Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
File: OUjkpbK65iNUmZE9y-wE38pTHpA.mft (raw, json)
Hash identifier: 9k+RIAd/brh16kdcjsky5PR09mcJuDLuCCHMwdj/Vx0=
Subject key identifier: 89:14:12:28:21:AC:D4:82:E2:FC:D5:34:6F:C0:CE:0E:B1:33:87:DA
Authority key identifier: 39:48:E4:A5:B2:BA:E6:23:54:99:91:3D:CB:EC:04:DF:CA:53:1E:90
Certificate issuer: /CN=3948e4a5b2bae6235499913dcbec04dfca531e90
Certificate serial: 0194C42C591EAB88E84FC76D9B5FA018CD70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
Manifest number: 1300
Signing time: Sun 02 Feb 2025 01:00:28 +0000
Manifest this update: Sun 02 Feb 2025 01:00:28 +0000
Manifest next update: Mon 03 Feb 2025 01:00:28 +0000
Files and hashes: 1: OUjkpbK65iNUmZE9y-wE38pTHpA.crl (hash: spBQDPhndJDx5MomIFmJlp1Bni+sQm+kUkyQU/wa9R0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:59:1e:ab:88:e8:4f:c7:6d:9b:5f:a0:18:cd:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3948e4a5b2bae6235499913dcbec04dfca531e90
Validity
Not Before: Feb 2 01:00:28 2025 GMT
Not After : Feb 3 01:00:28 2025 GMT
Subject: CN=8914122821acd482e2fcd5346fc0ce0eb13387da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:85:72:24:f4:fa:d0:c4:de:08:3b:11:2c:f4:
03:5f:ff:5b:9f:84:b3:6d:7c:ce:21:7a:a2:c7:a5:
8f:0e:a1:16:d6:8c:61:d4:df:92:33:5f:61:0a:60:
ec:ed:68:c0:24:76:57:68:6c:ec:93:b2:42:0a:04:
bd:5b:dd:8c:54:ee:d3:1c:c2:49:2e:91:48:49:17:
f4:c8:66:eb:8b:17:1a:a0:2c:ba:f6:e4:18:b0:2c:
c8:9f:ed:85:06:15:72:9c:b1:6d:74:a7:89:a2:6a:
68:a7:36:36:f7:5c:9f:5c:3a:d4:66:cd:1e:71:84:
73:a5:4f:6e:80:9f:93:92:a3:92:87:7f:97:2e:f8:
4d:78:4e:64:4e:ed:8f:f0:62:fc:b4:51:67:61:61:
2d:87:29:48:d0:eb:be:4c:1e:b5:02:d9:a9:9f:47:
25:12:2b:ba:6d:ad:64:e8:bc:9b:34:d7:9e:45:da:
f5:71:79:1a:e2:14:73:91:6a:b6:96:80:36:d8:a1:
aa:16:cb:56:8a:08:74:f2:a1:55:e4:21:76:a6:66:
b4:b4:18:8a:70:20:7c:7d:a9:5d:16:44:0a:ea:0a:
f5:02:90:be:a2:49:f5:dc:47:3a:05:b3:8b:9f:44:
24:b3:4d:63:0a:0a:f7:b7:1a:51:77:10:9b:51:16:
62:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:14:12:28:21:AC:D4:82:E2:FC:D5:34:6F:C0:CE:0E:B1:33:87:DA
X509v3 Authority Key Identifier:
keyid:39:48:E4:A5:B2:BA:E6:23:54:99:91:3D:CB:EC:04:DF:CA:53:1E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:5f:65:09:2b:c5:82:c4:c0:87:b0:95:71:05:6a:01:25:28:
0e:99:a8:91:2e:91:9f:5e:1e:2d:bc:88:d2:4a:be:a0:29:78:
0b:c4:74:11:7a:a7:2f:25:66:ee:a5:9b:d9:da:f8:2e:5a:c9:
a5:01:3e:d4:ca:13:c2:fb:01:b6:49:e7:06:6b:16:71:42:e8:
dd:ea:98:71:45:d2:84:aa:49:e2:0f:7c:a0:12:79:f0:26:19:
8b:f0:0c:7c:e6:d7:97:b4:ef:dd:15:0e:c8:91:c3:73:03:6e:
53:e4:9c:5e:b9:2a:9a:cc:98:65:27:51:3d:2e:36:57:27:99:
db:4a:6a:6b:73:b3:f0:eb:47:24:98:95:15:35:9b:4c:44:c0:
cc:5e:c4:78:e7:a7:b1:d4:e0:eb:a1:55:7f:da:52:24:ed:ea:
83:e5:98:fa:a7:85:1b:a6:45:c3:9f:e5:7e:da:f4:4c:63:86:
3a:ee:19:0a:6c:2a:c2:3b:3f:2d:57:cc:8d:05:57:57:4d:d6:
88:7d:26:4a:e0:15:11:e7:cd:76:e6:3f:4b:01:24:2a:d3:00:
c2:d5:77:37:72:6d:6f:ce:17:f7:0a:08:9f:c7:ad:1f:6d:6a:
2d:cf:da:24:2e:27:8a:e1:62:29:5f:e3:4e:42:58:0e:43:ef:
df:1f:f3:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:21 2025 by rpki-client