Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
File: otCM3GpDDvDaiCmRcla2rY0KNvk.mft (raw, json)
Hash identifier: L2x8BHU3cTaw+mOvI48w9x5nxGAaoZSt9474kus8SvM=
Subject key identifier: 39:A3:7C:17:62:74:3E:BD:2A:D6:79:46:16:C5:03:4C:D0:78:ED:D0
Authority key identifier: A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
Certificate issuer: /CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Certificate serial: 01964D7F14F835DCAB93D3B61D82E7B11B66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
Manifest number: 071D
Signing time: Sat 19 Apr 2025 10:01:36 +0000
Manifest this update: Sat 19 Apr 2025 10:01:36 +0000
Manifest next update: Sun 20 Apr 2025 10:01:36 +0000
Files and hashes: 1: otCM3GpDDvDaiCmRcla2rY0KNvk.crl (hash: rCTwviWBGxC/aCNMGaVdbZruPhY6zFcuGQ50Kqn5C2o=)
2: uWHHQqBwsm-RgF6BGlPrCIiU5u8.roa (hash: c70DUe86Dscr+BOk1RbQf+gmFBszpSvbzYy8111R1f4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7f:14:f8:35:dc:ab:93:d3:b6:1d:82:e7:b1:1b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Validity
Not Before: Apr 19 10:01:36 2025 GMT
Not After : Apr 20 10:01:36 2025 GMT
Subject: CN=39a37c1762743ebd2ad6794616c5034cd078edd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:45:82:6f:de:96:9f:7d:f2:c6:d7:0f:4b:e4:
b3:b1:0e:71:92:0d:dd:6c:34:2d:e8:01:ba:e1:10:
bc:e6:f6:97:f8:8f:b0:7f:e8:2c:cd:b9:33:ed:d4:
cb:d7:1a:6b:53:b3:04:a1:28:f1:bb:cf:51:d6:a8:
3f:5e:c6:8b:c7:3b:d7:71:e6:25:22:95:b5:37:80:
ef:1d:b2:d6:e1:30:09:52:09:fa:a5:15:97:5c:07:
50:69:d7:6e:7f:e4:12:4a:f6:91:bd:54:e2:1c:be:
3e:6d:1f:a5:4a:a0:48:25:25:a6:35:9f:a2:32:e8:
c4:0c:75:fb:30:f5:06:99:5e:db:26:da:b0:67:f3:
4a:9d:eb:37:dd:60:5f:e4:78:db:df:b3:6d:1f:69:
f0:02:5b:5b:03:e0:d3:bf:b2:93:9c:05:3b:0a:2a:
fe:4d:de:e5:6c:5b:f5:e6:67:ec:76:f0:ad:70:6c:
bd:37:b5:b5:8c:31:9b:5e:99:5f:cd:a1:c4:4c:87:
90:82:f7:49:96:36:df:dd:1b:37:2c:c6:e4:bb:77:
89:95:68:25:27:03:7b:6d:24:6f:23:25:6a:5c:68:
5c:b0:bd:26:36:b4:8f:fd:b0:66:d3:ff:d7:d3:8a:
73:88:70:fa:30:ca:93:61:a8:60:6f:72:f7:65:c0:
4e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A3:7C:17:62:74:3E:BD:2A:D6:79:46:16:C5:03:4C:D0:78:ED:D0
X509v3 Authority Key Identifier:
keyid:A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:09:3e:89:57:e7:5b:b3:4d:57:e9:8c:b2:4f:f1:79:cf:d0:
99:0c:91:5a:43:a4:fc:c2:eb:9f:5f:35:ce:1b:a6:45:c8:ee:
77:f2:e6:11:d1:87:0e:88:ce:e2:15:60:0b:a5:74:c1:8f:d3:
ea:a5:ca:54:33:29:c6:c8:44:d3:a5:ae:d9:57:56:4a:07:84:
e1:44:69:7e:b8:cb:2d:b5:98:4d:ac:ed:c7:ed:79:02:b0:bf:
4a:a4:98:23:a1:08:55:18:6b:f8:2b:62:63:57:7f:46:61:4f:
4f:4a:18:8f:57:a4:43:41:ae:e2:c9:66:88:04:1d:ef:0b:54:
41:6a:3b:e1:99:1f:c9:a3:5c:c6:d3:d6:cb:da:48:80:4d:01:
63:88:22:68:a6:fa:22:42:af:bb:06:24:a2:b3:cd:2b:d2:70:
ba:16:c2:7f:a9:82:51:a7:40:b3:15:cd:b2:8b:e3:fa:00:27:
8a:d2:0d:db:4d:e6:30:68:ea:4c:6c:5c:df:07:99:9a:e4:68:
b7:05:5f:b0:2b:fe:bb:bc:19:d2:7f:40:5a:04:19:68:03:2a:
f8:4b:e3:bf:8b:e6:ad:fd:03:04:2a:4a:00:d2:17:04:f1:ef:
08:c2:a4:79:47:6a:4e:27:b6:89:73:f3:e2:ae:86:33:59:df:
20:9f:7d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:26:31 2025 by rpki-client