Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
File: O2MTmh9PiMMM7iIckUajbbVU_3A.mft (raw, json)
Hash identifier: k8SwaXE8dyS+RufRNOxCPlYEa2d7QJvU+cINk0hJPXs=
Subject key identifier: 87:F3:2C:25:6B:A8:86:6C:16:AC:99:3C:8F:39:60:41:B3:CA:66:48
Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Certificate serial: 01964D7E9EC1D3C190424CF6F81F309A05EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
Manifest number: 0794
Signing time: Sat 19 Apr 2025 10:01:05 +0000
Manifest this update: Sat 19 Apr 2025 10:01:05 +0000
Manifest next update: Sun 20 Apr 2025 10:01:05 +0000
Files and hashes: 1: JoFwTwAv-_c9ZLWMyBNEWDPvfas.roa (hash: ErYlkkNh49mz7B2O46c+uSN3yYpaocdKkRzHsCd2I3A=)
2: O2MTmh9PiMMM7iIckUajbbVU_3A.crl (hash: zBG4cIJXrUxEfCIHr2R+o3vA5Y0Hisrw7+1GZ2i88PE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 10:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:9e:c1:d3:c1:90:42:4c:f6:f8:1f:30:9a:05:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Validity
Not Before: Apr 19 10:01:05 2025 GMT
Not After : Apr 20 10:01:05 2025 GMT
Subject: CN=87f32c256ba8866c16ac993c8f396041b3ca6648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1f:2a:53:54:0e:72:70:e9:b5:31:5c:de:f2:
d4:7e:a4:96:d3:08:39:c3:f4:62:7e:78:13:a2:db:
f8:bd:f3:f8:11:2d:20:40:b9:79:ed:ac:3c:ed:99:
ad:32:72:7a:24:ae:70:07:98:c6:50:b8:1a:ea:cd:
78:df:14:96:6d:06:5e:73:38:48:86:94:98:f5:32:
bd:19:11:1c:27:7b:dd:13:d1:6b:41:fa:0f:5d:7f:
58:d6:df:0d:6b:0b:eb:82:ac:6b:2c:76:09:9e:71:
b8:38:31:5e:e9:be:71:27:be:30:c7:88:1c:8a:d6:
99:11:55:38:15:20:d8:64:37:4b:c6:8c:9a:f0:36:
1d:bb:dc:6a:f6:48:99:97:7a:5f:d4:a0:5e:98:4f:
8d:a6:1f:ad:43:ff:d1:7f:f0:57:bc:25:08:65:90:
52:30:e2:ec:9b:e9:66:36:a3:b0:de:8d:a2:61:27:
ca:15:70:46:28:05:85:35:9b:f4:61:aa:b8:b3:e8:
52:ed:05:6b:c1:b4:04:fc:58:30:37:54:9b:38:57:
5f:d7:55:9f:45:43:a3:63:cf:d2:1a:17:4a:dc:36:
70:b5:2c:be:d2:27:b5:d1:94:c6:65:be:f2:cb:21:
2e:72:1d:b3:f1:20:4b:86:30:b3:e3:d1:cd:41:8e:
52:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F3:2C:25:6B:A8:86:6C:16:AC:99:3C:8F:39:60:41:B3:CA:66:48
X509v3 Authority Key Identifier:
keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:dd:c2:70:c8:fc:3a:1c:bb:49:59:af:c7:9b:b5:f5:cb:a0:
4f:3d:3d:fc:a0:a9:17:a2:1d:d7:e6:be:f9:a0:37:5e:1e:c1:
fd:40:32:6a:79:3f:0b:82:56:8a:4c:f0:d3:d9:58:92:ab:82:
8f:a5:9e:d7:d9:76:9c:b1:5f:7e:f8:31:cd:ae:84:f6:c9:c4:
02:4d:b0:5a:4a:56:16:23:c2:fd:56:1e:1c:88:24:57:7f:1e:
d4:4c:6d:72:5b:b5:47:74:48:ad:a3:9a:a3:69:28:18:aa:e3:
4d:42:9c:0f:ec:96:20:2d:8c:d6:73:84:e0:38:79:4e:59:21:
35:d0:6b:e0:ed:39:f8:97:4a:a9:03:33:df:f0:d0:3f:d8:67:
3a:ea:3f:7d:f3:8b:9b:25:e6:4e:a9:be:00:8e:23:5f:39:7f:
72:05:10:67:75:50:d3:44:96:03:3f:0f:20:88:16:3a:e4:fe:
a3:6f:71:a4:05:c8:0a:fd:7b:e6:70:04:b1:0a:c0:49:b5:67:
3d:13:00:83:12:f5:80:0f:f9:c0:cd:eb:03:20:24:8c:c4:83:
56:23:30:d1:58:e2:2c:c7:e5:27:2c:f1:04:47:d6:00:18:fd:
97:53:90:9e:26:59:4f:23:13:84:55:30:d3:9f:0d:e8:7d:fc:
4c:71:40:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:12:04 2025 by rpki-client