Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
File: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft (raw, json)
Hash identifier: Xsn2fXEwuM70aJ/7AdxKRQ5UeZRua6y55Z12o06F9fU=
Subject key identifier: A9:A7:C2:06:BD:71:A5:E8:C8:A0:A6:E5:65:6D:9F:01:F3:10:F4:B6
Authority key identifier: 3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
Certificate issuer: /CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Certificate serial: 019511353D3A4E72B158508FDC9BE3203B27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
Manifest number: 1356
Signing time: Mon 17 Feb 2025 00:00:56 +0000
Manifest this update: Mon 17 Feb 2025 00:00:56 +0000
Manifest next update: Tue 18 Feb 2025 00:00:56 +0000
Files and hashes: 1: OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl (hash: KSFCIJmf+HcZ8y2eTY3DOUqRDdZ/b3KObOCc7k6yEgc=)
2: hE2ePAizZlQUV6uXdZuzIjMthNQ.roa (hash: +KNuL0RhbzwD+ZdqGTxpdbmElk+6cn62429cYK2AHFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:3d:3a:4e:72:b1:58:50:8f:dc:9b:e3:20:3b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a12854a8400d8c87ea4de7a22fdf1bf574a9031
Validity
Not Before: Feb 17 00:00:56 2025 GMT
Not After : Feb 18 00:00:56 2025 GMT
Subject: CN=a9a7c206bd71a5e8c8a0a6e5656d9f01f310f4b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b1:46:6c:49:66:b4:24:dc:5d:ab:2e:c4:20:
4c:0a:53:5b:9e:ef:25:5a:7f:c2:22:6d:33:17:96:
b3:15:64:81:68:ab:41:61:f9:85:07:eb:5e:43:81:
dd:ef:07:a5:0c:73:c6:92:3e:7f:d9:c0:05:75:ec:
73:02:e4:f2:20:c4:8f:5e:eb:6d:80:af:a9:17:cc:
5a:97:ea:b5:f6:48:0a:11:a7:80:45:b5:2a:7c:4b:
fa:f6:87:04:89:c9:b4:d5:18:df:e4:f8:6b:26:ac:
0e:94:cb:77:69:bc:21:4b:84:f8:1a:70:c2:d4:80:
d1:92:95:09:bc:4e:89:23:5b:60:67:59:e8:2f:e2:
c9:ee:60:dd:dd:55:df:29:95:81:40:54:13:ba:d2:
6b:d0:21:75:a6:75:7e:02:1e:6b:ff:6b:69:6f:82:
c0:c6:d6:78:f8:73:bd:12:81:b2:8b:29:84:94:56:
f3:03:af:a3:e0:80:b7:47:3c:33:67:bb:e6:b7:e8:
2d:24:6e:45:c6:a7:8a:95:e7:20:1d:67:f8:53:f7:
a0:8d:44:7e:12:77:05:c5:e7:ad:82:8d:e2:b2:a0:
5a:a1:2a:6c:dc:b4:5e:e6:65:a0:b7:7f:b4:10:41:
c9:3d:5f:d3:b5:a9:68:9d:1b:28:d5:a2:a3:0e:b1:
4e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A7:C2:06:BD:71:A5:E8:C8:A0:A6:E5:65:6D:9F:01:F3:10:F4:B6
X509v3 Authority Key Identifier:
keyid:3A:12:85:4A:84:00:D8:C8:7E:A4:DE:7A:22:FD:F1:BF:57:4A:90:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2b6e16-9ce8-49da-9ed3-6829d68e2a54/1/OhKFSoQA2Mh-pN56Iv3xv1dKkDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:88:41:72:50:f8:2e:72:1a:3e:93:7c:a8:2d:41:2d:d4:20:
79:1e:34:04:4c:06:2c:67:51:85:f9:bf:70:22:c3:8e:7a:27:
cb:a8:94:3f:62:34:56:08:13:0f:4f:64:4a:26:a2:35:b7:63:
1b:b4:96:f8:5e:e8:a0:78:77:75:e6:4d:32:58:4e:a6:ee:b0:
7f:2a:18:ee:12:1d:f5:9c:b8:59:27:4d:b5:5e:c0:bf:eb:3d:
76:f8:74:ae:e6:21:3a:6e:93:cc:af:01:42:03:75:c2:1c:3b:
3e:34:79:19:c7:2e:92:7e:ec:df:ba:e3:f0:f7:a8:48:a2:14:
bc:3a:87:71:37:fd:36:24:b0:de:5f:fc:00:0b:4f:1c:a3:a7:
2f:a8:01:16:de:37:14:47:26:73:b0:2f:e1:cc:2e:72:2c:28:
fd:c0:21:7c:bb:6b:44:8b:0c:3d:bc:7f:0e:4a:8d:23:b7:84:
e9:3b:c8:bd:f4:5d:b7:63:cb:ce:36:26:16:26:2e:1a:ac:23:
23:a2:bd:9f:bd:8d:35:59:e1:7b:63:6a:13:73:2a:dc:26:74:
45:30:7f:de:13:0a:06:c6:db:5a:22:20:5d:4c:8d:e4:1e:c5:
2e:26:2e:83:3c:30:0b:2e:7d:74:1e:61:28:be:e1:09:51:c2:
34:24:e8:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:53 2025 by rpki-client