Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
File: OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft (raw, json)
Hash identifier: mXSBVqTZJojqcYU72o95UzF/ZJQZ0Y7Ig+qKxMK4eV4=
Subject key identifier: 2D:06:18:95:3D:C2:21:71:86:76:9D:64:80:46:A6:9D:35:61:AB:9D
Authority key identifier: 38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
Certificate issuer: /CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Certificate serial: 019644E88C85838A7C86771E0773F07E016C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
Manifest number: 0BE9
Signing time: Thu 17 Apr 2025 18:00:13 +0000
Manifest this update: Thu 17 Apr 2025 18:00:13 +0000
Manifest next update: Fri 18 Apr 2025 18:00:13 +0000
Files and hashes: 1: OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl (hash: ry2xHPYrZunxaKm42zefNmNXKJjjaMK6kAJ0abuo7OE=)
2: dxC4OOVdD7y8lzmmwGYNpdpf-D0.roa (hash: 1F32hSGI4pbAFMDzlkPoS+O8tvJxdYgPLvmfvhN+IXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:e8:8c:85:83:8a:7c:86:77:1e:07:73:f0:7e:01:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Validity
Not Before: Apr 17 18:00:13 2025 GMT
Not After : Apr 18 18:00:13 2025 GMT
Subject: CN=2d0618953dc2217186769d648046a69d3561ab9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5b:63:47:8a:8b:45:38:60:63:d6:b0:b6:83:
f8:e7:56:76:9e:f8:a2:7b:07:f8:be:98:84:7c:81:
0f:e7:88:0c:d5:b9:aa:31:97:6e:74:5d:82:82:db:
58:1f:a2:f7:2a:31:4f:50:e3:d4:3f:ce:8c:35:18:
38:67:6a:81:2e:8c:8c:8f:d6:5f:ed:bc:da:91:33:
fb:d2:67:1a:c8:51:80:87:d1:44:86:29:4c:e3:0f:
1c:90:7a:b0:8a:56:69:00:62:d7:c1:d6:14:92:06:
e7:12:70:a7:15:48:4d:a6:d2:c6:38:a3:fd:a3:e8:
07:32:0c:4e:34:9e:db:cb:a9:e8:35:81:cd:de:8c:
a7:91:8b:22:05:4b:16:75:8b:a7:fd:a7:ac:ef:d3:
6a:8b:2b:a8:a1:f5:23:85:bf:f8:97:c4:3e:42:64:
23:f9:1c:f8:ae:12:4d:d4:73:15:cc:eb:c8:d5:a1:
8d:81:2f:06:de:05:5c:85:43:25:46:bb:0f:7c:cd:
dd:18:fa:0a:9e:95:69:95:51:76:da:2a:27:b6:ac:
b2:ab:a7:8a:24:7f:8f:6d:01:ef:52:c2:e1:22:c5:
ab:ad:15:15:d0:1e:82:2f:05:a4:a2:93:e8:ee:97:
e8:39:7f:b4:2a:1d:73:1d:48:fb:e5:21:25:8d:8e:
3c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:06:18:95:3D:C2:21:71:86:76:9D:64:80:46:A6:9D:35:61:AB:9D
X509v3 Authority Key Identifier:
keyid:38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:63:c8:01:fa:3d:c5:c1:59:c1:56:79:68:1c:19:94:b0:fb:
83:84:70:e6:b5:62:1b:1f:72:e7:f1:c0:30:49:21:c8:e7:d5:
28:71:ef:ed:3b:7c:f4:25:b0:31:bd:8d:36:72:d8:5e:2d:7e:
eb:07:c6:d6:f2:6f:e8:4f:d0:2e:f2:9a:2d:9b:21:a1:d0:f7:
4b:73:41:a6:2d:4f:72:5e:aa:0a:07:27:32:23:c8:0e:49:e9:
f8:75:b4:7f:8a:fc:73:14:29:59:41:14:11:24:9c:7e:ca:f2:
3d:a7:3e:8d:b0:fc:27:b3:03:15:dd:b1:7e:2d:bb:f6:79:ff:
20:8a:06:30:fc:12:39:0a:0a:43:7d:f9:3e:b1:6c:91:e6:22:
56:78:8e:1a:d1:9e:38:ff:88:8c:71:9d:30:da:0c:8e:ed:77:
3f:a8:cc:7e:d1:30:3a:cb:90:2e:ef:36:28:e8:e2:8e:5b:27:
96:ec:0f:46:b9:52:44:e1:6a:a4:3e:8a:8b:01:f3:0b:76:05:
98:58:1c:59:93:10:10:93:2e:46:c4:02:ac:44:a8:3c:16:19:
94:a4:d0:0b:4e:6d:37:33:21:95:cb:0d:33:57:e3:70:b5:29:
29:9e:a4:6c:fd:2a:bb:e3:ed:b0:cd:2e:b1:2a:e7:bb:ae:8e:
b0:71:46:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:42:22 2025 by rpki-client