Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json)
Hash identifier: /urHXGFrRue4Mi7T2aBbBc4emDaO0JOahGcG9r9gKRc=
Subject key identifier: 45:BD:5A:76:E5:F3:18:98:F0:8B:C9:0C:CC:68:2A:6E:9A:F8:CB:C9
Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Certificate serial: 01964C34FC082C959C50CF2113D9BC34ACCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
Manifest number: 08A6
Signing time: Sat 19 Apr 2025 04:01:02 +0000
Manifest this update: Sat 19 Apr 2025 04:01:02 +0000
Manifest next update: Sun 20 Apr 2025 04:01:02 +0000
Files and hashes: 1: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: lvpPyMdUkgSpFaoPDhIosFrH1io/eyHnalSZwEHztzo=)
2: Uekfh-0K2vRcuzrLz8uBXFaOroQ.roa (hash: QN8HhWjjJPearCTxHxonyEJ2yJIbW9sXZXyp6RMDaE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:34:fc:08:2c:95:9c:50:cf:21:13:d9:bc:34:ac:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Validity
Not Before: Apr 19 04:01:02 2025 GMT
Not After : Apr 20 04:01:02 2025 GMT
Subject: CN=45bd5a76e5f31898f08bc90ccc682a6e9af8cbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:92:7a:b1:bb:6b:5c:ae:4c:1e:bd:fc:77:04:
a8:df:ac:6e:5e:5e:9b:d5:34:6f:f9:e3:85:5e:c9:
0b:6c:7b:95:76:d6:8c:43:df:05:85:48:08:db:f0:
2d:3b:9a:dd:55:f0:df:4a:e2:bf:f8:3c:f7:39:c0:
d0:36:2e:fa:28:17:e1:3a:fa:db:ee:ec:97:d2:18:
ce:7d:5d:31:58:ac:15:14:94:29:66:ee:fd:f0:78:
8b:46:d3:40:2a:f5:ef:07:5f:7c:be:af:4a:d3:34:
be:fe:64:cd:72:e9:5e:60:74:c0:5e:92:1c:bd:d2:
ed:7c:71:83:c2:30:dd:9a:05:10:02:1c:0f:56:81:
c1:0a:03:56:7a:06:8d:5d:04:d5:95:fb:56:3c:18:
b6:8d:a8:6b:c3:2e:30:59:f6:0d:30:12:60:f4:b9:
49:06:4b:8a:3e:6f:29:0f:9e:d0:e3:89:a1:16:a0:
51:ef:c8:e8:bc:84:4b:0d:19:66:84:99:ed:31:eb:
03:b6:c9:ef:34:08:c9:70:f8:c9:f1:b2:34:f3:08:
d8:7c:12:c9:1f:6b:d8:bb:1e:dc:b7:79:40:04:dd:
2b:b0:97:89:91:47:23:cb:2f:b9:02:32:76:bd:22:
4a:21:f4:61:91:d6:19:2e:0d:64:66:c0:99:89:88:
09:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:BD:5A:76:E5:F3:18:98:F0:8B:C9:0C:CC:68:2A:6E:9A:F8:CB:C9
X509v3 Authority Key Identifier:
keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:bc:10:de:82:3f:50:7f:9e:29:80:3c:19:f2:f2:7a:ae:90:
51:40:86:0c:36:e0:59:46:db:cf:a8:ae:6c:6c:6d:ad:8f:d2:
f8:eb:f0:0e:d2:c1:70:47:08:59:b6:df:10:89:1b:0e:a3:55:
b4:fb:b0:f0:93:45:47:19:0f:57:1c:f5:15:84:7c:91:94:51:
12:90:90:ec:6e:be:ff:5d:5f:26:69:9d:77:1d:b3:d1:4f:c2:
51:35:bd:e7:38:af:e2:b6:47:aa:16:0a:a2:71:f8:6c:48:14:
07:c6:fd:2e:5b:dd:52:ca:0b:5e:9d:b8:e0:15:36:5f:d0:b4:
ea:c3:fc:d1:a1:e0:73:7a:72:84:77:90:de:3e:c3:e5:b5:d4:
78:67:af:8d:61:9a:24:0d:fc:05:05:22:30:41:fb:da:f5:3c:
3a:4e:1e:13:b1:1c:6e:d5:ba:d2:95:72:b4:d1:b4:08:2c:a7:
4b:1f:e8:51:df:5e:17:ed:41:63:bc:fa:85:91:e5:2f:9d:32:
56:74:20:12:17:b7:30:fd:7d:29:49:14:3c:02:3c:a1:51:08:
e9:44:69:1f:38:e4:e2:d7:0d:79:5e:62:54:b6:85:54:de:8f:
b5:63:d7:5c:71:39:b3:3d:30:e4:93:13:03:ad:0d:8e:a5:92:
fb:52:2e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:39:07 2025 by rpki-client