Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: mq49cdYWIIbfnfVsndystqKaoz/f+i1d3VjBWdJzrWI=
Subject key identifier: 5A:27:88:6C:D9:26:EB:F8:D1:6D:35:B8:2B:75:D9:4B:C7:95:A2:EE
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 0195108FBF30A2EC178E6242A1E0846105C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 0FD3
Signing time: Sun 16 Feb 2025 21:00:10 +0000
Manifest this update: Sun 16 Feb 2025 21:00:10 +0000
Manifest next update: Mon 17 Feb 2025 21:00:10 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: j6T6Mo31iOXILMbM+DKJYKX1CF8uKKyPlTxJlI5L1s4=)
2: hbt7WcwBqBoPW6rBuDIQ3SNZmzc.roa (hash: gFxs6hHw3FxfMImk+yNCzFI6L94MQhx1psEtxtAsjbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:bf:30:a2:ec:17:8e:62:42:a1:e0:84:61:05:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: Feb 16 21:00:10 2025 GMT
Not After : Feb 17 21:00:10 2025 GMT
Subject: CN=5a27886cd926ebf8d16d35b82b75d94bc795a2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:66:7b:f9:d0:13:fa:e9:a2:4d:28:6d:0b:8c:
cf:43:cd:c2:7e:21:5a:45:db:a9:b0:ca:bf:4e:77:
f4:e2:f0:56:54:91:8b:46:d2:f2:f7:de:46:c3:ce:
52:d0:f8:6f:9f:a8:00:fe:15:be:6a:05:76:5f:fd:
34:66:af:59:b3:92:10:af:da:bc:37:8d:01:4f:eb:
a6:a0:5d:1e:c5:e9:54:3c:21:1b:93:15:67:95:17:
8d:d0:d8:40:71:ba:5b:79:90:cf:9d:2f:d6:50:f3:
24:9b:fa:61:3c:65:4f:6a:85:3c:54:af:8b:0d:2c:
43:d8:1b:d9:e4:5a:d9:90:bd:0c:a4:50:0f:13:6b:
f7:2d:67:7e:e3:2f:d6:57:36:12:8c:51:ea:f2:6f:
43:1d:ce:dd:a4:89:78:ce:ca:73:5f:0b:76:9e:1e:
c7:60:9f:5e:4d:93:8a:8a:4c:36:a6:3c:b8:2c:20:
86:14:05:3d:56:a9:73:bc:c8:12:87:46:d5:7c:1d:
93:8f:c6:1c:f4:1f:7b:b7:e6:ad:da:29:1c:67:16:
0c:b7:01:29:2b:2d:8b:36:41:b6:65:df:de:18:ea:
27:4e:81:1b:53:ba:67:f5:e5:d6:07:0d:ad:a1:16:
c6:7e:a2:91:ae:33:d4:46:95:72:95:04:86:72:dd:
1d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:27:88:6C:D9:26:EB:F8:D1:6D:35:B8:2B:75:D9:4B:C7:95:A2:EE
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:cd:43:35:4e:91:19:b6:60:45:8e:e8:d3:22:ee:f9:47:95:
08:bf:4c:11:7a:9c:3f:22:98:78:24:35:5c:ba:13:2c:20:92:
e0:56:66:b7:af:9e:26:ae:41:46:06:0c:d7:9b:8f:8c:49:4f:
1a:f8:48:cb:aa:06:51:84:2f:47:c4:14:b6:aa:83:b0:0f:97:
e2:69:d5:0f:75:b1:b4:e3:2b:e2:15:ec:89:8d:24:ed:26:77:
f8:b0:7a:8e:2d:f6:c6:91:49:6c:c3:e1:6c:18:db:0e:83:e0:
a4:c7:d2:4d:6f:5e:62:d7:84:26:a7:16:84:3d:d5:41:45:3c:
2c:0d:b3:a9:04:d1:e3:3a:7b:d8:91:43:47:d6:01:54:34:6c:
10:ef:87:71:e7:e1:3f:aa:69:ae:16:ea:b6:9a:9a:53:56:1c:
83:1f:c5:23:f5:52:ce:88:74:87:56:a8:3d:86:da:9f:62:d8:
ee:5c:5a:62:ad:2c:01:c0:b8:c4:bd:9f:35:c8:91:05:bb:a3:
7f:0c:2a:06:00:ae:40:dd:1c:9f:79:1c:55:eb:39:73:1c:f8:
d7:df:ec:9f:f9:75:a3:b8:a1:f6:c6:67:ed:8f:a3:72:bc:ce:
d8:da:78:b3:6b:b3:57:a6:93:1c:21:c8:26:88:66:b6:56:20:
6a:c3:73:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:02 2025 by rpki-client