Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
File: o8lj0aEdANOEre35u4blOEmpsYw.mft (raw, json)
Hash identifier: MF30C5SnK5rGvF9QF7P/iJfpgCGMXcVSB+zDMTU/cJk=
Subject key identifier: FD:D5:47:7A:B5:94:FF:A8:F8:FB:FC:A0:AC:03:7A:33:0F:13:B4:5C
Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Certificate serial: 0195116B92870F6F8383A4142F30C58E2932
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
Manifest number: 1459
Signing time: Mon 17 Feb 2025 01:00:17 +0000
Manifest this update: Mon 17 Feb 2025 01:00:17 +0000
Manifest next update: Tue 18 Feb 2025 01:00:17 +0000
Files and hashes: 1: 1-9Z39awtCUNqeCcuYwIOQubEoEY.roa (hash: AJvelHrJ42adBWeCqNbgdbqaGB/A4YMI32J/x3+LlBI=)
2: o8lj0aEdANOEre35u4blOEmpsYw.crl (hash: eTs7iupmNHC3dB91TTvmjfDwqqPIkTcdI4pEAPdSPyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:92:87:0f:6f:83:83:a4:14:2f:30:c5:8e:29:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Validity
Not Before: Feb 17 01:00:17 2025 GMT
Not After : Feb 18 01:00:17 2025 GMT
Subject: CN=fdd5477ab594ffa8f8fbfca0ac037a330f13b45c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:02:84:72:03:a5:38:09:71:f7:ff:db:6b:65:
22:2d:f9:11:d1:ac:da:7c:2d:ed:88:52:c7:60:01:
04:f9:64:0f:79:0d:d2:4f:45:09:6d:c9:05:b4:d9:
40:39:bb:73:a9:11:d8:a3:e0:28:5a:a5:6c:31:29:
eb:5c:34:a1:e1:10:c6:12:51:aa:5c:36:eb:6a:04:
0b:be:93:0a:84:0b:8c:cd:25:07:6a:f6:25:fd:7a:
63:99:f7:ab:3c:9a:8a:c9:63:e4:3c:c3:53:c0:ed:
66:34:79:44:19:36:3c:d6:14:ff:ff:25:8c:e0:5a:
6d:3d:9a:4a:26:42:3f:ce:3e:e2:8d:e9:96:67:18:
b2:9e:1a:4d:a8:59:33:f4:42:ae:d0:32:90:e2:23:
06:ca:60:9b:69:06:f6:e0:93:28:47:42:c1:9e:6f:
8b:b5:a0:11:2c:4f:7c:97:b9:a3:ec:b8:72:5f:ec:
20:91:e5:52:af:c0:ec:12:4b:c2:1b:1b:33:fb:7e:
c5:71:08:47:b6:62:7c:57:91:57:01:f5:39:74:e9:
9a:56:20:b7:ea:6c:0e:53:23:c0:ba:f5:57:50:c9:
4a:40:24:b9:03:7a:36:26:e3:ae:d1:94:8b:64:f0:
2c:1f:e8:14:6e:a0:b0:3d:bd:17:01:d0:ac:5d:fb:
a5:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D5:47:7A:B5:94:FF:A8:F8:FB:FC:A0:AC:03:7A:33:0F:13:B4:5C
X509v3 Authority Key Identifier:
keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:cb:19:3c:c8:1c:34:83:37:45:e2:b3:5a:95:d4:06:a4:b6:
1d:a8:1b:47:f6:9c:07:4f:82:ec:6d:06:c1:8b:cc:06:f3:4f:
14:92:a8:1d:71:ba:e4:07:b2:69:9a:f2:d7:0e:c0:4f:8d:54:
0f:4c:c2:f5:92:a5:79:66:b9:2a:41:b5:ab:ee:35:eb:25:16:
4a:a1:e9:01:83:e6:fe:c7:97:9c:dd:e8:6c:ff:8a:4c:67:79:
6f:bc:b4:f1:5b:69:35:b0:50:60:70:c8:a7:f4:17:52:3a:a3:
38:94:23:e9:fa:64:0c:9c:6a:3e:1b:9b:80:35:5e:57:bc:a5:
17:ea:a2:ac:5f:05:4b:15:b1:2a:8d:c4:9b:4e:6b:be:bb:7c:
f3:99:93:0e:bc:bb:06:fa:43:a9:b1:ec:85:9d:32:cb:5a:da:
ae:e3:d2:69:6f:97:3f:10:91:4f:0f:a6:4c:6f:a6:72:22:d6:
25:27:e0:27:f5:53:6d:1e:b5:56:b4:2d:80:20:14:b3:86:1c:
ae:be:60:14:5c:21:8a:8e:0e:87:26:c4:97:16:8b:14:2d:03:
65:b1:d4:cc:8c:b2:af:29:ba:f2:12:d8:cf:07:a6:0e:5a:e6:
ad:ab:28:0a:a2:77:89:d1:58:75:46:37:3a:b4:65:5c:a3:c4:
ad:9b:ac:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:17 2025 by rpki-client