Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: MjEbIFiYgZL46gxG3I0kS/vr+WZmSyax986NNW8p9+o=
Subject key identifier: 58:98:2B:86:CE:5C:07:62:C9:A0:12:93:9C:8D:CD:80:FB:A8:BA:E6
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 0194C3882508932D634750DB1A2845CDC26C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 13BE
Signing time: Sat 01 Feb 2025 22:01:06 +0000
Manifest this update: Sat 01 Feb 2025 22:01:06 +0000
Manifest next update: Sun 02 Feb 2025 22:01:06 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: +5LSc2e3bEsdWUsBWu6jRsKODNtA3USMlFdtnka+B4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:25:08:93:2d:63:47:50:db:1a:28:45:cd:c2:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Feb 1 22:01:06 2025 GMT
Not After : Feb 2 22:01:06 2025 GMT
Subject: CN=58982b86ce5c0762c9a012939c8dcd80fba8bae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c3:f4:06:ed:f8:5b:d1:fa:8c:94:24:f0:65:
5d:b2:4f:8e:cc:f8:4f:71:c0:27:2e:61:5a:ff:26:
16:b6:a5:fd:ce:a2:15:19:91:29:36:5e:c2:78:44:
2f:04:f5:21:f6:29:16:32:f1:92:bb:b4:46:fd:55:
f2:d9:24:fd:c7:53:76:1c:e4:be:11:67:73:94:2f:
51:47:d8:18:a5:c0:0c:94:df:02:f9:cc:5a:56:c0:
49:9d:b5:98:66:24:fa:b1:1b:be:02:c6:c7:21:9e:
c3:95:fa:7a:83:20:19:d2:1c:48:24:a1:67:d2:42:
f9:b5:9b:47:4a:71:94:b5:0b:04:60:a9:e4:05:1d:
2a:cd:df:5f:a4:36:79:6f:8a:c0:e0:af:3d:da:c3:
32:0f:6b:79:34:4b:e3:db:43:07:0a:6f:10:54:cf:
fd:a8:90:08:72:dc:a6:6c:8d:ac:cd:9b:69:bc:b2:
4a:8c:67:70:f3:5e:e3:d7:47:c4:ce:cb:9e:ed:34:
1c:84:83:1b:3c:5a:3e:24:94:43:71:00:e3:23:ec:
5e:8c:cc:14:9f:d5:f2:3a:43:22:26:cd:8e:5d:16:
4b:8a:88:7d:8c:92:f8:71:13:e2:19:75:bb:c1:e6:
ea:f3:91:82:22:1f:f7:75:81:bc:88:42:b1:99:97:
b2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:98:2B:86:CE:5C:07:62:C9:A0:12:93:9C:8D:CD:80:FB:A8:BA:E6
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:2a:c8:f8:9d:e8:34:ff:bf:f6:8f:63:1f:58:a2:d0:a2:be:
41:37:1a:0c:77:7d:c2:15:0f:1c:0d:de:f2:75:82:5f:09:c4:
71:60:fb:99:a5:55:df:d7:ca:0a:b6:63:ee:4d:22:71:8c:7c:
06:b2:1a:82:ea:8c:5c:7d:bc:dc:77:d8:32:96:a7:ad:d4:fb:
aa:66:e8:92:96:65:d5:06:a0:ca:e9:c8:57:b9:a1:74:5f:cb:
05:ba:87:a1:92:05:e3:d6:1a:a4:27:e9:3b:46:02:89:b9:3b:
4a:a4:9f:e2:c6:50:97:04:d9:30:22:01:f2:d9:af:18:45:5e:
bb:78:1d:6c:3b:bd:3e:88:83:d3:58:46:7a:bf:5c:c4:17:ec:
cf:ed:4c:9b:e8:09:a5:05:90:25:3e:12:43:19:de:40:ac:75:
b6:26:0d:fa:a1:bc:e3:fa:f4:3e:8a:a2:1e:14:3c:64:c6:97:
e9:9f:d6:38:84:9e:ae:a2:87:5a:56:96:ac:a4:3d:87:d6:60:
9b:46:3a:01:1a:d1:92:08:f0:f9:3e:71:e3:ae:43:b3:10:57:
d0:b5:f6:b4:87:eb:4d:72:e6:0d:03:01:aa:32:99:c9:4c:e9:
a9:8b:dc:16:d6:22:25:bb:1e:83:d2:da:3d:7c:05:67:66:d6:
b3:b7:2d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:43:04 2025 by rpki-client