Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
File: ovl077UOcpyeAVqLwrbCsGGd_IQ.mft (raw, json)
Hash identifier: hs5igrbz/Zp4KsPuLWgmITyVlArAelAHpuULGCjAVUc=
Subject key identifier: 81:8B:6D:03:39:72:EB:DF:3B:31:F4:D4:3D:0B:77:01:0B:A0:51:1E
Authority key identifier: A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
Certificate issuer: /CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Certificate serial: 0194C42C2460659B8297BEF44DD778FF1390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
Manifest number: 08F9
Signing time: Sun 02 Feb 2025 01:00:14 +0000
Manifest this update: Sun 02 Feb 2025 01:00:14 +0000
Manifest next update: Mon 03 Feb 2025 01:00:14 +0000
Files and hashes: 1: Uk_aanYMRxowJq16GMNyhbsFOEw.roa (hash: creuRsSl8nSakc/hCQHakSFNIaRZLii8X1gMM9BUYWY=)
2: ovl077UOcpyeAVqLwrbCsGGd_IQ.crl (hash: wWylRB9BwXDWWYuk6V6aahjaD6KNclPVgN9iqWb+LB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:24:60:65:9b:82:97:be:f4:4d:d7:78:ff:13:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Validity
Not Before: Feb 2 01:00:14 2025 GMT
Not After : Feb 3 01:00:14 2025 GMT
Subject: CN=818b6d033972ebdf3b31f4d43d0b77010ba0511e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c3:8e:b3:cf:4c:86:17:5c:04:b1:52:ea:73:
df:78:2d:7b:e7:51:f8:ef:b6:07:1b:c1:83:2d:97:
1e:38:c0:aa:4a:85:f0:b0:4c:62:96:43:92:11:be:
6f:fc:5f:24:42:9e:41:d4:ac:b3:39:57:9b:b6:70:
24:94:47:50:15:b7:44:f4:6e:ea:76:c4:a0:ae:3f:
84:65:94:6e:61:ff:8a:2f:f6:94:69:85:eb:6a:2f:
29:f8:61:7c:6b:27:62:f0:a1:d3:2b:21:bf:2c:f1:
d1:52:1a:74:1f:75:4b:fa:27:2b:6b:3b:cb:13:0d:
bb:43:75:6d:65:ff:01:d0:9b:da:1a:af:fc:e8:2e:
07:c2:85:1f:44:64:44:aa:f5:6e:7c:0c:16:57:e8:
ee:52:7e:5a:67:6e:fd:52:18:54:81:ff:f6:84:90:
6b:e5:bd:d7:bf:7f:ca:75:24:3b:51:c1:ca:a3:0b:
98:c2:6d:31:d2:60:de:08:19:a0:8b:5b:89:42:c1:
b0:31:6b:23:cb:b1:33:9a:5d:d4:f8:dc:85:30:3c:
0b:34:5f:e5:67:40:62:15:bb:5b:11:e6:94:1d:13:
40:19:02:d6:67:f8:5c:d1:39:4d:20:86:94:a6:5e:
d7:0c:90:76:be:54:cd:39:9e:40:d0:96:13:26:54:
90:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8B:6D:03:39:72:EB:DF:3B:31:F4:D4:3D:0B:77:01:0B:A0:51:1E
X509v3 Authority Key Identifier:
keyid:A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:52:fe:0b:5c:87:ee:e0:03:ba:05:b7:49:16:bb:4b:55:0a:
9e:b8:60:49:99:0e:7c:78:20:37:05:7e:c8:c5:3d:4a:91:93:
f2:29:70:ba:a2:db:ed:42:5b:d6:56:5f:2e:e1:5d:43:f6:cc:
ec:ee:b2:9d:5e:81:ce:e1:b1:b0:b2:aa:8d:bd:60:cc:d7:e7:
73:b6:6f:8b:a0:ed:ac:6f:86:e7:14:be:47:8e:76:d7:84:1d:
7f:df:c2:f7:d1:21:85:33:69:e1:98:e0:18:4e:98:13:87:e3:
35:dc:04:7e:75:19:e0:47:1d:20:2e:f3:ff:8f:9e:76:f8:af:
13:03:85:da:71:19:82:dd:7e:d6:1c:ea:e2:51:d6:fd:06:84:
7c:a9:a9:4d:ff:d8:4d:8f:02:fe:49:38:57:33:f7:dc:24:14:
1b:85:18:06:0a:33:e7:55:7b:60:df:06:34:c4:ac:90:59:f6:
24:4e:1e:eb:b0:6d:03:8d:75:87:75:34:cc:e6:00:b8:34:20:
54:5c:10:5c:7f:db:23:71:00:81:b3:2f:74:bc:93:bc:6d:4c:
be:fb:64:1e:d4:3f:65:0a:c9:49:70:06:ba:0d:75:66:77:d0:
dc:4d:06:b5:e8:35:33:e9:8f:76:ce:d3:3f:18:28:e4:c9:1e:
3c:79:73:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:07:01 2025 by rpki-client