Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: YXHjpsEQ4Ssd21UTRxOI0MDfQqjic+01Q7lwfKwLF0g=
Subject key identifier: E2:14:6B:C0:14:8D:2F:62:D3:86:EB:62:D0:74:49:5F:96:E0:C5:F6
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 01961245FAF5D77375244CCEE979247F3C51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0D9F
Signing time: Mon 07 Apr 2025 22:01:38 +0000
Manifest this update: Mon 07 Apr 2025 22:01:38 +0000
Manifest next update: Tue 08 Apr 2025 22:01:38 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: THPYi/m3uqi184A+GbailV+Zsy/Av5ZUoychGDmHWwQ=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:45:fa:f5:d7:73:75:24:4c:ce:e9:79:24:7f:3c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Apr 7 22:01:38 2025 GMT
Not After : Apr 8 22:01:38 2025 GMT
Subject: CN=e2146bc0148d2f62d386eb62d074495f96e0c5f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5f:c4:b3:03:36:55:a4:41:1f:7b:8e:da:f5:
47:60:ea:cc:44:1e:ae:c3:9e:4b:44:cb:c0:1c:c4:
5e:de:16:2a:aa:1b:35:f8:75:59:c4:56:9a:58:07:
f0:60:b3:cd:17:3b:1c:4c:75:24:06:b0:3c:08:f9:
38:2c:68:de:79:37:b4:5a:dc:5b:f5:ba:d9:59:87:
7d:cc:59:bc:fe:42:3c:ae:be:88:89:b8:90:86:7e:
e8:3d:3c:df:7d:e2:65:d0:77:97:85:f3:48:23:d5:
0d:bf:a7:b7:aa:8e:cb:a6:8b:9a:6c:6e:d6:cc:da:
99:2c:5e:fc:d2:e4:6e:94:d9:1a:7a:ec:10:c4:fa:
39:d9:2e:95:ce:60:0b:d0:2e:a4:c9:73:78:d5:2d:
57:bf:0f:08:69:b6:4b:86:8a:8d:b8:cb:a6:c7:46:
6e:f7:4e:fc:ae:b9:6f:11:80:6d:eb:f4:22:ab:23:
f0:4a:07:7f:a1:48:af:96:9d:c9:db:d7:7e:a2:f0:
02:84:26:7a:ab:43:46:94:cb:7d:af:51:42:44:01:
0f:3e:64:55:22:82:9e:35:75:ed:f3:6c:f1:58:11:
7c:04:9f:9e:8e:9a:30:8c:84:d2:18:58:09:d0:b2:
8e:cf:c8:8a:4e:f6:f1:8e:5b:b1:bd:c2:48:12:2a:
19:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:14:6B:C0:14:8D:2F:62:D3:86:EB:62:D0:74:49:5F:96:E0:C5:F6
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:fb:70:78:f2:52:f5:f2:b3:b8:51:f6:cf:22:5e:b8:7c:30:
aa:8a:a2:48:78:e6:a3:c8:d4:fc:11:a8:11:99:a0:f1:61:4a:
1d:36:18:cc:9a:15:ec:e9:86:50:bc:aa:2f:22:98:64:b3:24:
cb:de:fd:65:b6:06:a7:6b:51:a2:89:20:32:af:5f:b5:e8:f5:
99:4f:c5:38:13:f2:26:52:cc:8d:c9:3d:50:c7:82:9c:38:8c:
57:15:86:63:7a:60:9c:0a:75:d6:0a:41:44:ce:d5:f5:69:6f:
7c:7c:b4:b1:28:0b:60:f6:b9:1d:bc:b8:4d:64:4e:8b:5c:f2:
d3:83:2d:2d:81:21:79:1c:94:ca:99:92:ea:dd:92:25:1a:eb:
fc:1f:78:88:68:95:3a:78:90:65:18:cc:b3:55:89:38:a3:12:
30:eb:88:4c:67:d3:b7:80:e1:65:b7:24:f8:4a:7d:db:cb:50:
7b:b0:55:bc:45:2f:39:84:30:50:37:71:41:16:60:a5:ca:2f:
56:b8:1e:b3:f2:c6:b1:ee:ec:8b:b3:3d:3e:ee:0d:b4:a0:3a:
44:6b:a4:8e:e8:33:0e:57:4b:3b:42:cf:61:80:01:e0:05:6e:
c1:26:65:05:2a:a9:fb:c3:21:d1:cf:9a:4a:d6:5f:c1:67:90:
ea:74:3d:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:58:30 2025 by rpki-client