Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
File: jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft (raw, json)
Hash identifier: pIgkVHVH6SYba9QFJyiPGWnUIJA3DcNyB1rJOa0HigI=
Subject key identifier: 0E:91:D4:0C:72:D3:44:5E:B9:84:84:E5:9E:24:06:7F:BA:4B:E9:77
Authority key identifier: 8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F
Certificate issuer: /CN=8e0f683867ef769a0a22ade17118ed06fa57b81f
Certificate serial: 01951247907698B2E4B81020D86843947E26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
Manifest number: 03A5
Signing time: Mon 17 Feb 2025 05:00:34 +0000
Manifest this update: Mon 17 Feb 2025 05:00:34 +0000
Manifest next update: Tue 18 Feb 2025 05:00:34 +0000
Files and hashes: 1: 960ydd6N5IVjJ8SKw0-cCFu0l5A.roa (hash: vdzIyqJL7Fj4rd7R5SOUV3BY5/WQ96AWM5L49KfXiUE=)
2: jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl (hash: UhVp1mbA/3aun3sO56eeQo0PVJZ9VceSA+/I9qc4+0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:90:76:98:b2:e4:b8:10:20:d8:68:43:94:7e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0f683867ef769a0a22ade17118ed06fa57b81f
Validity
Not Before: Feb 17 05:00:34 2025 GMT
Not After : Feb 18 05:00:34 2025 GMT
Subject: CN=0e91d40c72d3445eb98484e59e24067fba4be977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:71:d7:4e:27:f1:56:4d:2a:1d:f0:5f:8d:6e:
15:89:36:57:5f:15:a4:a3:10:ed:b6:55:aa:6c:1f:
a5:92:e7:35:0a:2f:18:25:95:81:10:9e:d5:8e:91:
8e:94:85:11:51:d6:e6:96:d1:c8:a1:b3:4e:5e:97:
d0:07:f7:54:e9:09:26:8d:e8:3f:e2:96:83:3e:58:
fb:37:ce:d2:d2:b2:59:40:4c:59:ce:4f:c6:e8:52:
11:02:e0:06:4b:d2:1c:a5:69:33:e1:30:95:4c:19:
a5:71:1b:ec:3b:fd:0c:e6:39:15:e5:e5:80:02:99:
42:0d:01:cb:40:8d:9f:03:91:29:66:c2:8b:48:4d:
33:22:35:16:ec:5d:39:cc:7c:ed:56:0b:b7:bc:02:
5f:fd:7c:05:ed:92:4e:4a:02:fd:e9:64:ba:5d:9f:
c8:0b:0f:78:4a:b7:ae:b1:f0:b6:fc:e5:a0:14:28:
43:92:ad:f2:ee:7b:a1:72:0c:0e:c2:be:a3:41:ac:
4f:a5:0a:7a:87:ff:35:7b:8d:6c:75:03:5e:e9:b5:
d6:a0:81:8f:32:bc:7c:ff:40:d1:4b:b2:1b:6b:30:
cb:f2:90:8d:bb:b1:9b:09:a6:86:cf:2d:7a:f2:f7:
aa:45:1c:64:c0:15:84:4e:83:92:16:bd:5e:fc:eb:
64:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:91:D4:0C:72:D3:44:5E:B9:84:84:E5:9E:24:06:7F:BA:4B:E9:77
X509v3 Authority Key Identifier:
keyid:8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:53:96:02:79:0f:4c:51:24:d9:99:7c:08:96:c2:4b:e1:8a:
8c:66:d0:0c:36:4e:b6:e1:ee:94:4f:f8:af:de:5c:2c:9b:72:
01:ed:99:92:46:9f:0c:89:24:da:9a:0b:23:62:40:6e:ac:fb:
c1:dc:89:07:42:8a:a7:41:db:2d:18:c8:5b:56:b0:a1:77:f3:
f4:6f:7f:32:43:19:8f:c5:da:0b:a4:85:4a:98:d0:06:ff:71:
1f:57:e5:d9:3d:19:17:e1:90:cb:53:9a:c8:5e:95:cb:be:c4:
a0:98:4c:04:ee:72:13:a6:ba:5a:b1:82:a9:73:8d:61:b7:6e:
ab:a2:2c:41:04:26:26:fe:89:40:f5:72:c8:d8:f9:4c:24:02:
92:b2:27:84:5e:22:10:23:65:5f:ad:b7:07:f2:5f:70:7a:bf:
91:2e:24:07:b6:6a:ec:f9:23:ad:40:05:79:8f:6d:f7:7f:b9:
07:a8:5f:8a:c8:f9:97:d2:03:6a:63:b5:af:67:d7:64:0d:c5:
aa:86:31:96:15:e1:b8:45:14:d0:2b:2a:1b:32:ea:9a:f5:a2:
60:8b:8d:f8:57:d8:c5:50:cf:74:b3:55:1f:db:b7:fe:c3:4c:
12:14:44:e3:0a:c3:2a:d9:f0:3f:72:61:d8:e3:51:48:c2:32:
88:38:4c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:34 2025 by rpki-client