Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft
File: ojIkxQF9NOzcKNDPNkQtZb754KA.mft (raw, json)
Hash identifier: 7u36uQ5N72Ma5OQHAdkrx9UT3iAGx+OR8VYHmtlceSc=
Subject key identifier: 4C:B2:58:B5:96:9D:D0:E9:EE:71:D6:08:B0:5B:65:65:CB:6E:A9:0B
Authority key identifier: A2:32:24:C5:01:7D:34:EC:DC:28:D0:CF:36:44:2D:65:BE:F9:E0:A0
Certificate issuer: /CN=a23224c5017d34ecdc28d0cf36442d65bef9e0a0
Certificate serial: 019512477836592EA3FB4848B0EEB8F71E3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ojIkxQF9NOzcKNDPNkQtZb754KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft
Manifest number: 1460
Signing time: Mon 17 Feb 2025 05:00:28 +0000
Manifest this update: Mon 17 Feb 2025 05:00:28 +0000
Manifest next update: Tue 18 Feb 2025 05:00:28 +0000
Files and hashes: 1: bEhBHj_5ND7DPkcxJc-eHtfnjVE.roa (hash: q7DP36VzuoeI79R3/z9nukbV52RDnraBhFmpjcuFOJ0=)
2: fUWog8dQyKlZmDz3Jt4aoMe12ZM.roa (hash: m7C2vWzzKK+0unJuovK786RQ7kI+1mqtBwzlHAjE+E0=)
3: ojIkxQF9NOzcKNDPNkQtZb754KA.crl (hash: 8jSRBqRQ2/iBENX7u/WRQbmojGvgedpLgzVnxX8QkdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ojIkxQF9NOzcKNDPNkQtZb754KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:78:36:59:2e:a3:fb:48:48:b0:ee:b8:f7:1e:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a23224c5017d34ecdc28d0cf36442d65bef9e0a0
Validity
Not Before: Feb 17 05:00:28 2025 GMT
Not After : Feb 18 05:00:28 2025 GMT
Subject: CN=4cb258b5969dd0e9ee71d608b05b6565cb6ea90b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b5:ad:04:76:3a:52:3b:13:c8:b7:d9:e6:c9:
b8:5f:9e:60:6e:f3:1e:d0:f6:13:79:06:ac:74:c6:
59:20:a5:0f:5d:04:57:61:bf:57:33:cb:e3:33:b8:
8e:bc:e2:b1:a0:1e:ef:04:4a:23:bc:53:76:03:4b:
6b:19:0d:b8:1e:a3:dd:7f:97:db:7b:2a:d3:c3:97:
fb:7a:a4:5b:28:19:b2:9d:e2:c9:4d:2d:85:af:e8:
6c:74:2e:13:df:d5:c3:13:08:ae:71:74:23:27:61:
d1:95:30:6c:95:6d:53:aa:82:02:0b:82:da:39:8f:
a0:9c:12:a2:87:ca:a5:0a:57:62:87:4a:4d:cd:89:
89:b1:74:c5:d4:41:87:13:30:d5:0c:b3:38:9c:f4:
c9:10:a9:b8:18:08:34:fb:fb:58:ee:c5:b9:86:ba:
1e:66:67:0c:61:f8:b4:67:30:cb:87:c3:f6:e7:06:
60:96:fe:92:8b:83:2f:60:0d:11:91:cc:ef:02:f7:
17:df:a4:ba:95:ae:32:27:a1:60:b6:12:a2:bc:03:
d6:82:83:b3:e4:9d:c7:99:98:2b:ad:c1:8d:65:55:
41:bd:29:60:5e:dd:42:33:9b:55:87:0c:f5:48:fb:
89:38:3a:cf:e8:dd:f1:29:e5:cf:ce:3e:b7:18:1c:
28:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B2:58:B5:96:9D:D0:E9:EE:71:D6:08:B0:5B:65:65:CB:6E:A9:0B
X509v3 Authority Key Identifier:
keyid:A2:32:24:C5:01:7D:34:EC:DC:28:D0:CF:36:44:2D:65:BE:F9:E0:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ojIkxQF9NOzcKNDPNkQtZb754KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:98:36:96:6f:a0:8d:47:64:c7:29:3b:56:2c:af:b8:7d:f7:
3b:42:47:df:9c:c2:ea:09:fc:db:e6:77:8e:04:75:33:b3:91:
70:4b:3b:51:ee:04:3c:22:0d:f3:1d:54:a7:14:e2:69:28:f7:
30:4a:0c:d6:71:ca:d3:49:5c:ff:05:87:af:b6:99:21:55:2f:
fc:3b:59:49:44:1f:5e:e3:92:10:0f:e9:8b:b1:d7:ec:a8:b5:
17:28:b5:41:db:74:c4:1a:45:c1:d6:d3:c8:03:e8:b2:ec:ff:
d9:a7:20:ef:5d:5c:ba:c2:f9:b9:c2:12:f7:36:e3:71:66:5b:
0d:8e:b8:b4:6f:f2:bf:8c:3c:ca:ee:40:e6:77:fb:4f:7b:a4:
c7:44:01:dc:27:69:80:b2:ec:8c:59:df:d9:cc:bc:a7:ee:1c:
67:26:ea:18:9a:1f:b6:fe:40:10:f5:0d:f7:3a:67:36:60:5f:
b6:45:b2:b3:5a:b3:dd:d4:c9:ae:30:2a:c3:63:af:9d:ce:56:
1d:99:06:d9:67:b1:cc:ab:8e:d8:fa:92:53:49:b9:ff:90:19:
e5:d1:28:68:88:a7:0e:8d:f0:52:7c:ab:aa:8b:ed:36:38:d2:
1c:f0:52:9e:6f:cf:ad:4c:03:dd:b5:fd:27:ce:c6:54:8b:31:
e0:e9:43:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:19 2025 by rpki-client