Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
File: dLOekBkiWjsP_gWoNW6-8zwnvpc.mft (raw, json)
Hash identifier: IKL1VASEics9OcaAnOkna1XQzEpZJg8XHP3sY0w70n8=
Subject key identifier: 96:2B:9A:B0:63:0C:F4:45:F0:87:4D:2F:AE:F2:EF:14:FA:27:20:82
Authority key identifier: 74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
Certificate issuer: /CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Certificate serial: 019510C6B64AE7E8E0091CE55954D009C37F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
Manifest number: 0449
Signing time: Sun 16 Feb 2025 22:00:12 +0000
Manifest this update: Sun 16 Feb 2025 22:00:12 +0000
Manifest next update: Mon 17 Feb 2025 22:00:12 +0000
Files and hashes: 1: ZRVv1QEy1kLLZIQQzKY3v_cBQvM.roa (hash: dP4rVEZl+sj+rbeXk/M+iHEaNgIv2c4UoqRTeljUbU8=)
2: dLOekBkiWjsP_gWoNW6-8zwnvpc.crl (hash: XFjg36UZZFzJMgx3LcEzDYQLRozdKRWXfciblxJSXq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:b6:4a:e7:e8:e0:09:1c:e5:59:54:d0:09:c3:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Validity
Not Before: Feb 16 22:00:12 2025 GMT
Not After : Feb 17 22:00:12 2025 GMT
Subject: CN=962b9ab0630cf445f0874d2faef2ef14fa272082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c2:1e:e9:62:6e:48:ae:01:62:bd:b7:b9:44:
82:ae:31:ac:fe:0b:5c:d0:d3:18:41:cc:24:f4:8c:
27:a0:11:ae:a0:bc:44:e2:ea:ed:98:7d:0d:f7:00:
d6:ef:62:99:1a:7f:e5:8d:43:dd:d5:1f:bc:15:43:
0a:6d:55:67:44:23:de:9d:31:ff:86:43:28:a1:cf:
77:5f:31:58:75:29:d1:c7:a8:0a:76:51:2c:7d:db:
44:4a:c7:24:48:13:c9:80:ce:87:ff:8c:fe:05:f7:
21:03:ea:15:d9:5f:3d:bd:ad:cc:94:40:9f:d0:7c:
5e:7a:54:1d:5a:3b:b6:9e:50:bf:a9:ec:fc:61:6b:
31:29:6f:02:58:72:da:c9:2b:ce:e9:ed:72:05:bd:
7f:37:b0:c0:f5:d9:cd:2b:31:50:26:22:57:91:b8:
50:7c:2c:52:70:2a:b1:14:53:7a:96:50:61:fd:21:
dc:2e:4a:a5:55:c0:79:e1:69:53:3c:72:5d:79:e8:
b0:2f:d9:87:ef:d3:8b:7d:b1:44:26:28:23:0c:7e:
1d:46:d5:2a:c1:30:a8:c1:7a:6c:df:02:5e:91:0c:
c5:7d:d3:b9:f9:40:80:38:59:2d:f8:14:77:3d:72:
11:6f:d1:26:58:1b:fc:55:97:01:b1:b9:70:4c:97:
28:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:2B:9A:B0:63:0C:F4:45:F0:87:4D:2F:AE:F2:EF:14:FA:27:20:82
X509v3 Authority Key Identifier:
keyid:74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:f5:3b:8f:13:22:af:54:51:87:93:eb:47:ec:c4:8f:a5:d9:
49:7a:ce:42:30:92:7e:b0:19:83:2e:18:65:2d:5d:cf:5a:2b:
6f:eb:c0:67:01:4e:7e:34:21:53:31:30:85:1b:79:66:0d:67:
c8:7a:00:b2:0f:f5:e2:d3:1f:3a:f9:33:f5:4c:b2:3b:e4:d7:
68:e3:92:bb:ec:d4:34:ed:27:83:1d:f3:76:2f:d1:7f:da:59:
74:97:4b:89:21:b9:1b:4d:ae:3b:ba:3f:39:e4:62:39:32:1a:
da:e2:47:ac:c5:52:96:3d:4d:73:38:f3:7e:5a:9b:a4:fb:ad:
20:35:0d:86:54:64:9a:bf:88:43:71:62:43:8a:5d:9d:cf:c5:
5c:b5:70:6f:c9:c1:be:6b:4c:3f:99:97:17:b6:0b:0c:ac:f3:
28:c9:98:59:6d:5f:85:5f:8a:af:c6:ee:c1:8f:d1:c0:1d:d6:
6b:71:f9:b6:dd:fd:87:a4:39:44:30:e0:75:65:8c:33:62:24:
4a:6c:2c:de:29:a8:07:68:9c:79:94:95:0a:2a:38:86:0d:f6:
8a:85:76:68:33:46:10:f3:55:a8:cd:6b:5a:9b:c9:ed:d7:4c:
28:1a:0e:00:86:a8:34:9f:7f:69:e9:68:9a:99:27:44:53:43:
8e:62:8b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:05 2025 by rpki-client