Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
File: otCM3GpDDvDaiCmRcla2rY0KNvk.mft (raw, json)
Hash identifier: rXp7K+KMnEX6BRjHWxeHtX2oydm5tHYl+QFSttyzsiY=
Subject key identifier: 92:53:EC:9F:B8:5E:1A:6B:13:AD:4E:A4:CA:A3:07:E0:69:97:1A:4F
Authority key identifier: A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
Certificate issuer: /CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Certificate serial: 01958C610AB1D1A7260EEDD2DE891FBBDCB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
Manifest number: 06B9
Signing time: Wed 12 Mar 2025 22:02:04 +0000
Manifest this update: Wed 12 Mar 2025 22:02:04 +0000
Manifest next update: Thu 13 Mar 2025 22:02:04 +0000
Files and hashes: 1: otCM3GpDDvDaiCmRcla2rY0KNvk.crl (hash: vNS/M4zzTXhbr3o3qnsRuof/VTwBht3FWrZIDIjAbdQ=)
2: uWHHQqBwsm-RgF6BGlPrCIiU5u8.roa (hash: c70DUe86Dscr+BOk1RbQf+gmFBszpSvbzYy8111R1f4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:61:0a:b1:d1:a7:26:0e:ed:d2:de:89:1f:bb:dc:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Validity
Not Before: Mar 12 22:02:04 2025 GMT
Not After : Mar 13 22:02:04 2025 GMT
Subject: CN=9253ec9fb85e1a6b13ad4ea4caa307e069971a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:93:fc:96:ab:e1:26:1c:b0:a4:df:34:39:b7:
94:fb:00:57:00:fe:03:03:8b:90:ac:c7:aa:b0:36:
05:f2:40:c6:d6:d9:2e:31:00:99:5e:d6:0b:1f:c5:
1b:89:af:63:8a:42:ec:b2:21:6e:4e:1b:1a:25:f8:
6b:b5:88:9e:b4:f6:be:60:86:87:52:4d:92:99:e3:
ab:5f:59:bf:2c:be:7d:b1:e7:e1:8b:b1:73:c8:99:
58:e1:0b:c4:8a:39:8d:50:cb:dd:3c:f8:69:b2:9c:
fd:31:48:a7:77:a3:3e:10:37:9c:3a:74:89:b5:8a:
e5:9c:a3:65:21:29:7c:4d:53:e9:a2:40:80:e5:ac:
d2:8e:69:02:78:db:5e:85:9a:c1:d8:18:61:c7:cc:
7e:0c:d0:e9:08:61:4b:9e:99:a0:cc:54:ef:08:0c:
fb:da:c6:1e:f8:83:f5:29:57:9f:b6:f4:48:de:51:
df:aa:46:bf:ce:18:52:e5:16:c2:a0:0b:39:ae:d2:
a6:27:13:15:44:56:60:e2:b9:1a:b3:9b:a7:d4:d7:
7f:8e:4b:e0:ae:c9:14:eb:5d:5b:8e:57:88:55:7c:
45:47:dd:6a:fd:a2:e9:82:53:fe:69:21:5b:77:f6:
3c:56:0c:df:5d:4e:3f:58:32:77:ab:0f:99:5d:62:
b1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:53:EC:9F:B8:5E:1A:6B:13:AD:4E:A4:CA:A3:07:E0:69:97:1A:4F
X509v3 Authority Key Identifier:
keyid:A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:6d:d0:ad:b7:14:7f:d9:5a:0b:80:40:ae:21:bd:7b:66:53:
e3:45:a9:1c:08:72:02:e4:c0:70:c7:d0:77:d0:8b:b5:b9:c0:
3d:fe:3c:f6:c6:55:6b:24:65:cc:5f:3b:6f:b2:76:80:b3:f3:
3e:06:a3:6f:ad:65:4e:a3:0d:df:bb:cc:2a:5e:88:2f:59:7f:
46:89:8e:c0:72:0b:2c:df:2f:2c:3a:30:4a:32:89:1a:cd:58:
58:bc:08:e4:76:6a:d2:9d:19:35:0a:c5:e6:12:46:40:a2:f3:
b0:ad:eb:e5:9e:63:a1:1b:79:7b:62:38:7d:ea:6e:e7:6b:2b:
a7:47:db:2a:b3:76:e2:77:0e:86:7e:19:ee:97:d9:6f:ac:b7:
2a:93:a9:16:9f:c3:43:85:9a:29:cf:bd:df:9b:ae:e0:08:1a:
b8:0f:02:01:66:dd:dc:b0:81:9c:3c:e1:00:eb:8c:1f:d2:bf:
d8:75:20:13:9f:01:31:c3:f6:96:80:84:dc:8e:09:51:d2:73:
58:8c:d9:3b:d5:66:cd:9e:d5:2a:16:28:53:3a:c1:1f:43:a7:
a0:46:0e:7a:ea:e6:e2:f0:e8:6b:73:50:99:b6:fe:68:91:7d:
7f:cd:e4:2a:c6:72:29:f1:ef:4c:28:be:45:61:e5:c1:c2:8a:
de:81:7d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:24 2025 by rpki-client