Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
File: of0WwkfPRm7tMaMEu48X-jIVqqo.mft (raw, json)
Hash identifier: k9U49PQ3SqfAdmKdA9g4fum1b4q/s0I7Q5wb+Vg97Us=
Subject key identifier: 71:09:31:24:88:F2:30:B2:D1:B2:B6:AD:0A:F8:0C:E6:31:7B:2E:63
Authority key identifier: A1:FD:16:C2:47:CF:46:6E:ED:31:A3:04:BB:8F:17:FA:32:15:AA:AA
Certificate issuer: /CN=a1fd16c247cf466eed31a304bb8f17fa3215aaaa
Certificate serial: 0194C387DE41798CF51D52C3F5895B8CFA54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
Manifest number: 142D
Signing time: Sat 01 Feb 2025 22:00:48 +0000
Manifest this update: Sat 01 Feb 2025 22:00:48 +0000
Manifest next update: Sun 02 Feb 2025 22:00:48 +0000
Files and hashes: 1: PIjwt9cncSl25mT3dJ9vyyH9P2g.roa (hash: AHd8tSkEey/Gb5PQrQUs/SSKNf7k6H4ql5Wspc/zuFo=)
2: of0WwkfPRm7tMaMEu48X-jIVqqo.crl (hash: WSxQj04onsjkZH0s6VR9RCCX2MF/x7Rgc4fzQdrU1Lc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:de:41:79:8c:f5:1d:52:c3:f5:89:5b:8c:fa:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1fd16c247cf466eed31a304bb8f17fa3215aaaa
Validity
Not Before: Feb 1 22:00:48 2025 GMT
Not After : Feb 2 22:00:48 2025 GMT
Subject: CN=7109312488f230b2d1b2b6ad0af80ce6317b2e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c7:d7:92:6a:3f:82:2a:3d:50:54:40:2d:c0:
f5:1e:b0:62:66:95:1d:24:6b:16:17:b9:c9:57:b2:
a5:5b:b3:82:d0:5a:24:40:11:cb:95:23:46:6a:b5:
73:de:64:a2:eb:f1:5c:5b:46:ea:16:a2:aa:35:3c:
14:92:fd:40:c5:0a:50:2f:bc:fe:44:29:20:f4:b6:
4e:e1:ed:a4:ed:1b:74:2a:56:47:3f:f6:3a:3c:b0:
f8:d6:d7:05:62:80:02:07:9f:db:44:89:e3:9b:75:
af:05:99:a3:4d:99:0a:e3:cf:41:54:1d:33:fa:fb:
9d:1f:a7:06:a9:2b:c3:ed:5f:1c:26:cd:02:53:19:
6e:c7:cd:f2:7b:59:96:00:e3:7a:77:7c:f6:a7:da:
90:cf:69:e1:84:38:ba:b2:70:c0:27:11:10:01:cd:
ae:ed:06:1e:9e:84:0c:64:20:3f:6b:6c:a8:f3:53:
d4:64:b5:4d:80:71:11:7b:14:9c:40:45:28:cb:37:
94:bb:ee:50:2c:b7:cc:62:03:1e:81:33:e3:7b:63:
d6:62:99:69:ab:66:18:24:cf:e1:67:ef:46:5b:2f:
c1:d0:ee:70:b8:d9:ac:03:dd:0a:7b:82:b9:0a:6c:
db:c9:5a:74:15:3c:1e:83:52:1e:69:58:12:41:ea:
75:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:09:31:24:88:F2:30:B2:D1:B2:B6:AD:0A:F8:0C:E6:31:7B:2E:63
X509v3 Authority Key Identifier:
keyid:A1:FD:16:C2:47:CF:46:6E:ED:31:A3:04:BB:8F:17:FA:32:15:AA:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:45:af:a7:ad:62:c5:6b:b3:21:dd:6f:89:14:d0:85:64:38:
27:4c:38:cf:24:76:05:07:36:f2:92:f0:51:05:6a:ed:c3:10:
15:59:8a:16:92:2a:d7:d6:91:70:1a:74:df:8f:03:04:25:9b:
29:26:57:40:79:f9:5b:87:4f:2e:40:21:75:54:41:04:88:81:
5b:11:2b:07:bc:50:e6:6f:27:3c:eb:98:42:f7:31:38:6f:d2:
c8:27:8b:b9:77:7e:88:b8:18:6c:2b:97:d1:7d:7f:ca:71:c9:
3c:79:46:f9:09:bf:8f:2e:c8:b5:b7:d3:c8:02:05:c9:c2:25:
54:93:48:22:96:2e:df:fd:d0:74:23:7a:fd:2d:e0:43:bc:86:
d7:09:00:43:61:ca:34:72:0a:f7:8e:d5:11:59:18:48:78:8f:
c8:71:ff:f9:1b:da:1d:7f:52:25:1b:36:0a:3c:e3:a5:a8:10:
13:30:a0:44:86:fe:25:f8:6d:e9:14:c6:87:66:ba:2a:5d:a3:
0c:7e:f7:ab:f7:63:ca:dc:97:0f:c9:fe:73:ad:2a:5d:99:a2:
0a:56:5b:fd:77:dd:e6:5a:40:45:5b:8a:8a:82:6b:d7:c5:87:
1a:66:6b:10:4e:2d:cb:3d:4a:04:fa:be:7a:76:94:52:e2:05:
97:50:4d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:37 2025 by rpki-client