30:
31:c4:ad:96:39:02:45:01:69:b9:5e:2f:cd:61:61:e8:41:42:
40:2b:3d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 05:34:14 2025 by rpki-client