Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: GPg8dWmTHC8bAZzCJSdVL/Hc3HtxQwN+X28RUexqAS8=
Subject key identifier: D3:0B:D4:59:88:E5:4F:8E:87:E8:46:62:25:11:34:29:0F:9D:DD:CD
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 019510FE27594044BFE4D1C0C2330573089B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 1458
Signing time: Sun 16 Feb 2025 23:00:46 +0000
Manifest this update: Sun 16 Feb 2025 23:00:46 +0000
Manifest next update: Mon 17 Feb 2025 23:00:46 +0000
Files and hashes: 1: e7noKfAbhqxWKb_WV7vm2kP8eVk.roa (hash: hWpS0joUiL0TvCY+c8SO6LZjwhfmBfd8ch+Qp+RpKHk=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: ybpN4MVCaqCyQnVgiUjJutbjxC+gH5oW9dOJ3J01Kp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fe:27:59:40:44:bf:e4:d1:c0:c2:33:05:73:08:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Feb 16 23:00:46 2025 GMT
Not After : Feb 17 23:00:46 2025 GMT
Subject: CN=d30bd45988e54f8e87e84662251134290f9dddcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:26:6d:9c:7e:ee:b6:04:70:9c:91:5d:a1:c3:
39:05:dc:5c:f6:c1:bc:ee:3d:26:6d:14:67:5a:a0:
9d:e3:db:c7:e8:43:00:7f:bd:00:fc:66:dd:02:7f:
11:76:54:cc:72:db:1b:32:2c:13:fd:83:8c:f8:5b:
8c:42:4e:69:a1:2d:29:19:08:4a:ee:0f:46:1d:0f:
53:7c:cc:0e:2a:c2:89:4d:a3:b3:7e:bc:05:e4:a9:
a8:cf:bd:13:65:d6:c5:7d:d2:2f:97:5b:3f:7b:0a:
ab:5b:cc:18:dc:16:c4:8f:de:8f:fd:14:82:84:56:
df:ea:44:7b:1e:6a:f2:d9:50:04:47:44:9f:c6:7e:
88:ff:d6:93:c1:e0:58:e0:2b:cb:a2:9e:e3:43:2c:
73:00:5c:08:e1:77:90:8c:9a:53:4b:84:d4:39:b4:
43:3c:a0:51:0a:4e:b7:61:b8:b3:c1:d9:7b:c9:6f:
b7:7c:20:6b:58:23:17:90:08:e9:b9:d2:fb:96:c6:
76:6c:0c:74:d9:7a:b5:da:a3:5a:6f:bd:0d:cb:dd:
40:a5:2b:e8:24:b1:2d:b7:87:51:41:b9:8d:49:fd:
02:d9:de:a6:28:b5:78:10:d4:00:65:46:b3:e7:ce:
8f:8b:53:05:6f:6d:bc:aa:8e:60:9c:6a:aa:13:c0:
1d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:0B:D4:59:88:E5:4F:8E:87:E8:46:62:25:11:34:29:0F:9D:DD:CD
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:2c:b8:09:dc:66:d5:8b:10:bb:6a:41:b1:b8:34:11:1e:47:
be:8c:50:68:f8:10:cc:2b:62:02:16:fa:03:71:4a:aa:3e:10:
6b:c5:95:6c:4e:ce:00:30:6d:95:0c:a1:a1:ab:18:1c:0a:c3:
ea:ee:f4:50:37:e4:09:ba:31:26:83:c0:07:9c:9d:2c:d4:ef:
fe:fb:57:e9:c1:26:66:55:6b:58:a4:5e:b0:65:8c:cc:bb:16:
ee:1c:2f:79:5e:34:c3:cd:14:da:45:62:7d:44:9b:68:9a:5f:
e9:72:d4:87:9b:87:39:07:f7:bd:f2:d6:58:10:ed:33:5d:c5:
12:21:b3:22:fc:ef:a7:98:fb:92:78:24:de:5f:7c:53:1c:61:
2d:68:61:86:3f:d9:9e:24:99:47:88:79:38:53:ed:0b:0b:8e:
27:9f:c3:15:da:c4:35:14:29:ba:42:00:fb:03:a0:35:35:32:
01:b4:ee:3e:80:06:80:d2:c9:4f:54:fc:a1:0c:02:39:22:bd:
15:9e:e4:06:7f:99:4d:5a:ee:95:ae:84:6c:54:c2:a7:75:f6:
8b:f6:6a:1a:19:61:85:51:de:10:fb:1a:99:a5:7c:ec:01:8e:
3d:7d:cb:09:94:43:33:62:f7:7e:0b:68:dd:7d:06:7b:e5:b4:
09:5c:d7:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:01 2025 by rpki-client