Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
File: OzNj5H5p68XRwiUd3V2sfJiYmSI.mft (raw, json)
Hash identifier: 4W9z4WWjdmuY44bBe0PbXSoJbgTD539MtCqgPemMTNM=
Subject key identifier: 6B:24:F2:7E:81:86:9B:A7:C0:3F:B2:1A:4D:1B:A7:1F:78:02:A9:10
Authority key identifier: 3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
Certificate issuer: /CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Certificate serial: 0194C388889E04051A93FA3C8301C43930EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
Manifest number: 142F
Signing time: Sat 01 Feb 2025 22:01:32 +0000
Manifest this update: Sat 01 Feb 2025 22:01:32 +0000
Manifest next update: Sun 02 Feb 2025 22:01:32 +0000
Files and hashes: 1: OzNj5H5p68XRwiUd3V2sfJiYmSI.crl (hash: 72nkTdrAxFi12gOZby2BLLQu+NNGGATyYgiK5ZtZ3lE=)
2: vYaPE7wk6Qo5Lm2fpqZ1rhvLpDU.roa (hash: ZL2srvtFB3ZUj0RuUE6dDGpy3UL8CY63qkKeS+BMJ20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:88:9e:04:05:1a:93:fa:3c:83:01:c4:39:30:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Validity
Not Before: Feb 1 22:01:32 2025 GMT
Not After : Feb 2 22:01:32 2025 GMT
Subject: CN=6b24f27e81869ba7c03fb21a4d1ba71f7802a910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ba:7e:de:dc:a0:ca:55:b6:fd:63:1c:4a:91:
d1:0e:15:57:fe:9f:78:33:66:e9:73:d2:50:9e:22:
bf:f5:09:c4:45:06:40:0e:a7:7b:8f:8e:a4:f0:82:
74:db:de:dd:6a:e1:e5:91:2c:88:b0:2d:45:e0:ae:
df:a9:92:55:bc:16:ff:15:d5:be:ec:00:8d:aa:5a:
fd:db:45:5d:0e:5a:fe:92:e5:8c:dd:28:1d:49:fd:
e0:7b:dd:d9:da:eb:75:82:7f:e6:b2:60:89:df:8b:
09:e4:19:cd:e2:38:30:2a:b1:b0:38:17:82:03:09:
32:65:ce:52:93:ba:0a:2d:7a:dd:d7:24:60:54:82:
0c:be:6c:f2:a6:d8:97:19:29:a0:08:89:fe:24:a4:
1b:fa:50:fc:92:2a:9f:f7:bb:66:18:47:1e:01:a5:
77:5b:ac:47:ca:8a:95:25:10:53:7f:bc:95:d2:1d:
ce:3b:74:40:13:da:b2:a5:b2:0e:19:3b:5e:4c:a2:
31:c4:c4:5c:e2:26:c0:26:47:08:ec:af:d8:f6:69:
88:20:78:4d:8d:eb:44:a6:25:f2:17:fd:4e:75:f6:
66:f8:52:bf:a0:4d:1e:4f:0a:ec:b5:02:b1:2e:9b:
76:ba:f9:61:50:46:24:e6:b7:ae:62:47:8a:12:61:
f7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:24:F2:7E:81:86:9B:A7:C0:3F:B2:1A:4D:1B:A7:1F:78:02:A9:10
X509v3 Authority Key Identifier:
keyid:3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:75:e2:1c:34:a1:92:61:82:4a:87:a7:6c:79:ca:e3:aa:c0:
a3:bc:21:49:2b:43:a0:70:0b:9b:71:df:68:dc:71:36:c7:94:
ba:8f:38:47:21:5a:65:3a:07:c9:29:81:0f:78:da:9f:f2:31:
66:7a:63:fe:7a:4a:13:20:e0:96:57:81:c6:83:37:c1:b8:c9:
76:dc:80:6c:31:fa:50:9b:ff:c7:a8:e5:30:68:e1:ea:36:27:
6d:3f:62:9d:78:67:6d:3c:25:ba:bc:0e:be:b2:47:99:80:6e:
61:5a:b0:54:ec:80:a8:a1:73:ad:1d:c7:68:e7:a3:e3:8a:88:
a0:b3:56:53:3b:ea:98:57:65:60:db:61:19:e4:a0:11:36:9d:
5b:63:c7:52:8b:09:34:6f:78:9f:7d:89:f8:c5:d1:f8:85:e5:
50:1e:a1:3b:a3:4c:cd:89:ca:bd:e9:dc:d0:9a:84:c6:64:6e:
4b:5b:00:6a:80:7d:5b:ef:2a:52:5a:2f:ad:94:5a:df:71:57:
07:e1:e9:b8:8e:d0:c8:2a:2b:da:0d:9f:84:21:4b:3a:cb:18:
b2:fb:bc:5e:48:90:26:1b:dc:18:a7:bf:9c:b9:5b:5c:79:78:
28:38:a9:ae:f3:c1:38:a7:da:7d:6b:e0:ec:af:64:50:d0:b6:
7b:53:06:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:24 2025 by rpki-client