Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: E2FNgQZCke9hV8/MzAYPG1T7sQn5wjmQEE5Svb+pXYc=
Subject key identifier: E1:3D:D2:D5:87:89:58:8D:68:53:F1:E0:30:C6:06:2E:B4:92:BF:A4
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 0196060AD51CB3B5A0A19920B6282CCBD7C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0B7A
Signing time: Sat 05 Apr 2025 13:01:35 +0000
Manifest this update: Sat 05 Apr 2025 13:01:35 +0000
Manifest next update: Sun 06 Apr 2025 13:01:35 +0000
Files and hashes: 1: MdL7TM_8FI4FSNKpOGmHEkxh3Ic.roa (hash: kNSd9iF0Y8DMXrvxWEyFS2FyQT8gup1m11Nuuk6HbNM=)
2: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: zALYRHa7//YEeiZk3kLyUtZmZ7AHqqzY7DEOxSSp/BM=)
3: cwI21tJzYqOr9HSPPCz6L9ZgwVI.roa (hash: XU/ushJjB+n9xmj9cQdOxUY6BAOcpjTXGMQ5mCVCcNA=)
4: nKxYgxU46C1nM-kLwKHXoqpeCuk.roa (hash: acmNPfWY5Vqfewon1zfQxYgK/f0iZyi1LFngzxJT1rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:06:0a:d5:1c:b3:b5:a0:a1:99:20:b6:28:2c:cb:d7:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Apr 5 13:01:35 2025 GMT
Not After : Apr 6 13:01:35 2025 GMT
Subject: CN=e13dd2d58789588d6853f1e030c6062eb492bfa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:64:0c:9d:f6:b2:70:e2:bf:b8:d2:d1:d5:27:
85:a1:2b:a6:7c:b2:e1:ac:e9:67:d7:73:b5:7e:33:
05:70:e3:b5:fe:c4:4a:0a:d3:43:43:8d:70:31:a4:
e4:eb:a2:a8:f3:04:20:ae:c8:00:58:d3:69:5a:d5:
fd:7f:cf:ac:5d:cf:80:eb:41:3a:6a:68:aa:bd:80:
54:bd:fa:df:67:0f:7e:3c:f9:84:d5:7e:9a:bf:84:
6b:7c:dc:7e:25:68:5c:e9:86:2e:25:45:8f:ba:c6:
53:34:9d:46:2a:34:60:e4:11:56:13:c5:25:d7:3f:
62:cd:32:4d:1d:ef:2d:5d:4e:08:9a:c0:c8:e2:ae:
ff:59:f8:2c:58:25:0a:94:80:8d:4c:5d:c2:4d:ad:
ec:6c:1f:7c:b4:0c:21:a0:f6:18:7f:6c:83:89:59:
4d:d0:5b:fa:b4:ae:d7:f8:ba:9d:47:12:45:33:56:
d8:f0:50:5b:9d:a9:5f:18:50:74:9c:fd:3d:07:b1:
17:20:b3:ed:38:53:48:0c:23:ab:ac:f6:d7:d6:4c:
ef:f5:6b:1f:cd:86:06:54:02:ae:b3:2a:c3:1a:95:
13:91:5f:85:46:84:cc:69:11:80:7d:49:7f:e0:0b:
69:fb:cc:f3:b7:f7:14:0c:df:79:e5:9c:19:f8:43:
e0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3D:D2:D5:87:89:58:8D:68:53:F1:E0:30:C6:06:2E:B4:92:BF:A4
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:c3:20:a0:c5:47:68:8a:d9:92:7f:61:3c:3a:04:df:45:d5:
0a:aa:75:c1:c3:11:27:b0:e5:94:7d:31:05:fc:24:2d:59:bd:
56:be:b3:1a:60:b9:66:79:86:ce:8a:32:05:e4:fe:45:26:8c:
a0:88:4e:f0:43:fa:8a:c9:42:4a:7b:3b:4f:a8:9a:e8:52:51:
58:35:ef:a8:2c:82:4a:8b:e9:ff:1b:5a:9a:2d:37:08:d0:dc:
c5:31:3e:34:d8:f2:c7:55:1b:ec:19:07:07:00:da:26:e8:9b:
bc:c2:c6:86:86:de:cf:b9:c3:db:d0:ca:70:5d:8e:25:4e:e9:
31:ff:9b:7e:df:f2:74:a7:21:dc:2b:63:f5:c0:c5:04:df:dd:
54:b4:1f:18:c0:cc:ce:b2:d6:8a:23:3d:a1:ee:1e:75:8e:13:
a2:24:f5:f3:4b:0a:18:32:5f:46:b0:b4:f3:8b:cd:88:38:da:
40:25:51:5d:0d:9e:ef:d2:e7:66:4e:98:1e:06:d1:b1:6f:1f:
11:12:de:61:fe:9e:9a:b2:2f:27:a5:e2:31:fc:f2:5f:97:40:
1b:96:0b:a9:34:98:c5:05:fe:06:ca:50:6f:80:40:17:a1:fb:
ca:81:b1:72:7b:cb:27:73:c9:51:88:75:19:96:62:88:db:74:
10:10:79:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:16:42 2025 by rpki-client