Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: rPAubgsrF4y6ZKW/XSjxWQGy1Vggr94ZyAfkeIbyJj4=
Subject key identifier: 56:03:82:42:DE:62:2A:8D:63:D8:19:A5:06:A6:2D:C4:3C:35:32:60
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 019510FDDE1D4EAD5BA92C592F24EB66CFC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 0401
Signing time: Sun 16 Feb 2025 23:00:27 +0000
Manifest this update: Sun 16 Feb 2025 23:00:27 +0000
Manifest next update: Mon 17 Feb 2025 23:00:27 +0000
Files and hashes: 1: lG9M0ytelOsltsM45OHzpDj8VA0.roa (hash: NbXxBP1wpUJzGfc6WpWH6JS4IiG1rIjC9o+D9ASG5hQ=)
2: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: 2J98C41ZSneuOQcajTeizaLNPsHxGRPk0vc1hhUBfxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:de:1d:4e:ad:5b:a9:2c:59:2f:24:eb:66:cf:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Feb 16 23:00:27 2025 GMT
Not After : Feb 17 23:00:27 2025 GMT
Subject: CN=56038242de622a8d63d819a506a62dc43c353260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:08:3f:e4:97:42:f3:e5:43:59:ed:5a:e9:76:
6f:1d:c6:83:d8:08:30:a9:18:f3:b8:c7:e1:b4:65:
d3:8a:89:ac:f8:68:7a:3e:ee:f6:f0:45:a0:f6:59:
16:5d:03:88:f7:a9:a2:05:ef:58:23:25:08:97:1c:
bc:48:dc:35:48:a8:5f:53:de:43:40:64:30:f0:2c:
77:b4:4e:16:f3:67:e7:d0:c4:63:5e:13:19:fc:fe:
a9:b5:3f:0e:6a:2d:3d:b6:ee:88:53:85:6e:32:00:
f8:10:18:60:fc:32:19:d6:f2:b7:86:cb:e7:5d:8b:
10:2b:1b:f5:09:63:00:3f:21:a9:53:a9:db:32:13:
1a:b4:cd:20:5d:d4:81:a8:af:c8:da:86:33:52:69:
3d:8c:8a:3b:64:96:27:3c:89:9c:82:a7:6e:06:e9:
51:6b:6a:2e:44:c1:b3:de:5a:dc:bf:c2:f4:49:10:
fd:36:8b:c9:1f:b5:44:e4:fd:26:97:09:75:08:14:
04:14:dd:39:19:af:01:19:d1:d7:5c:69:8d:ff:59:
8f:be:95:ca:ca:70:cc:5e:22:95:f6:fc:12:4f:fd:
a5:05:81:ca:7d:fe:7d:c9:5a:40:04:fc:fc:be:8c:
f9:55:28:0f:3a:8a:bd:88:96:0a:29:0b:e6:58:12:
e3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:03:82:42:DE:62:2A:8D:63:D8:19:A5:06:A6:2D:C4:3C:35:32:60
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:93:44:e9:d1:05:f5:b5:e9:d7:1a:0c:c8:dd:bb:4e:94:f6:
c7:2b:b6:50:e2:aa:9b:bc:26:d7:f7:50:88:a7:5a:0f:6c:07:
df:a1:c5:92:15:3d:b9:70:49:17:9e:9e:ae:f8:52:1a:0b:ff:
d7:0d:5a:d5:f6:3c:e6:f3:93:05:77:d1:6c:09:f6:f9:5b:45:
9d:76:d3:e2:4e:6e:eb:a2:24:18:7b:41:4e:97:4d:28:78:4d:
8a:fb:56:ca:d4:e9:32:83:30:53:cf:fa:3c:e9:14:71:26:21:
d0:b6:0c:b7:ab:b1:17:c3:ca:64:14:65:a3:74:56:ca:ad:36:
72:f0:ae:1d:97:cc:dc:2a:13:3d:33:4a:e8:95:d7:81:61:bd:
27:03:24:3f:a7:8c:09:c9:78:36:d9:5f:ac:26:8c:13:75:dd:
de:45:e2:b3:84:bb:c6:ca:f4:8d:e8:c7:a9:41:0f:ba:ca:81:
dc:7b:65:c2:91:c1:db:8f:08:c5:3b:8b:b2:14:2d:b8:67:d4:
ad:e2:f5:f2:68:7d:81:1c:04:45:69:df:b5:2a:ab:60:c7:9c:
ae:6b:e5:dc:1e:be:37:e0:0e:c6:f8:ab:d2:c5:dc:55:e7:be:
6d:81:f6:4c:7a:4a:b3:c0:83:6c:0b:bd:52:56:6f:df:ac:58:
fa:e6:4b:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:26 2025 by rpki-client