Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
File: o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft (raw, json)
Hash identifier: QYHoHqtCRHl4DRsLdq2OaKEO9439KAEWnw1t6freT9g=
Subject key identifier: 2E:99:F9:75:D8:62:82:56:C8:E4:A0:01:03:23:64:D4:C8:9E:42:2A
Authority key identifier: A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
Certificate issuer: /CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Certificate serial: 0196108E0399A5E53306D24193B9B9289CD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
Manifest number: 0A0F
Signing time: Mon 07 Apr 2025 14:01:04 +0000
Manifest this update: Mon 07 Apr 2025 14:01:04 +0000
Manifest next update: Tue 08 Apr 2025 14:01:04 +0000
Files and hashes: 1: c6Nj79I3Har3nGytaNZUrH4rLp8.roa (hash: pFirwTzGIzOGXK1Oft6HDqGlSVO899FoeQfzjWxGxFc=)
2: o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl (hash: OzyA9z1QTsQ9thCgGOTj9RV05fPUjeLFd2lNbamZu+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:8e:03:99:a5:e5:33:06:d2:41:93:b9:b9:28:9c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Validity
Not Before: Apr 7 14:01:04 2025 GMT
Not After : Apr 8 14:01:04 2025 GMT
Subject: CN=2e99f975d8628256c8e4a001032364d4c89e422a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2b:a0:8b:93:5f:4a:f4:12:15:8f:6a:c1:17:
c2:59:7e:d9:4d:c8:f7:5b:56:1b:b5:35:e1:10:91:
65:62:8a:62:c8:65:c4:cd:4a:c3:54:37:4d:0d:9a:
4f:de:e0:4b:a0:9e:6f:50:6c:4d:6b:26:c1:50:f2:
d7:65:db:58:1f:ba:e9:f2:17:c2:29:21:a6:27:35:
44:14:27:70:7b:4f:b9:14:57:11:9f:b3:26:56:03:
69:17:ad:99:37:b9:73:c0:27:ba:3f:3d:8d:2b:07:
93:f7:6e:a0:20:25:c1:1c:24:ad:8d:99:ba:fa:3b:
c1:a0:38:da:ee:70:38:8d:33:cc:89:6a:3a:fd:7a:
61:cf:d8:7d:4e:ae:d1:db:3c:b2:19:58:14:28:83:
f0:eb:a6:b6:71:9d:3c:45:f5:e8:24:ba:9e:cb:3a:
73:30:39:06:72:c7:63:92:6d:b6:6f:6f:63:6b:4d:
df:a9:bd:65:97:43:b9:e7:7c:b5:9d:e5:18:bf:d2:
cb:72:60:fd:ac:5a:e9:f4:40:18:65:47:ac:61:63:
03:3b:d1:55:24:92:06:03:90:52:23:27:b5:cf:07:
e3:25:af:e6:56:ef:f3:5f:bf:f3:36:ae:d9:ab:7e:
23:e2:73:1f:27:22:cc:03:24:70:1f:ce:8b:f7:8a:
d9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:99:F9:75:D8:62:82:56:C8:E4:A0:01:03:23:64:D4:C8:9E:42:2A
X509v3 Authority Key Identifier:
keyid:A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:99:ea:22:1d:92:7f:b1:d6:61:e7:d1:e1:45:b9:11:0d:c9:
b0:ba:1e:ee:70:64:78:53:33:a8:9d:9d:7f:1e:2b:f4:15:a9:
80:bc:c4:a9:03:8a:da:07:fd:ba:11:d6:44:a3:aa:7d:3f:3f:
da:87:5b:34:37:e3:2d:3e:d6:4a:51:e9:89:5a:50:d1:29:a4:
dc:eb:e1:82:95:89:5d:5b:bd:49:b7:0c:77:ee:57:64:15:c0:
df:1a:bb:a8:fc:c7:a1:f2:d2:f6:89:bc:c6:bd:d6:1e:4b:50:
15:a0:98:62:c3:fd:23:90:e8:6c:81:3f:e3:c5:76:d7:14:99:
99:a5:19:8b:e8:00:6e:b3:d1:50:a9:a9:9d:81:c7:e9:5d:74:
4c:f9:cc:ca:c5:87:57:56:38:b0:22:f8:6a:b5:b5:dd:e9:1e:
ca:b7:be:7d:71:b7:03:12:fd:54:3d:16:ad:1d:c1:d4:e1:a3:
3c:90:1c:a4:4c:06:f2:fb:38:cf:8f:95:c2:29:fb:70:a0:9e:
7c:bf:6b:d7:41:86:36:8a:1d:09:70:5b:71:b1:30:bd:70:e3:
59:63:da:92:35:66:e7:e3:88:6a:72:2b:4f:ad:45:71:8b:9c:
3c:59:c8:6a:b9:e6:e4:22:0f:83:0c:e1:1e:4b:1c:cf:fb:ed:
14:93:fd:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:26 2025 by rpki-client