Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
File: o95MO22qWmmL8wfMORKCqymH1hc.mft (raw, json)
Hash identifier: VdtBkVvHcVTqZ1amEGYfFkpxjr6F7GzV3er+RJTaAlE=
Subject key identifier: 24:F9:43:95:F1:CB:C6:C2:69:5F:BB:61:BC:8B:1A:7A:4D:A3:A9:E2
Authority key identifier: A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
Certificate issuer: /CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Certificate serial: 01963FC29154A573EAEE498BFCB0383B8074
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
Manifest number: 0A3D
Signing time: Wed 16 Apr 2025 18:00:37 +0000
Manifest this update: Wed 16 Apr 2025 18:00:37 +0000
Manifest next update: Thu 17 Apr 2025 18:00:37 +0000
Files and hashes: 1: aaz13NJRzQSWik1cFJTAx8gsPnU.roa (hash: CsCDTEtayCoWB3zZSGEuzJzCmVEA7r5a08XAY8x/Hbg=)
2: o95MO22qWmmL8wfMORKCqymH1hc.crl (hash: QEb/+pngxoUXpu6w4e9p9TITbcmgbKaUwo62hXcIHWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:c2:91:54:a5:73:ea:ee:49:8b:fc:b0:38:3b:80:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Validity
Not Before: Apr 16 18:00:37 2025 GMT
Not After : Apr 17 18:00:37 2025 GMT
Subject: CN=24f94395f1cbc6c2695fbb61bc8b1a7a4da3a9e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:aa:86:39:f8:f2:38:e3:18:57:eb:92:bc:7c:
01:92:85:5b:52:d1:40:c1:1f:42:46:7a:f6:92:fe:
b5:b4:ab:33:4e:30:64:9c:75:f9:a3:53:f2:14:99:
dd:93:14:33:98:ff:9b:1f:c5:30:f3:46:24:00:90:
10:51:d1:60:8e:cd:f7:d6:8a:ac:ce:f4:ce:e9:cd:
69:e2:7e:9c:24:a5:5e:ca:3f:b6:df:9d:33:91:f7:
18:a2:18:49:6b:05:3f:3e:c2:90:53:11:78:90:f3:
e0:24:11:5f:0e:f7:d4:06:a8:9d:ab:3f:ff:4c:74:
a7:53:5d:1f:e7:b9:9a:19:9d:1c:70:80:6a:a5:00:
8b:60:83:53:bd:59:8c:43:97:1e:4e:44:1c:74:71:
f1:e2:8f:05:bf:52:ff:c8:07:7d:39:77:74:fa:ac:
5e:a4:40:89:a8:fb:e0:8e:f3:f3:17:04:07:a2:06:
9e:ef:c7:4f:cb:31:ad:bb:d4:6d:4b:52:32:bc:05:
d5:7a:aa:b9:a6:09:ec:68:2e:12:f0:d7:99:91:47:
00:17:27:ac:57:08:ce:39:3f:9a:bf:7e:6e:c9:ce:
b0:bb:a6:02:e5:d0:4d:fa:82:9d:87:6f:3d:c3:43:
b8:28:09:26:a1:30:de:51:78:68:39:63:91:91:3b:
a5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F9:43:95:F1:CB:C6:C2:69:5F:BB:61:BC:8B:1A:7A:4D:A3:A9:E2
X509v3 Authority Key Identifier:
keyid:A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:25:02:0a:8e:f2:1e:94:cb:57:d4:9d:f1:01:82:a2:96:cc:
a6:25:2d:a5:65:88:45:50:17:ff:49:ea:7f:e2:a8:df:9a:3a:
9e:84:8d:07:f4:bf:c6:81:11:3a:01:5a:34:af:a2:25:25:65:
e3:d9:4f:42:cc:c0:5b:fb:b1:21:a2:60:93:ff:cd:f0:62:94:
c0:97:60:35:2e:39:6d:40:34:c6:07:39:ef:38:25:fa:90:61:
34:c8:f1:7d:94:85:0d:29:38:66:28:dd:1c:85:53:ac:54:7e:
0e:a5:bb:b0:ac:b6:d0:14:ca:7f:8f:6b:81:86:c7:ab:e6:ea:
49:b1:36:bc:86:d8:e3:c9:94:24:3b:f9:67:d3:07:5a:08:38:
cc:aa:b1:52:8b:a5:07:69:4a:b1:25:2e:7c:c8:ad:0c:7b:4d:
73:bb:4d:35:89:57:fe:6d:b4:68:77:5b:62:24:45:0d:45:e6:
31:b5:26:e4:f2:f0:41:99:34:3d:87:98:57:0b:91:7e:c8:06:
08:65:64:b6:3e:be:ac:71:23:e5:58:d9:de:b2:d1:d9:c8:92:
b7:ba:fb:51:dc:a0:15:16:f7:8e:65:ac:31:b6:43:a3:f4:0c:
3c:f5:8b:45:91:2b:66:a7:45:db:c2:a8:a4:45:f2:c9:ac:9f:
96:f3:c6:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 21:49:58 2025 by rpki-client