Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
File: OSG38e7pDZnilCGKk4dTweotwmc.mft (raw, json)
Hash identifier: RGCyPq+Uu9Omgdwf7TCWRgCxnqriRtAOAE+oy4bqns4=
Subject key identifier: 79:1B:8E:DD:A3:E1:62:A7:CE:9C:C6:F9:2B:59:65:E1:C1:DA:13:AB
Authority key identifier: 39:21:B7:F1:EE:E9:0D:99:E2:94:21:8A:93:87:53:C1:EA:2D:C2:67
Certificate issuer: /CN=3921b7f1eee90d99e294218a938753c1ea2dc267
Certificate serial: 01958F98444AB93F0F509BA5B34108BB88E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
Manifest number: 1425
Signing time: Thu 13 Mar 2025 13:01:15 +0000
Manifest this update: Thu 13 Mar 2025 13:01:15 +0000
Manifest next update: Fri 14 Mar 2025 13:01:15 +0000
Files and hashes: 1: 4t53igbekCux7oMSXkm2uGkDTRs.roa (hash: JcVC73jSzOeJEsOoBqkgwAslhBdXNKxkO116AmZF308=)
2: OSG38e7pDZnilCGKk4dTweotwmc.crl (hash: P2vOZthx7YU7iBa64qs8cihNkTXt3yUvnWmL7altKlc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:98:44:4a:b9:3f:0f:50:9b:a5:b3:41:08:bb:88:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3921b7f1eee90d99e294218a938753c1ea2dc267
Validity
Not Before: Mar 13 13:01:15 2025 GMT
Not After : Mar 14 13:01:15 2025 GMT
Subject: CN=791b8edda3e162a7ce9cc6f92b5965e1c1da13ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:99:95:53:fa:d4:72:ee:fb:ce:19:3c:bc:97:
48:09:82:0f:72:79:88:11:e4:cf:af:35:9f:3e:78:
eb:09:3b:26:8f:5b:b9:03:24:74:56:b9:8e:46:54:
c9:31:4d:61:82:da:5a:49:3e:b5:39:ce:ae:9b:58:
65:41:b6:36:59:53:84:88:69:53:e1:fa:21:e5:cf:
cf:b7:3e:a2:a3:e5:33:8b:d2:8b:a7:17:70:14:c0:
42:51:92:51:a0:d3:97:e3:0f:f7:11:06:f5:14:9a:
3d:9b:ce:09:22:a7:5c:56:32:2b:9b:3b:eb:10:08:
35:49:c2:9c:3c:22:39:29:ae:4c:5f:16:99:8b:7a:
83:be:b7:84:ae:04:23:c7:ff:e6:eb:55:fd:d2:d0:
54:b2:97:64:62:a7:61:e7:ee:d9:ff:d4:92:a3:0b:
cb:c9:3f:41:b5:71:43:77:4f:ae:11:74:f2:a7:83:
04:80:7a:5b:1c:04:05:08:d2:16:75:3f:0c:52:9f:
c8:a9:6c:6c:62:f4:d6:7d:74:f2:07:e5:6c:00:26:
9c:91:af:fb:02:31:55:c0:e6:92:26:96:9e:58:c5:
dc:97:db:82:a3:06:48:bc:76:32:31:ae:0a:cd:97:
50:69:05:4d:f6:7f:cb:f5:c1:e0:0d:d5:0e:34:f1:
43:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1B:8E:DD:A3:E1:62:A7:CE:9C:C6:F9:2B:59:65:E1:C1:DA:13:AB
X509v3 Authority Key Identifier:
keyid:39:21:B7:F1:EE:E9:0D:99:E2:94:21:8A:93:87:53:C1:EA:2D:C2:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:d9:b5:09:fc:43:14:f6:63:c0:d3:00:52:c3:af:a2:0a:52:
1b:22:d1:a1:d6:29:c6:8f:9a:c6:3f:6c:93:57:41:bb:fd:ca:
8a:b5:50:ae:c8:a4:e4:1f:6b:57:fa:64:53:a3:ee:06:24:f8:
90:2b:e8:c9:ca:d1:4d:65:22:79:33:33:35:ca:ba:27:fa:22:
0a:56:d6:f7:fb:1f:01:9e:ad:82:89:bb:b2:75:5a:9c:76:9d:
0e:be:15:a5:1d:9b:e6:94:60:40:5b:d2:17:fa:63:c4:d2:bf:
ac:4e:38:b6:3a:10:d7:51:58:27:e8:09:33:81:20:28:b1:8a:
1b:ee:e7:a6:60:d7:d0:b5:b4:e3:62:ff:dc:f1:61:09:03:bc:
bd:f3:42:c4:fd:62:d4:3a:7e:69:80:bd:6a:c8:89:fd:33:11:
8a:92:f5:65:fd:e5:42:f9:01:31:66:d6:fb:11:f6:0c:9e:4d:
4a:73:8e:a4:fa:64:df:14:41:36:da:b2:54:74:6a:cd:b3:44:
a9:09:e9:91:9c:09:fa:d3:91:81:31:f1:b6:81:6b:08:ec:4d:
8f:dc:c9:dd:6f:ec:54:5b:df:f8:e4:7f:8a:3e:ae:4b:bd:39:
15:df:7a:12:2f:ee:86:7f:6b:39:1d:6a:bd:6d:8e:e8:82:ea:
82:cc:90:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:10:09 2025 by rpki-client