Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
File: oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft (raw, json)
Hash identifier: kehYZ+Wz2RL2NoPKLez6YfjW+OpMmB58thzhe6YGfTY=
Subject key identifier: 98:CF:CE:50:C6:87:AB:F9:9F:70:6F:6D:1B:65:5F:1A:02:5B:46:AD
Authority key identifier: A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED
Certificate issuer: /CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced
Certificate serial: 0194C3BE8FBC636D0D365CAACAA03B359041
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
Manifest number: A0
Signing time: Sat 01 Feb 2025 23:00:33 +0000
Manifest this update: Sat 01 Feb 2025 23:00:33 +0000
Manifest next update: Sun 02 Feb 2025 23:00:33 +0000
Files and hashes: 1: KVGzhURun_Z2Cbls6jKq8-siUnI.roa (hash: ICdbcaL6JuM+fFFA7u9Ui1orbNqbZysTahR0X2YtQkM=)
2: hSxuqdFakuVuEvKUogCcsFaigPs.roa (hash: Xj6H7DBsScqxHUyFTpNMVSRKFfZSSLZGI1xOM2DNsyc=)
3: oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl (hash: QLrBQnWjST9wQYzuI4SQCQwcD+8Q+Qlh3GlFUSXwTsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:8f:bc:63:6d:0d:36:5c:aa:ca:a0:3b:35:90:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced
Validity
Not Before: Feb 1 23:00:33 2025 GMT
Not After : Feb 2 23:00:33 2025 GMT
Subject: CN=98cfce50c687abf99f706f6d1b655f1a025b46ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:10:19:b9:77:a9:75:97:a6:38:58:6e:e9:1d:
ac:23:41:3c:32:48:23:75:ba:f1:e4:1f:20:8e:1d:
1d:c7:ae:13:4d:76:75:fd:1b:cf:97:84:e8:3b:b6:
30:72:58:95:55:27:43:dc:ac:fa:e0:1b:c1:b1:5b:
b6:e9:18:f1:6c:48:f2:3d:ba:9b:bd:34:76:e1:97:
5e:5c:cc:70:87:50:3f:f0:e7:d3:08:2d:7f:a4:c3:
86:d9:24:de:85:e4:c9:e3:94:40:fc:f7:83:de:aa:
b7:58:7b:ec:af:a2:25:36:e6:58:b5:86:c7:ff:ec:
0d:6b:65:2a:b9:ba:6f:1d:1b:d6:9b:25:91:51:ac:
da:5f:ad:82:be:69:36:39:ed:c7:df:5a:3e:62:61:
77:5a:0c:6a:57:a6:44:7b:60:a9:4c:f9:00:4f:02:
a8:52:2d:c9:19:a6:f7:bd:f9:02:f2:22:a7:d8:83:
67:93:24:33:91:7f:13:61:f4:39:68:a3:fc:70:67:
b5:18:7f:24:ae:c4:bb:3d:98:08:80:0b:fc:66:e6:
fe:cc:0d:10:58:c6:09:59:a8:27:67:e2:34:1a:55:
7f:81:d9:47:b0:30:62:9b:03:eb:c6:a2:51:48:46:
04:b2:6a:e2:2e:2d:1e:29:7d:c5:b9:8e:6b:39:35:
66:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:CF:CE:50:C6:87:AB:F9:9F:70:6F:6D:1B:65:5F:1A:02:5B:46:AD
X509v3 Authority Key Identifier:
keyid:A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:52:c8:73:85:75:ea:c3:4c:8a:a6:f1:4f:5b:78:fa:de:6a:
14:0d:52:3b:47:63:b0:39:9b:36:53:1a:5b:13:af:d3:2c:64:
d8:60:58:4b:bc:7f:37:09:ea:c0:22:d0:41:cc:26:16:94:ad:
fd:38:bd:ce:1e:2a:fe:ae:de:4a:46:c7:66:17:a1:01:6b:e3:
4b:13:01:74:ba:71:59:97:c6:34:ed:ae:ca:41:ca:78:dd:c9:
9e:cd:78:04:b9:99:4b:47:40:65:73:dd:f6:a6:3a:81:5d:6d:
c4:9a:e3:1e:04:21:2c:2d:c4:61:95:03:11:ae:19:11:ef:61:
d5:f0:d4:7b:20:94:8d:d7:8d:c1:d0:6c:cd:16:59:d2:fd:4b:
05:10:ce:53:0d:d2:4f:33:da:a5:00:e4:19:ca:63:33:54:ca:
b8:83:66:45:ff:3c:2b:0d:d5:ef:fc:c7:49:8e:6d:d5:9a:47:
75:4e:a4:f6:33:cc:eb:6d:85:e6:42:8d:ee:42:80:b5:46:3a:
bb:f0:27:b7:a7:c0:3b:be:cd:49:6a:a3:2b:0d:6a:71:31:28:
7d:46:b6:4c:14:5a:1f:fc:de:a3:b0:1f:84:90:28:be:80:cd:
8a:86:4b:bf:0e:37:9a:88:a5:ae:ee:44:6b:1b:77:40:22:b1:
f5:ed:8e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:46:36 2025 by rpki-client