Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
File: OUKesL2HA74uXwrMwoG_IhYEsM4.mft (raw, json)
Hash identifier: yC3AAyi+nwj7wWd861WVWVIZ17rNK3dGfGodn3bZAGs=
Subject key identifier: C3:56:AF:1D:1E:6F:44:0E:CF:7E:D9:21:78:85:5A:CF:E6:70:36:8F
Authority key identifier: 39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
Certificate issuer: /CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Certificate serial: 01958C97390389FA85E28398C00E643B6FC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
Manifest number: 05B2
Signing time: Wed 12 Mar 2025 23:01:15 +0000
Manifest this update: Wed 12 Mar 2025 23:01:15 +0000
Manifest next update: Thu 13 Mar 2025 23:01:15 +0000
Files and hashes: 1: AspvYduc_Jb9y8GXYBDLcC-_8EE.roa (hash: ensOUkmx91RQ9/R5jlP5oQpNE74zuacX+6PWKXjdOOE=)
2: OUKesL2HA74uXwrMwoG_IhYEsM4.crl (hash: Uv1aTE6yePo12JVrqDKrVjpsUwuZlaDbh6GHU9LFFFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:97:39:03:89:fa:85:e2:83:98:c0:0e:64:3b:6f:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Validity
Not Before: Mar 12 23:01:15 2025 GMT
Not After : Mar 13 23:01:15 2025 GMT
Subject: CN=c356af1d1e6f440ecf7ed92178855acfe670368f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b3:45:9f:27:8f:44:d0:ac:36:62:f7:59:ca:
fc:1a:8b:17:4a:af:33:2b:a3:6d:3f:a5:4a:8d:4c:
62:42:8f:38:3e:16:eb:11:47:71:d3:23:02:04:f9:
ab:4a:71:f8:ea:08:6a:9b:30:cc:f5:f2:dd:6f:5c:
82:37:7d:92:41:88:7b:8d:a9:93:2b:f3:c6:2a:19:
d1:14:26:b5:39:62:35:f6:b7:a2:10:2c:96:18:8e:
df:c1:f0:f8:6f:c8:a5:77:ca:5b:2b:1e:90:c9:7b:
c9:08:72:24:2d:39:d1:91:89:1e:20:11:ec:cd:03:
d0:53:87:73:2c:04:c6:79:cc:57:4e:02:72:b1:46:
0c:70:d4:8e:b2:a5:2d:02:2d:b1:8b:72:b1:4d:c7:
50:16:93:2a:6b:6b:ff:47:96:14:40:47:4c:c2:5a:
3a:08:86:94:06:22:95:85:bd:22:01:bf:f3:b5:8f:
10:14:80:f7:e7:a1:1b:8b:5e:db:d6:65:f0:67:60:
f7:2c:77:7a:c1:8b:07:83:79:40:77:eb:17:a5:c2:
b9:44:eb:b0:1c:24:22:e4:f9:3e:ae:12:ee:69:9f:
6c:bc:09:ca:29:f8:70:5d:91:77:35:9d:01:38:9b:
83:0b:32:c3:ec:4d:3d:b9:3f:93:88:d4:e0:26:de:
a4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:56:AF:1D:1E:6F:44:0E:CF:7E:D9:21:78:85:5A:CF:E6:70:36:8F
X509v3 Authority Key Identifier:
keyid:39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:bb:ad:c5:4e:fd:ce:d0:ef:b8:6c:88:a9:5d:50:19:dd:c8:
4e:13:c1:46:92:55:9f:b2:46:fc:e7:88:ae:ab:ee:c2:3f:a6:
c9:c6:b0:cd:e4:94:79:3b:0c:38:84:ee:de:df:57:93:08:73:
83:54:4e:eb:53:26:34:08:f1:f7:6d:4a:b3:c9:42:36:11:26:
2d:19:50:83:60:e1:72:6f:44:55:e4:d2:e6:d2:6b:18:98:3b:
52:cb:3c:ab:08:86:2a:e3:ed:77:0c:1a:94:75:7b:ad:60:b3:
55:75:46:33:73:56:74:5b:60:97:86:8f:c7:c3:a1:a0:80:1b:
e1:6e:bb:33:c1:b7:27:a8:38:f8:22:de:16:c5:1f:58:ac:8a:
18:09:d5:00:7e:47:2f:b0:2b:38:43:d9:cf:6b:bf:3d:a7:ff:
79:cc:72:5f:b8:c8:e3:74:14:0f:dd:39:b7:bd:6a:ce:43:75:
8a:d4:95:8e:05:fe:02:e3:8d:f7:f7:34:46:29:28:ac:95:c7:
34:e9:44:5d:61:51:3a:72:3a:63:31:59:3f:65:ac:56:fb:b4:
9f:38:8b:2f:52:02:fe:66:d7:0b:61:1f:a2:2b:f4:3c:12:35:
9d:1c:c5:a3:10:52:a1:ac:5b:1a:25:ae:b0:6f:97:79:ea:54:
d4:3b:bc:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:49 2025 by rpki-client