Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: 22+6IOlWyPl1n4jt6bWe3KgrUp1/4HqzVgKHdIeATMk=
Subject key identifier: 4D:77:E2:C5:BE:A9:A5:F1:79:7A:50:D1:5F:E3:94:BE:E5:B4:3D:E8
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 01958B1691970952D01B05557695ECB4A951
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0D59
Signing time: Wed 12 Mar 2025 16:01:06 +0000
Manifest this update: Wed 12 Mar 2025 16:01:06 +0000
Manifest next update: Thu 13 Mar 2025 16:01:06 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: u0GmcktOr1y6Do/n5Ogk3oetuoyD/ZQS4LQ+Gi5mVw8=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 16:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:16:91:97:09:52:d0:1b:05:55:76:95:ec:b4:a9:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Mar 12 16:01:06 2025 GMT
Not After : Mar 13 16:01:06 2025 GMT
Subject: CN=4d77e2c5bea9a5f1797a50d15fe394bee5b43de8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0e:f8:a3:76:73:bf:33:fe:0a:34:df:29:c0:
7c:14:71:f9:0b:d6:04:3a:bd:7b:06:eb:a2:79:83:
59:7d:34:e8:23:73:54:80:de:c4:fc:d1:42:e4:4b:
ae:28:51:3c:94:1e:fb:77:93:27:dd:0f:9d:18:88:
a2:10:22:d9:15:5b:ff:ba:3e:47:41:b9:16:e4:3d:
41:c2:56:e0:e3:5a:6a:86:e9:2c:28:1d:a3:65:e8:
ad:d0:e8:06:99:7b:7d:de:e4:1c:26:ff:e2:46:39:
e5:18:5f:b9:13:af:98:e5:b9:16:cf:81:33:1f:6a:
3c:26:2f:88:ba:c7:15:5f:e9:70:ef:fc:20:67:89:
9a:f1:4e:3e:3b:42:a7:2e:eb:0c:7b:98:39:0d:2f:
f3:d6:b6:28:59:84:80:f8:97:6d:ad:b8:f5:47:b1:
7e:de:9c:46:ae:46:e9:f4:e6:41:5b:c5:98:ce:ce:
e6:b7:f5:46:a7:41:4c:1a:69:82:ee:d6:e9:ef:71:
e0:d3:fb:dd:68:ed:a6:aa:ba:3e:29:7d:1c:c7:6b:
01:8e:0a:e0:0e:7d:cb:77:0b:07:8d:f0:38:d1:ff:
4a:de:d9:90:9c:a5:25:b3:9d:54:02:c6:79:72:60:
4d:9a:8c:72:da:45:08:16:1c:39:25:13:20:f5:fb:
43:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:77:E2:C5:BE:A9:A5:F1:79:7A:50:D1:5F:E3:94:BE:E5:B4:3D:E8
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:ff:41:42:d4:36:4d:50:e5:53:e0:0d:ac:d6:35:4b:f4:76:
6e:31:54:5f:a0:0c:69:9c:71:0f:c9:c7:3e:73:dc:fd:c4:29:
50:35:49:22:cf:bf:69:52:be:3e:aa:3d:f9:6c:0f:f6:ac:3f:
b3:86:e5:c8:99:7a:15:01:1e:dd:fb:bd:8c:63:52:a5:33:36:
ec:6b:21:ac:5e:e3:25:b8:b9:e6:7e:e9:87:10:69:84:df:7b:
d8:24:87:44:83:9a:50:4d:a3:36:00:3e:49:3f:4f:cf:15:7b:
42:a3:a3:5d:2a:9c:8e:d4:66:02:db:f8:43:fe:62:31:f1:f3:
88:14:0c:07:b0:fe:71:4a:18:38:37:14:2e:3a:67:2a:91:02:
00:c1:ff:d8:36:08:df:08:77:1b:dd:86:64:f3:1a:13:9c:1b:
f3:23:80:51:b6:52:4c:fa:de:04:fb:d6:f2:3c:66:85:62:e9:
c9:49:97:dd:71:ac:01:64:dd:e9:7c:be:1c:ca:ff:c7:80:6a:
c6:f4:0a:8c:f0:0e:03:a7:e2:6c:82:a3:1e:ca:f4:ae:50:7c:
c0:46:5b:d2:65:c5:03:c7:7f:32:45:39:17:38:1b:d4:2d:7f:
03:a0:92:b0:3d:d0:e3:4b:91:30:7d:df:07:68:7f:19:f0:22:
95:a9:6b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:55:47 2025 by rpki-client