Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: T2ALSpGw/p7sdm966WHMh89iE4+W+aeOZbaq03LjYrM=
Subject key identifier: 1A:50:4A:83:E0:AF:9B:3E:CF:94:CB:13:35:62:12:B2:C8:29:38:7C
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 0194C499F0F97C3C07657FEF481507F7B100
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0BB1
Signing time: Sun 02 Feb 2025 03:00:10 +0000
Manifest this update: Sun 02 Feb 2025 03:00:10 +0000
Manifest next update: Mon 03 Feb 2025 03:00:10 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: d1PcKOpzLQLYIYCpZGucgaH0JOwHcw14oq2nNa0Pmyo=)
2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:99:f0:f9:7c:3c:07:65:7f:ef:48:15:07:f7:b1:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Feb 2 03:00:10 2025 GMT
Not After : Feb 3 03:00:10 2025 GMT
Subject: CN=1a504a83e0af9b3ecf94cb13356212b2c829387c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dc:3f:33:72:9c:c3:4c:68:66:4b:5e:41:09:
8d:8f:f8:7f:2e:fb:90:28:5c:d2:a8:cc:03:0a:ac:
52:d6:95:12:26:1e:ff:a5:a8:05:50:fe:9f:68:56:
11:b3:35:09:0d:b3:83:af:b3:ff:a8:b3:bb:58:d5:
8f:a7:bc:83:eb:ad:3c:ee:0e:a4:74:42:74:db:f8:
0f:95:27:1a:13:04:e8:8b:e5:13:79:81:27:6b:e1:
49:7c:48:b3:3e:2c:ff:3b:63:59:3f:a3:0a:81:2b:
88:5b:2a:7a:e7:1d:a5:53:fc:df:c5:16:ab:cd:52:
5e:f9:26:28:8b:53:50:f7:ea:ca:1a:de:36:08:99:
54:96:17:3d:7d:47:14:ce:9f:33:d7:b8:5b:c0:c5:
22:d3:49:ce:6f:e7:2f:03:f0:2f:85:f3:7e:9e:a4:
b0:36:02:23:29:d1:b8:a9:2f:ad:d8:29:fc:3b:10:
0a:33:8f:e8:d0:08:69:2d:de:17:5d:26:14:0a:c5:
15:e1:39:99:65:4a:54:ef:de:96:a7:74:f1:a4:e7:
06:3a:d1:73:d3:7b:cd:ef:78:d8:9f:27:e0:67:2d:
a0:c1:c5:f0:49:c9:a1:b5:72:01:ae:1d:d5:3e:0a:
a6:0a:53:f3:df:f5:00:77:70:c9:2c:87:36:2d:92:
a2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:50:4A:83:E0:AF:9B:3E:CF:94:CB:13:35:62:12:B2:C8:29:38:7C
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:b6:d0:3c:70:28:25:56:f7:13:63:c5:b0:cb:0d:e7:fc:d8:
90:6e:5d:0d:40:e5:3d:f6:df:14:50:b5:1b:06:36:e5:1c:48:
4a:f1:aa:ab:b4:52:4d:e7:98:15:90:80:eb:12:89:86:02:52:
a3:b7:ea:3c:7d:c8:da:89:ff:2f:30:f8:a5:63:80:bf:d3:c7:
41:38:96:61:80:10:fa:61:ff:c0:5d:28:05:68:48:1a:e9:4e:
9b:18:e6:70:63:d0:b1:d9:0c:11:e9:7f:f8:65:68:71:2d:3e:
05:25:ea:21:e0:db:2f:90:29:ea:c6:c5:67:22:fd:93:50:cf:
d6:54:14:44:cf:df:e7:2a:77:af:04:04:d7:27:d4:3f:3f:4e:
46:59:77:17:27:ba:ef:b6:80:6d:b4:7c:2b:f5:a0:ef:82:3f:
38:e0:86:8f:26:7a:b2:3f:94:01:24:14:c4:72:11:36:0d:0c:
f6:be:ac:13:f7:ce:61:d8:98:2e:16:d5:6a:53:7a:9b:bb:16:
f1:90:a2:dc:85:66:36:84:6e:b0:92:f1:c8:19:da:28:35:02:
be:52:94:e2:ac:68:88:26:8b:7f:4e:7e:80:2c:0c:74:d4:6d:
a5:95:1f:57:39:b0:6a:4b:11:d5:88:d7:3e:c3:3e:dc:c8:9a:
08:7e:6d:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:51:02 2025 by rpki-client