Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
File: O9_XYE36DriuIOkPzxMDk7ioVko.mft (raw, json)
Hash identifier: 4BzbjgmWF5As1JYSNy+XTBt1m5O9FtES3HiChbGur1o=
Subject key identifier: 8F:02:4F:00:8C:9E:78:62:98:E9:B3:41:F5:7F:92:F9:5D:58:59:DF
Authority key identifier: 3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
Certificate issuer: /CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Certificate serial: 0196458DD7BCB2CE58A011E7890A58112288
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
Manifest number: 14F6
Signing time: Thu 17 Apr 2025 21:00:45 +0000
Manifest this update: Thu 17 Apr 2025 21:00:45 +0000
Manifest next update: Fri 18 Apr 2025 21:00:45 +0000
Files and hashes: 1: O9_XYE36DriuIOkPzxMDk7ioVko.crl (hash: eNlSRedOE17p7F5kK2WTl4m18CRbcKf4rRvYoIums7Y=)
2: m0kgiTT_WYsp23pJuD7SLX4KQwM.roa (hash: VIdUf2MaaJNNuBUU6XlHsX2gourJRTd5TApzwygVz+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 21:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:8d:d7:bc:b2:ce:58:a0:11:e7:89:0a:58:11:22:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Validity
Not Before: Apr 17 21:00:45 2025 GMT
Not After : Apr 18 21:00:45 2025 GMT
Subject: CN=8f024f008c9e786298e9b341f57f92f95d5859df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ff:0f:24:13:e6:69:bc:06:b9:42:1f:62:5a:
d4:46:2b:99:44:2d:9a:3e:5e:0b:28:42:53:c6:2e:
ba:01:3a:5f:6d:04:8b:4a:5a:4b:a9:9d:40:6e:46:
d4:6f:aa:ee:84:50:27:9c:95:b4:40:d6:5b:6f:85:
d0:e2:97:d6:3c:29:29:8b:eb:5f:cf:af:25:ed:c0:
74:8e:d7:79:3b:69:67:18:75:8b:25:e7:20:5e:b9:
ab:a5:a3:10:26:e7:2c:be:e8:ab:58:39:7e:c7:dd:
b2:9d:6f:3b:db:7d:d5:1c:4a:36:75:ec:89:b4:69:
83:6f:05:2f:20:89:37:26:8e:1c:e2:b7:bb:84:74:
78:d4:29:2d:16:87:2b:3b:01:3e:5f:80:0e:fb:4c:
56:4d:ab:1b:ff:46:f2:cc:cf:db:bc:fb:5c:1e:44:
6a:3c:2f:97:2e:ec:8b:68:17:4f:e0:ae:00:1a:53:
56:d8:c8:23:27:84:2c:c8:de:51:ea:d9:56:bd:5f:
73:f5:d3:80:6f:20:f5:72:a5:50:6d:70:65:66:2a:
08:62:81:f7:25:cd:8f:5d:32:66:0e:52:8a:6b:96:
47:3d:98:2e:54:32:18:3b:b9:ae:77:24:84:4c:eb:
40:33:cd:3d:8d:b9:9d:e6:39:fa:4d:36:40:ea:24:
7b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:02:4F:00:8C:9E:78:62:98:E9:B3:41:F5:7F:92:F9:5D:58:59:DF
X509v3 Authority Key Identifier:
keyid:3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:05:ef:d1:ed:82:9c:10:ad:47:bb:45:e2:fb:8d:13:98:81:
fb:b9:e9:95:32:24:4f:56:a9:76:8d:20:a9:86:1b:37:84:f4:
fc:88:51:fa:2a:96:e2:38:c1:d1:aa:86:39:12:10:90:31:22:
c6:f4:1d:93:a8:1e:93:78:2a:70:71:9d:d6:9a:c1:42:f6:d5:
fe:84:ed:df:fb:33:f4:be:46:49:a1:cc:bd:65:4c:b9:aa:0f:
a2:4b:37:76:bb:fc:9d:13:90:9a:b0:73:08:1f:b7:2e:59:eb:
a1:a7:6c:27:b0:43:90:1b:4d:a7:11:77:29:3a:f8:1b:3f:9c:
d0:7f:0e:3e:04:17:c4:e3:30:69:eb:04:b6:61:a7:dd:61:86:
a5:4d:b6:26:b2:b7:8b:d9:6c:5a:a5:e7:2f:34:4a:11:45:d1:
4f:1e:13:ee:f1:c4:9a:61:5f:58:89:f8:51:8f:57:0b:13:88:
fb:3e:67:fc:fc:0d:23:0c:62:4b:6e:42:5c:43:b8:a4:75:6c:
86:84:e4:dd:d4:6f:ec:27:6b:34:bd:e5:37:f1:d5:92:09:31:
e0:a5:b5:8b:dc:e5:b7:63:2a:6e:4c:5f:bd:ab:57:bb:84:6e:
b0:30:d4:e8:2d:31:aa:21:ff:69:12:fd:80:fb:e4:1e:55:5f:
7e:29:3d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:50:12 2025 by rpki-client