Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
File: Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft (raw, json)
Hash identifier: U+bU/FeW6sVp36dFSgKNWtW3ZtePXgtmxRyYiY2xqC4=
Subject key identifier: 93:9D:FB:14:6C:34:1D:E8:75:D2:1D:CE:42:77:89:DF:7C:5E:41:80
Authority key identifier: 3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
Certificate issuer: /CN=3aa9e9832ed25de78c3ce0501208261066281f51
Certificate serial: 01951134F09F8CDF7499CC9EBB09CA8FC9B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
Manifest number: 0E9E
Signing time: Mon 17 Feb 2025 00:00:36 +0000
Manifest this update: Mon 17 Feb 2025 00:00:36 +0000
Manifest next update: Tue 18 Feb 2025 00:00:36 +0000
Files and hashes: 1: Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl (hash: tuRgMnPbDNoqLXcH13jszsbxY0K4CgVWzDtAGMFJ5UU=)
2: aWYIXcaJkiVxLLibbCxl3jRBEqg.roa (hash: is1rfoaga6D1caCReE6B6u2V3E2PMjX4LQvHyaYSnhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:f0:9f:8c:df:74:99:cc:9e:bb:09:ca:8f:c9:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aa9e9832ed25de78c3ce0501208261066281f51
Validity
Not Before: Feb 17 00:00:36 2025 GMT
Not After : Feb 18 00:00:36 2025 GMT
Subject: CN=939dfb146c341de875d21dce427789df7c5e4180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:81:0a:2b:bf:5e:e7:6c:6c:0e:8e:28:d3:67:
06:07:51:f1:2c:36:30:93:e0:10:1e:e3:86:5d:94:
a8:57:ff:a0:b5:22:c3:b7:51:9a:8f:40:4a:05:97:
da:b1:dd:13:e8:8a:1b:97:5f:d8:53:ae:b0:ac:3e:
ab:e2:ea:58:11:5b:57:91:17:f1:4a:5d:04:57:76:
aa:c3:f6:03:5c:6d:a6:b3:08:aa:86:9d:86:b2:25:
a6:08:de:47:2e:39:5c:21:f0:54:d0:5e:c8:a9:d4:
8c:1f:51:cf:cc:f7:c2:f3:04:f2:2d:d1:c8:89:5e:
23:9c:5d:28:6b:26:3e:ee:78:57:f8:a7:46:7b:7f:
3e:88:7b:43:70:17:8c:44:76:52:c9:f4:11:e8:12:
c7:6b:92:99:59:0a:3c:e7:88:fb:a1:a5:aa:6a:c9:
a6:92:ac:0d:50:d1:ad:18:8f:13:22:ba:b4:22:8d:
06:7f:70:d0:c9:31:07:14:4a:47:37:2c:98:c8:16:
93:e6:bf:42:7e:16:24:3f:03:35:45:7a:0f:63:e4:
96:34:a7:5c:e9:64:3d:f3:46:18:c7:60:5c:b7:94:
20:96:64:2c:33:51:8f:37:d4:ad:ba:dd:26:09:6e:
fe:93:39:46:d1:2a:d3:4d:02:2e:44:1d:39:19:9a:
8f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:9D:FB:14:6C:34:1D:E8:75:D2:1D:CE:42:77:89:DF:7C:5E:41:80
X509v3 Authority Key Identifier:
keyid:3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:79:f1:c0:5a:ca:c9:fe:f4:99:4e:a1:77:d5:d3:ab:cd:95:
fa:a6:01:50:92:af:38:d2:84:43:b7:79:e7:05:0d:da:e7:f2:
b6:a5:53:c8:f5:8c:f5:29:d2:b1:f6:02:e2:7f:05:68:d6:4c:
1e:cf:e0:34:3a:b4:55:43:19:19:5d:6d:b7:df:9c:7c:ce:ad:
c5:32:9c:a8:b4:b4:e3:16:11:85:49:5b:84:db:20:25:70:a6:
aa:dd:94:44:55:18:4b:81:ae:ce:d0:58:12:49:86:dc:8c:f4:
08:e1:90:b9:27:00:17:39:95:76:6f:d6:dd:bb:28:49:9e:b1:
9e:fc:7b:81:52:da:e0:55:69:0a:0a:4f:66:f5:b3:90:92:58:
55:f8:19:7d:80:f1:09:76:2b:dc:92:36:2f:d0:23:90:de:3e:
56:cd:c7:25:ae:ca:ae:51:e6:37:96:a0:ef:d5:13:54:79:14:
d0:a5:90:2b:dd:3a:f6:d3:9d:b8:9c:02:b9:91:67:7a:cd:2f:
e2:4c:84:fa:41:70:d6:14:38:b8:69:ff:c4:21:5a:8c:7b:be:
95:09:7c:cd:9e:6e:5e:1e:0c:8b:0a:27:06:87:8c:07:aa:d1:
ba:0a:bc:47:f7:b8:30:8e:06:0b:7b:11:b6:f1:36:ce:43:32:
49:0b:6b:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:29 2025 by rpki-client