Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
File: OUKesL2HA74uXwrMwoG_IhYEsM4.mft (raw, json)
Hash identifier: RP8kHp6+I+JY6sO3K5tY+CS77DpPhFKQMc+wxhH7R9M=
Subject key identifier: E6:FB:91:B2:3E:E4:CE:79:A8:E3:07:1B:B3:FF:E7:3C:E0:3B:63:AB
Authority key identifier: 39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
Certificate issuer: /CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Certificate serial: 01964FA336B9D84BBF7BA1CC7FDD8F3765B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
Manifest number: 0617
Signing time: Sat 19 Apr 2025 20:00:18 +0000
Manifest this update: Sat 19 Apr 2025 20:00:18 +0000
Manifest next update: Sun 20 Apr 2025 20:00:18 +0000
Files and hashes: 1: AspvYduc_Jb9y8GXYBDLcC-_8EE.roa (hash: ensOUkmx91RQ9/R5jlP5oQpNE74zuacX+6PWKXjdOOE=)
2: OUKesL2HA74uXwrMwoG_IhYEsM4.crl (hash: 5uvCXf4CvN+0Jlm47eDflOpl2P6oKYfP5CG/fkQrj6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 20:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:36:b9:d8:4b:bf:7b:a1:cc:7f:dd:8f:37:65:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Validity
Not Before: Apr 19 20:00:18 2025 GMT
Not After : Apr 20 20:00:18 2025 GMT
Subject: CN=e6fb91b23ee4ce79a8e3071bb3ffe73ce03b63ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:22:fb:8c:38:c9:4b:df:52:5b:5b:fa:93:90:
71:cd:11:e6:70:0b:55:72:43:51:e8:e3:2c:c0:40:
ad:f4:9e:4e:53:41:4b:c5:7a:2c:f2:9b:e6:c5:36:
1d:34:49:76:e4:f8:0a:0d:60:08:b2:f2:e2:0b:a2:
fa:b6:8f:20:23:71:87:2f:0c:52:ef:38:cb:bf:9a:
1f:4d:30:cf:d0:40:4c:20:07:52:75:7e:c6:5a:a2:
a3:e7:29:cc:5e:61:93:52:ae:66:16:b7:dd:cb:61:
89:2f:c8:5e:80:d0:60:92:82:45:db:29:b3:e0:3d:
32:5c:89:51:df:66:1e:4f:40:74:98:82:fe:79:ff:
6e:d7:c3:8a:b7:db:4a:e0:9f:1a:96:8e:ec:d8:88:
52:80:fe:42:d2:2e:1f:75:83:1c:b8:aa:7b:70:3b:
cc:98:66:1f:68:32:7d:c6:c7:91:51:9b:af:ed:e1:
22:04:c1:17:fd:c7:85:07:14:bb:80:e2:75:76:90:
96:ad:e7:da:3b:8a:e3:4a:d4:c7:0a:3b:46:f2:0b:
f9:ae:09:de:40:a4:85:62:cd:0c:13:69:4b:9f:2f:
85:ec:07:eb:83:ec:4a:f4:7d:9e:25:53:cc:cc:58:
57:57:39:c1:65:2c:e9:b5:73:b8:91:2e:46:51:c3:
3a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:FB:91:B2:3E:E4:CE:79:A8:E3:07:1B:B3:FF:E7:3C:E0:3B:63:AB
X509v3 Authority Key Identifier:
keyid:39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:a4:a5:fe:36:9d:7e:10:32:9a:34:97:9e:3b:51:0a:a8:07:
0a:05:df:92:62:44:7a:ef:46:b0:80:a3:f0:e9:c1:c2:60:8f:
e1:59:91:97:35:1d:75:87:95:86:58:50:5b:1b:17:9b:12:fa:
94:b4:9b:b9:59:fe:7c:60:a4:f0:5b:e0:02:ea:44:3c:db:1d:
da:1e:d3:f2:0a:9d:21:8a:07:d9:c9:a9:9f:a2:26:f5:96:c7:
e7:25:9d:23:08:42:17:2e:a7:46:2c:7b:db:7e:ed:d6:14:f9:
c5:5e:f0:85:25:04:38:81:d6:1f:51:e1:62:df:bc:40:63:52:
c4:c1:49:f8:35:37:45:c8:a9:b0:01:16:55:0b:11:d9:d0:5d:
8e:47:d1:d3:10:ee:34:f0:52:a7:8a:a7:f7:94:14:4c:76:19:
52:53:1d:5e:77:d3:3e:2a:0f:bb:0b:48:ec:d3:7e:df:6d:c7:
6c:b2:1c:03:05:1a:52:c3:2a:97:59:d9:9e:e7:10:77:97:8e:
0b:54:42:40:f4:14:a2:9f:ad:89:69:08:fe:0d:0e:0b:f2:6b:
5b:4d:3c:ea:72:26:d0:b6:ee:c6:a8:18:71:18:04:7a:a4:c0:
da:e5:dd:df:ff:9e:ca:7d:52:94:fc:6d:ee:62:69:5d:ac:77:
5f:cb:95:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:22:46 2025 by rpki-client