Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json)
Hash identifier: uW4GZbqwL2FBML7YwXxBb+Ib/P8HB+9MDHx5iIn7Bqs=
Subject key identifier: 37:E1:50:34:3E:07:EF:CE:C5:C7:E0:2C:E8:34:E1:45:A2:A5:71:28
Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Certificate serial: 019579EB9F36910F44A570763113860877AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
Manifest number: 0FA9
Signing time: Sun 09 Mar 2025 08:00:39 +0000
Manifest this update: Sun 09 Mar 2025 08:00:39 +0000
Manifest next update: Mon 10 Mar 2025 08:00:39 +0000
Files and hashes: 1: AmLrnFBBUwarj708-brt5mXEs6c.roa (hash: rrDod4wiM6+h8On16PiqN3FEJpayPPTDmJ6oUSkO4ZE=)
2: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: kjKw8TvXyPJMpcEFCwdzN1OH95H7Vf8WlcjG9oG4e5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:79:eb:9f:36:91:0f:44:a5:70:76:31:13:86:08:77:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Validity
Not Before: Mar 9 08:00:39 2025 GMT
Not After : Mar 10 08:00:39 2025 GMT
Subject: CN=37e150343e07efcec5c7e02ce834e145a2a57128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5b:0c:47:01:98:cb:9d:de:e0:53:76:35:08:
91:f2:f5:d6:13:b5:be:b6:b2:a2:94:bf:bd:2c:3e:
80:cb:12:3d:1a:73:c2:38:8f:6f:b9:6b:6b:d6:99:
e6:2b:00:ec:79:75:30:76:97:18:cf:1e:6c:03:7c:
64:2d:fc:d6:f5:2a:73:c1:e9:fd:c2:a2:a4:19:a3:
be:f9:a8:49:05:ac:c1:d5:44:64:b9:6c:7a:de:1c:
2f:5c:16:c8:51:cb:27:52:95:53:ef:02:09:4c:b8:
c7:5a:43:60:3b:1e:c1:6f:51:c4:23:00:39:c0:35:
11:e5:b1:f9:c6:18:c9:da:cb:bb:89:ee:e2:8e:85:
9a:9c:a7:5d:30:a1:6b:b7:6a:98:c5:16:56:99:73:
e3:20:0d:72:2b:5b:00:5e:1b:c0:ae:3b:f6:b7:96:
c6:bf:cf:52:01:7a:5a:29:c5:fd:d9:6b:f7:05:43:
a2:0a:29:c7:4e:cc:c3:99:37:32:b0:0f:66:85:d2:
17:9a:12:d1:cc:14:2d:43:e6:fb:a0:2d:ef:f8:0b:
04:ef:56:f6:a2:39:d6:c1:d2:29:21:89:b1:0f:0d:
82:7e:9b:88:e3:38:ba:1d:19:ee:61:a4:0f:9c:ae:
f6:ca:01:ec:41:91:99:b1:64:69:1d:2a:44:bb:e3:
5f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E1:50:34:3E:07:EF:CE:C5:C7:E0:2C:E8:34:E1:45:A2:A5:71:28
X509v3 Authority Key Identifier:
keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:0f:f9:e8:85:a5:d7:da:c3:05:1b:c2:cc:f9:a2:46:8a:8e:
1a:5a:d9:46:17:3a:4c:73:33:da:53:70:b1:9d:8e:ee:91:54:
cf:23:8f:d6:7c:3e:af:44:e4:03:9c:95:26:8a:e9:ae:31:2f:
0b:d5:86:57:79:f0:cd:07:21:7a:e9:43:d0:46:23:80:7b:03:
54:35:29:25:70:6d:5d:3a:4e:c6:78:20:8f:86:18:4a:10:0b:
11:dc:46:3f:3e:21:1a:f2:8c:f8:48:d2:98:f0:07:c7:9f:cc:
8f:ca:a3:ce:c8:38:a7:05:c9:74:23:bc:7e:55:c5:0f:52:d5:
35:b7:0c:1f:36:40:b5:21:05:46:02:c4:fb:f9:87:b6:6b:c4:
b2:e6:f4:d7:e5:a5:83:d5:a1:29:f2:72:58:c5:5e:75:62:97:
31:83:de:b3:a0:36:66:3f:b5:0d:8b:aa:be:19:26:5c:49:46:
da:2a:85:f2:07:4c:23:cf:d8:5a:80:d7:76:5c:fa:6a:31:6d:
62:f6:6a:6c:e3:23:e2:d8:95:a8:ca:ec:5a:97:5e:c8:72:c8:
1b:80:33:15:97:63:50:30:f5:5e:61:d1:05:eb:ed:d4:66:26:
9e:98:0d:4e:91:ae:61:6d:f6:85:3b:46:ce:94:dc:eb:15:3c:
67:af:12:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 11:43:06 2025 by rpki-client