Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
File: _OTzlnKb9HjmNlSYIfb2lw2JP1I.mft (raw, json)
Hash identifier: V9kYFpxPoiKUkcvgDvTSsaxhn8mzImBENVkzmvbRAlk=
Subject key identifier: 15:3B:26:A1:FA:C9:32:4A:86:20:64:62:E4:9D:F6:43:8B:67:43:57
Authority key identifier: FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
Certificate issuer: /CN=fce4f396729bf478e636549821f6f6970d893f52
Certificate serial: 019652DB1C1B16A5C4D15B68E648316F159D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 11:00:13 +0000
Manifest this update: Sun 20 Apr 2025 11:00:13 +0000
Manifest next update: Mon 21 Apr 2025 11:00:13 +0000
Files and hashes: 1: _OTzlnKb9HjmNlSYIfb2lw2JP1I.crl (hash: fdOzL45oPJfOR+2PGkB/LUkiv/ZgpSzU8ZKGuZIf6WY=)
2: adNqeNQUFWI4IAHxy1r153UdECA.roa (hash: xLvUeb8ak+yii4A1TZl7dHrog2mgx9j4/AxydjM8K8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 11:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:1c:1b:16:a5:c4:d1:5b:68:e6:48:31:6f:15:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce4f396729bf478e636549821f6f6970d893f52
Validity
Not Before: Apr 20 11:00:13 2025 GMT
Not After : Apr 21 11:00:13 2025 GMT
Subject: CN=153b26a1fac9324a86206462e49df6438b674357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0b:d2:8e:29:30:43:34:ba:1d:d6:41:37:95:
ee:43:ed:f7:13:d6:f3:8c:5b:ee:1a:ab:a4:a5:cc:
10:a5:18:15:52:68:cb:e0:ef:ba:a6:fd:03:b7:3c:
4b:90:f0:98:c9:d7:6a:1f:51:c4:60:f9:31:a5:a4:
f2:4b:c6:2b:04:31:58:a9:d3:e9:18:94:2b:fb:cd:
be:ec:6c:b7:74:57:2b:9a:4b:76:ae:05:55:7c:48:
9d:9a:3a:af:8a:38:6d:0d:f3:d6:b1:a5:52:54:74:
5a:ac:fb:b9:db:9d:fd:29:3b:bd:0a:ad:e3:28:ed:
1e:2e:81:6e:31:7b:a3:8c:0f:81:db:11:ae:87:22:
02:d6:31:2b:44:fb:d0:4f:a7:bb:69:d9:aa:73:bf:
7a:30:b9:82:b8:bf:68:2c:c2:e0:d4:a5:4a:85:18:
a3:4c:98:cd:81:8b:21:44:68:5c:e4:14:b6:d2:7b:
db:ca:0f:51:e2:30:85:77:b5:c2:3b:f4:a7:9a:75:
5e:50:7e:09:75:a1:60:aa:43:d3:1f:0f:fb:55:18:
25:c3:1c:fa:4f:59:0a:e2:ae:db:ad:a0:20:4d:e0:
a8:13:01:18:07:01:bf:02:f6:09:20:33:18:cc:ef:
b9:b8:82:b7:87:33:0a:62:bf:71:7a:01:99:76:8d:
c1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3B:26:A1:FA:C9:32:4A:86:20:64:62:E4:9D:F6:43:8B:67:43:57
X509v3 Authority Key Identifier:
keyid:FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:08:8b:ca:59:26:15:d2:0b:93:c1:94:09:5f:5c:1b:2c:03:
d6:08:fe:c7:94:7e:40:27:c0:f3:09:69:12:a6:38:05:b1:a4:
d5:0f:57:44:11:5a:d6:99:9f:06:a5:57:e3:bb:3d:eb:26:55:
b1:88:06:91:83:ac:fe:8d:0b:70:80:5b:69:f5:6c:77:ae:eb:
16:e7:c4:23:08:78:23:d4:94:3d:b3:51:5d:57:21:61:43:19:
f4:ba:ab:53:ee:b8:7d:f6:f4:07:96:52:72:80:c1:b9:00:92:
83:1d:a0:42:34:60:b0:20:6d:79:d1:5d:10:b7:3e:fc:65:62:
5d:17:c1:37:14:5c:85:cd:af:82:13:3a:4f:15:ff:ed:b6:ae:
01:78:06:60:7a:02:9a:e4:27:76:08:c8:a4:01:58:11:79:50:
35:5e:ac:cc:fc:41:ce:a6:b3:7f:e9:3f:75:74:f2:45:68:f3:
7d:82:a6:8e:af:ba:80:18:95:0d:cc:f9:79:ac:dd:11:e8:89:
af:94:55:99:fe:70:15:96:a2:be:8b:61:98:3c:5d:48:76:f8:
9d:7d:e8:a9:a8:92:d9:85:81:06:07:69:eb:d5:b5:8d:79:12:
f6:a4:ba:db:3b:96:2e:2a:a5:6d:70:5d:82:9e:23:24:6f:15:
aa:5c:42:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:22:13 2025 by rpki-client