Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
File: OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft (raw, json)
Hash identifier: GmLjIIRb7CeiK+8/pjedqD6t0G1aMo7Qnr8R9nmBXkk=
Subject key identifier: 34:4A:8F:7F:EE:0D:ED:E7:33:7D:84:27:51:53:11:B1:E6:C4:21:82
Authority key identifier: 38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
Certificate issuer: /CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Certificate serial: 0195127E871685930DC31CEB19DA81A2C61B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
Manifest number: 0B36
Signing time: Mon 17 Feb 2025 06:00:36 +0000
Manifest this update: Mon 17 Feb 2025 06:00:36 +0000
Manifest next update: Tue 18 Feb 2025 06:00:36 +0000
Files and hashes: 1: OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl (hash: bgA0GiP2PxUREZ+e0kv3pkDRpsJq91Q5trH3U3JfUcA=)
2: b85MZ4WinFf_UE0cBlcSvifgg7I.roa (hash: uJf/EeGTiSuFi2jO3q5f34ZIMuvCCFqx997bjLZrpdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:87:16:85:93:0d:c3:1c:eb:19:da:81:a2:c6:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Validity
Not Before: Feb 17 06:00:36 2025 GMT
Not After : Feb 18 06:00:36 2025 GMT
Subject: CN=344a8f7fee0dede7337d8427515311b1e6c42182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d3:eb:8b:41:ac:68:ed:9a:17:b1:31:4a:d8:
45:a5:e3:17:04:ef:96:5d:21:ca:96:99:47:eb:02:
74:2f:4a:4d:0b:d3:e9:fc:b2:97:f7:ae:72:68:aa:
1a:66:e5:cf:ee:58:5b:c0:e3:b1:be:7d:fc:b7:45:
75:fb:65:1e:9d:a7:f7:9d:d2:e9:af:fd:a8:82:f9:
f4:f2:b6:ae:83:db:a8:f5:96:99:b0:df:39:5e:2c:
16:ad:31:8f:c9:ed:b1:f9:29:b3:31:6e:a9:27:5c:
4c:bb:c5:1e:7b:9d:ca:8f:c0:d5:d2:df:b5:16:47:
5b:b9:65:73:8d:5a:84:66:74:30:0f:c0:ba:2c:62:
a7:90:90:05:10:68:97:f1:83:61:45:8f:6e:5c:48:
7c:91:a0:63:0c:1a:fa:85:cb:fe:2a:10:01:38:ff:
45:df:bf:ac:20:71:a6:f9:11:c7:ec:a1:5f:f8:7a:
ce:70:20:c8:ef:a1:b2:e7:f6:f4:ab:55:c2:06:5b:
06:ad:59:9e:bc:4c:5b:ee:12:f4:28:17:e2:c0:2a:
b3:af:4f:aa:f6:16:61:ff:53:10:ec:3e:0f:24:2e:
f5:16:5e:db:57:c6:99:c0:8f:d3:0d:2e:f5:a1:7d:
77:fc:15:78:55:2e:7c:ff:fd:0d:68:7b:f9:ee:de:
88:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:4A:8F:7F:EE:0D:ED:E7:33:7D:84:27:51:53:11:B1:E6:C4:21:82
X509v3 Authority Key Identifier:
keyid:38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:47:02:25:3b:97:14:b0:53:8c:80:8e:e0:16:3a:fa:f2:c4:
4c:89:64:fd:08:79:8b:c3:7f:23:0f:99:ab:d2:89:fa:20:a1:
f7:53:1f:06:31:de:0a:e9:a5:7c:14:c9:53:d9:27:f2:b2:04:
6d:bb:e6:59:b0:2e:25:70:d3:04:5f:09:f0:bb:91:54:de:98:
04:04:51:47:23:7b:03:01:97:08:6f:f1:8b:ae:ee:68:ac:4f:
c1:da:c9:95:1f:79:a9:88:fe:02:b1:ab:ff:26:1e:27:ff:9e:
2a:c6:5b:72:48:e3:49:c3:62:34:1e:7a:84:f0:8b:29:e5:15:
58:05:9a:f8:ae:78:7d:9b:ab:aa:ef:a1:30:66:9d:50:79:07:
14:4e:d4:df:55:03:ef:2e:50:2c:94:8d:d2:ba:5d:74:ad:d3:
b4:b6:c6:2d:24:7f:38:12:e8:6b:fa:ec:09:f2:6f:7d:46:87:
7e:c0:30:cd:ce:a8:40:ed:7c:af:9b:a1:4a:27:a9:8f:b2:db:
e7:cd:c6:0f:ee:c7:c6:54:b0:6b:31:7a:a6:d8:27:0b:73:33:
46:27:57:32:c1:c8:22:92:d7:30:57:f9:b7:ad:15:e1:a0:43:
29:04:7b:13:78:36:f0:18:cd:de:a5:9d:37:9c:48:8a:c8:d5:
32:96:ba:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:32 2025 by rpki-client