Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
File: bsJOKsnNUzmWUVkM85Gta78bPiY.mft (raw, json)
Hash identifier: ont/M8Rk43yTkdbtxH5fDSVM8gWWKWlLijYLTO/eNfA=
Subject key identifier: E2:84:4E:97:23:59:DE:AA:20:9C:CB:47:EA:19:FC:8F:31:38:BB:25
Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Certificate serial: 0194C4D15098233254AACCF45A704E60BBAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
Manifest number: 0597
Signing time: Sun 02 Feb 2025 04:00:39 +0000
Manifest this update: Sun 02 Feb 2025 04:00:39 +0000
Manifest next update: Mon 03 Feb 2025 04:00:39 +0000
Files and hashes: 1: JztZZ5jdsYiJwH6r3ruJ841yjPA.roa (hash: fWtXOGVQeuynraDkbnyZnR91bHF3bELX/gnfpid099o=)
2: bsJOKsnNUzmWUVkM85Gta78bPiY.crl (hash: Rd7AIQZF5STw+Gm0KTraEXi9JfZizkgQCDuLkrDG1pk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d1:50:98:23:32:54:aa:cc:f4:5a:70:4e:60:bb:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Validity
Not Before: Feb 2 04:00:39 2025 GMT
Not After : Feb 3 04:00:39 2025 GMT
Subject: CN=e2844e972359deaa209ccb47ea19fc8f3138bb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:00:a8:2d:a1:36:38:2a:5e:0b:99:31:4a:dc:
91:47:7e:cc:3f:a9:8b:d1:2b:bc:b4:9e:68:11:55:
1d:ae:9c:0a:41:3e:d6:e8:6d:1a:f0:22:c9:b8:51:
f3:57:28:9e:84:bc:21:c1:85:ec:8b:ea:25:5a:ea:
43:99:a5:f6:ba:b7:c9:9b:ef:c3:62:f9:f4:87:47:
fd:dd:d2:41:d4:9a:73:e3:02:c5:df:49:05:f1:08:
a5:be:54:9f:bc:58:6f:29:3b:1a:59:d1:99:b1:3f:
9a:3e:1c:fb:12:14:75:68:62:53:c6:77:34:05:b5:
df:9f:69:60:4f:9d:c1:96:aa:d1:3d:9d:5f:72:ba:
ac:4f:ec:9b:a4:5b:ea:6e:85:12:f6:36:07:43:99:
a2:cf:78:60:39:5b:d8:6b:6e:0d:51:13:29:a6:2b:
f9:28:8c:48:02:05:a9:d4:ab:c0:7d:89:85:40:4d:
af:94:32:9e:43:eb:db:0b:50:c4:45:f9:a4:ff:94:
8a:30:a4:e6:a5:a0:a2:df:ff:63:8d:4b:32:af:60:
74:09:d5:02:09:ff:9b:33:27:3b:78:21:51:99:97:
e2:0e:06:a3:25:f5:0e:7f:e1:78:bf:59:37:2b:04:
3e:1a:7c:02:6e:d5:cb:0d:b7:1a:b3:fd:5d:ed:2f:
d3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:84:4E:97:23:59:DE:AA:20:9C:CB:47:EA:19:FC:8F:31:38:BB:25
X509v3 Authority Key Identifier:
keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:e8:f8:d6:c7:53:61:e8:3e:4b:8a:41:64:a9:b9:37:69:bd:
50:ae:8a:7d:79:8a:92:58:af:cd:d2:5c:0e:14:87:c4:20:d5:
e8:49:5a:64:c8:90:30:0b:12:81:7a:ea:80:bf:5c:23:ea:c1:
f2:4f:99:fe:e1:03:cf:6a:c4:35:d3:5d:c5:97:05:55:14:14:
da:fd:23:01:cf:1a:a0:7f:d4:e1:c9:00:f8:a1:91:ae:88:1b:
8d:f9:16:3c:8a:ac:74:fb:0f:71:23:3d:37:8e:89:90:3c:67:
7c:71:ec:42:bc:0f:10:cd:4d:5d:a2:63:a3:17:db:5e:b0:ba:
97:8c:35:89:0b:3d:c7:98:10:ec:3a:64:3e:bf:cf:ec:82:f2:
09:96:8c:05:d7:e4:d2:e5:c0:5b:cb:63:26:39:aa:31:83:a2:
99:a9:09:26:ca:56:46:42:da:6e:49:f6:f9:84:0d:5c:90:8c:
ef:e5:45:93:68:89:59:23:1d:68:62:c5:be:2f:a7:8d:04:30:
97:b9:26:81:11:44:6c:a0:cb:0c:e0:f4:a7:79:41:cd:9c:7f:
50:a4:e3:f8:04:2c:91:21:86:b1:74:18:cb:f6:81:1c:7d:fc:
4e:ea:04:34:e2:74:27:be:dc:22:ee:bf:d3:cb:49:92:27:51:
e0:ed:80:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:05:29 2025 by rpki-client