Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.mft
File: OC5TMDOzzpXklyvyOC3awpPC3AE.mft (raw, json)
Hash identifier: r/IvezE5JoJeL/mLxQ7yyhM0G695FwmMt8PoF4zADaU=
Subject key identifier: E5:51:72:A6:E5:15:10:2B:43:98:D2:7D:0C:4A:7A:00:87:8C:91:70
Authority key identifier: 38:2E:53:30:33:B3:CE:95:E4:97:2B:F2:38:2D:DA:C2:93:C2:DC:01
Certificate issuer: /CN=382e533033b3ce95e4972bf2382ddac293c2dc01
Certificate serial: 0195108FB56912855B26C67FD532BCB314A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC5TMDOzzpXklyvyOC3awpPC3AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.mft
Manifest number: 07B5
Signing time: Sun 16 Feb 2025 21:00:08 +0000
Manifest this update: Sun 16 Feb 2025 21:00:08 +0000
Manifest next update: Mon 17 Feb 2025 21:00:08 +0000
Files and hashes: 1: 5Ut0b0NCsET_SBcrRZDGmpxguZ8.roa (hash: yFP/8VV88RGdYS/1gMV2xguqReDrDsPUy9So1+AmUlY=)
2: 5govGzTOoEOkHW5AQQBeXhEslnY.roa (hash: WSesnMfx5MzV8mfpr2Kk+2TovkIoHzCJWKSulEHwHA0=)
3: OC5TMDOzzpXklyvyOC3awpPC3AE.crl (hash: B7lHYy1Ql/qvTfrs2IPQIeyq2iWsLG4knZl0EbP5uC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC5TMDOzzpXklyvyOC3awpPC3AE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:b5:69:12:85:5b:26:c6:7f:d5:32:bc:b3:14:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382e533033b3ce95e4972bf2382ddac293c2dc01
Validity
Not Before: Feb 16 21:00:08 2025 GMT
Not After : Feb 17 21:00:08 2025 GMT
Subject: CN=e55172a6e515102b4398d27d0c4a7a00878c9170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f2:36:83:ba:be:a4:96:db:ce:97:9b:dd:80:
28:d9:8c:a4:10:73:4f:35:a5:db:d9:f6:19:52:7c:
78:12:bc:b6:0b:1a:40:fb:86:05:9e:f8:d0:ad:c5:
63:78:ac:20:18:03:6d:55:9b:50:54:71:39:e4:3d:
f4:c7:46:d6:ac:7b:e2:ff:1b:a2:11:c3:ba:26:73:
5c:75:8c:58:6a:7c:ed:9d:80:ea:b6:f6:c2:70:4a:
10:f9:20:31:74:2d:50:2a:df:10:f7:f5:c9:68:55:
3b:2c:40:5c:35:d6:13:22:72:d4:90:8d:c4:a6:8a:
09:23:81:95:0b:db:a1:32:61:5f:f2:de:f5:5a:e1:
29:05:38:6d:a3:45:07:74:82:db:d3:08:d5:c2:88:
4c:42:49:9b:37:34:69:79:d0:4a:0c:73:91:67:38:
cc:06:31:f2:2a:df:f7:84:c5:6f:86:c5:72:5d:39:
14:93:53:28:cb:a4:af:92:e3:34:ae:c2:c0:73:4d:
6b:65:d3:f4:0f:87:9d:a5:54:fc:95:2f:97:c9:bc:
83:8d:36:25:37:61:b0:06:71:44:9d:89:79:fa:55:
55:bf:5f:e5:6c:e6:4f:cb:67:7c:71:07:84:3f:ac:
b6:f1:bf:7c:f2:8f:76:da:78:e0:a3:8a:03:df:bd:
91:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:51:72:A6:E5:15:10:2B:43:98:D2:7D:0C:4A:7A:00:87:8C:91:70
X509v3 Authority Key Identifier:
keyid:38:2E:53:30:33:B3:CE:95:E4:97:2B:F2:38:2D:DA:C2:93:C2:DC:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC5TMDOzzpXklyvyOC3awpPC3AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:48:ac:3b:c2:50:b9:7e:2e:bb:be:26:c1:4e:c6:be:42:03:
38:bb:42:10:61:65:8b:9f:6f:a6:fd:bf:58:32:3a:29:3b:f5:
2c:89:c4:f9:18:52:f1:d3:17:2c:99:40:85:d1:c8:d2:17:6a:
b1:6e:90:e0:2f:94:b8:82:93:78:df:f8:34:ae:74:9a:8e:ac:
b0:90:d2:a1:b4:35:49:95:7a:b9:c7:f1:22:5c:c7:ea:42:f9:
ae:d3:a3:e6:b0:07:c2:4f:08:fd:04:ae:bb:38:2d:cb:e2:ca:
da:99:ad:3b:49:2d:ba:6e:29:a0:2e:0d:72:a4:f0:ab:a8:fe:
74:f1:e1:45:1e:4d:8d:60:fb:c9:d7:e3:2a:99:6e:98:25:bd:
e0:b7:76:0c:4b:fd:9e:93:b0:00:ae:52:ac:b6:3d:45:14:91:
9f:36:ec:a5:69:a4:d1:e6:8c:e7:10:f9:23:5a:e2:ce:c4:91:
f8:0c:e8:cd:ae:8b:d5:9a:af:05:1c:40:bf:80:b0:24:ab:45:
d7:a2:55:06:a9:13:d4:9a:60:29:0e:64:0a:b2:06:6c:f2:b1:
b1:eb:d5:63:8b:40:3c:f1:0a:30:cb:1d:92:22:03:b3:ad:5a:
64:49:71:8c:42:28:e7:9b:3f:fe:41:b2:1c:42:d9:b3:60:97:
5f:62:4f:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:28 2025 by rpki-client