Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
File: aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft (raw, json)
Hash identifier: /uMQlQ3Qr02/M1zlitjeP6aukwXpM8Ol9OgQjkEsdjM=
Subject key identifier: 49:CE:BD:0B:D5:2F:FE:CA:45:14:74:33:9A:06:DF:1C:AC:ED:85:D2
Authority key identifier: 68:93:18:8E:BF:CE:20:E5:BC:53:F3:AC:F5:7F:40:7D:9E:57:AC:17
Certificate issuer: /CN=6893188ebfce20e5bc53f3acf57f407d9e57ac17
Certificate serial: 0195127E7792FFB06F565F98D3D882F8704D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
Manifest number: 1458
Signing time: Mon 17 Feb 2025 06:00:32 +0000
Manifest this update: Mon 17 Feb 2025 06:00:32 +0000
Manifest next update: Tue 18 Feb 2025 06:00:32 +0000
Files and hashes: 1: 1-POC2nfhxokaO34U4IxxrQdEyHg.roa (hash: HGa5ESI5zwwldA7SOJhQSh4vTo8C4LN7Ht6oX1cZupU=)
2: aJMYjr_OIOW8U_Os9X9AfZ5XrBc.crl (hash: P4B1jJDuFda9j6bt9z5BaICjGJZt1wdX4at6NS/1f9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:77:92:ff:b0:6f:56:5f:98:d3:d8:82:f8:70:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6893188ebfce20e5bc53f3acf57f407d9e57ac17
Validity
Not Before: Feb 17 06:00:32 2025 GMT
Not After : Feb 18 06:00:32 2025 GMT
Subject: CN=49cebd0bd52ffeca451474339a06df1caced85d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:99:e2:da:18:a6:6f:ce:f7:e9:4a:33:53:ba:
dd:a4:c6:3f:0e:93:07:f0:af:eb:de:bb:02:20:90:
e9:30:b0:a9:aa:3d:4f:4d:60:b4:2a:d7:e8:85:30:
ef:16:25:14:d1:59:bd:de:9d:42:7d:30:1d:6e:04:
22:7d:d4:51:6d:0a:7f:ac:97:6a:76:f6:50:38:75:
8c:9d:fa:64:af:22:44:b5:72:1f:ef:f1:1a:04:2a:
5f:25:02:83:5f:c2:a1:96:7a:18:cd:6d:c3:4d:67:
2d:a5:a9:2e:1a:3c:26:7b:0c:57:51:65:f9:64:fd:
f3:fc:fc:03:c6:64:a6:30:90:d4:0e:32:fe:1e:6a:
13:ac:9e:cd:06:fe:ce:67:dd:c6:13:4b:ee:f1:04:
23:f4:b6:3a:ca:10:57:12:61:c3:9b:8f:76:40:61:
64:91:47:78:f3:6b:4d:97:db:39:ee:cd:9c:73:c6:
19:8a:68:a7:9f:86:5b:ae:9f:7d:b4:cf:d3:e7:e7:
c9:0c:35:3b:ca:a9:cb:3d:59:ca:d2:4f:3e:ab:c9:
72:cf:55:7e:c2:16:a4:62:82:52:ff:31:20:cc:39:
f6:ac:89:e1:c5:ab:36:b3:c3:ee:61:67:49:9b:bc:
b7:50:21:29:6e:47:71:f3:13:21:a0:59:df:29:88:
bf:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:CE:BD:0B:D5:2F:FE:CA:45:14:74:33:9A:06:DF:1C:AC:ED:85:D2
X509v3 Authority Key Identifier:
keyid:68:93:18:8E:BF:CE:20:E5:BC:53:F3:AC:F5:7F:40:7D:9E:57:AC:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:13:91:16:1d:a6:27:d1:d1:d6:ed:4c:9e:34:fb:91:ad:51:
f7:53:c4:c1:d8:41:d0:b8:51:f8:d1:ea:c9:f3:b6:55:af:9f:
cc:1d:64:c5:d0:93:2f:15:f3:5b:6e:8d:db:fa:bc:c6:63:f0:
4e:e5:ca:98:1f:95:f1:7b:ac:3f:ae:90:f8:da:0e:58:54:2d:
5e:b3:40:2e:71:f5:d3:b3:a4:d0:8e:50:7a:2f:2f:f7:c7:31:
5a:56:b0:14:6b:74:1d:d0:4c:74:59:5b:ab:37:a0:df:e2:8f:
ee:2d:cc:df:14:f3:42:54:05:c7:cf:b6:f7:de:1b:88:f1:70:
fb:e6:f4:31:70:a6:02:09:76:91:ef:04:38:2d:c9:87:ab:8f:
1a:91:9a:b8:13:13:e9:34:cd:01:c5:ba:c8:24:6c:22:5f:1e:
30:2f:2d:4f:67:75:ff:8a:20:e5:e6:34:6a:65:05:ed:fd:84:
1d:f7:a3:a0:8d:af:8f:ad:8e:f0:2e:e5:54:37:e9:df:64:4f:
0b:b4:c5:4a:79:ea:94:dc:1a:a5:7e:17:6b:40:7a:af:b6:b3:
6b:11:9c:4e:cf:c7:76:73:1b:fb:17:46:24:8a:e5:09:38:29:
0c:f5:67:70:6e:19:b2:8a:84:a2:0b:74:8f:f5:10:3a:89:59:
52:3d:9e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:47 2025 by rpki-client