Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: LhabJRxb/EyQgTCuDX9vmATlh4Bu5twDeIhgbF+rU/Y=
Subject key identifier: A5:76:14:D4:16:83:D8:39:19:3F:15:CA:BD:87:8D:DE:AA:3D:45:56
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 0194C49A49F5A32873722748FDF165A9B0CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 081F
Signing time: Sun 02 Feb 2025 03:00:33 +0000
Manifest this update: Sun 02 Feb 2025 03:00:33 +0000
Manifest next update: Mon 03 Feb 2025 03:00:33 +0000
Files and hashes: 1: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: 538UnDQpX6B6Yi6iMwl/O0NY3nR/EOv1eUE43Se5YSY=)
2: zkFI0q7jFUcpvcC1_CEihR1YV24.roa (hash: 783T5wgYEpPQMcRoCX4E0P3B8Y6FUugL0p43iJWmXrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:49:f5:a3:28:73:72:27:48:fd:f1:65:a9:b0:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: Feb 2 03:00:33 2025 GMT
Not After : Feb 3 03:00:33 2025 GMT
Subject: CN=a57614d41683d839193f15cabd878ddeaa3d4556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ab:3a:be:45:00:b3:f3:3e:b5:c6:00:86:5d:
4b:25:21:4b:e2:9c:d9:19:fd:7a:49:6f:a0:5d:9b:
41:e6:6e:f2:cc:35:5f:aa:45:79:99:4d:24:8e:c5:
00:75:d3:75:8a:e1:5a:a1:66:f3:e3:ad:c0:8e:0b:
9d:52:a7:93:19:46:4d:8d:c1:d0:63:e1:e0:f2:99:
be:82:24:d0:25:fe:0c:fe:4a:17:9c:49:07:50:aa:
b2:b1:b7:c8:e8:3c:20:0e:73:4f:8a:3d:61:2c:76:
56:fc:c6:af:5d:62:a5:40:7d:00:d3:16:6b:06:93:
8a:b1:13:03:be:34:92:db:51:bf:d0:17:a0:c1:9c:
3f:9b:19:96:f6:05:23:8a:fb:12:09:22:d4:bd:04:
7d:bc:a5:1c:b6:34:75:c6:32:30:20:1c:3e:5a:7b:
0f:53:f9:c3:cc:76:db:ab:8b:8a:6f:7f:c7:a3:1d:
ff:17:06:d6:d0:36:25:9c:bf:e9:a7:0a:0e:4d:72:
08:0b:5a:fc:d2:36:40:03:2e:47:d8:62:ca:f2:5b:
d8:60:94:15:77:68:f6:77:6a:c4:4c:21:b7:9a:59:
51:86:b8:52:e7:cc:6f:8e:d5:44:ad:72:80:7f:f2:
e6:07:fa:fa:aa:f9:96:a4:3f:46:74:e6:60:31:f1:
30:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:76:14:D4:16:83:D8:39:19:3F:15:CA:BD:87:8D:DE:AA:3D:45:56
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:58:f9:64:41:19:31:50:0f:29:29:f7:6c:0d:05:ea:55:33:
9d:b4:c0:5f:52:e8:13:33:19:9d:67:c0:8f:58:97:d2:30:2e:
12:34:81:aa:3f:ad:6a:af:6a:a2:af:ca:4a:a3:e3:fc:dc:4a:
3c:b1:99:9f:5a:7f:1f:88:c1:8f:02:b4:ac:c1:0f:3f:4a:e6:
9c:25:02:92:7a:a8:27:b5:d1:cb:9f:ec:fd:6a:54:bf:ba:df:
03:94:9f:19:f9:55:d4:20:a0:9c:d9:aa:55:ee:d4:03:b5:0f:
67:4b:84:06:87:72:7e:ca:cf:18:48:62:44:81:c3:4e:1f:ac:
b3:92:49:c0:ec:6a:dd:de:37:97:01:fc:1f:a1:90:9b:b0:ad:
25:ba:28:6b:e2:10:fb:83:ea:cb:21:88:9c:17:a7:81:5d:3f:
e8:38:12:ea:d5:0f:3b:8e:4e:25:24:84:99:d8:b2:65:da:91:
e0:6a:3e:6a:95:6f:b2:67:e6:e6:3f:92:db:c8:7f:d6:31:6e:
b1:ee:60:9d:02:73:6c:32:1f:9f:92:76:33:72:eb:57:5f:eb:
88:ce:ff:95:c0:e7:a2:db:c4:e2:63:8a:ef:6c:6d:df:73:98:
6e:d8:fd:6c:d5:db:3f:d7:50:32:bd:79:d5:ff:cf:c1:4e:79:
51:61:5f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:03:26 2025 by rpki-client