Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: O0iWcfMrdWP4LYJvk2guRMj8Eb6LiZWGCxvDx1IXrgk=
Subject key identifier: 56:E1:CF:EE:86:EC:CB:CF:4A:8C:C3:C8:7C:92:35:C1:08:8F:AF:30
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 0194C42C8EE16462C1523D447D0A4A4318CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 0D
Signing time: Sun 02 Feb 2025 01:00:41 +0000
Manifest this update: Sun 02 Feb 2025 01:00:41 +0000
Manifest next update: Mon 03 Feb 2025 01:00:41 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: X9RptJdiSdUt/bNhq18R0ZCeYcIgoD3o6/Bhtd2ZKzA=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:8e:e1:64:62:c1:52:3d:44:7d:0a:4a:43:18:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Feb 2 01:00:41 2025 GMT
Not After : Feb 3 01:00:41 2025 GMT
Subject: CN=56e1cfee86eccbcf4a8cc3c87c9235c1088faf30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:cc:46:ff:2b:cc:c4:ef:78:c6:95:c1:31:89:
80:56:eb:e0:fa:c3:4b:55:12:e8:8d:82:3e:5e:0f:
20:f5:15:da:b5:29:77:3b:49:a6:a9:11:06:de:b8:
42:08:82:ca:6e:01:86:47:66:fd:fa:46:47:92:e6:
1a:e6:42:09:85:ea:00:68:10:39:01:c0:61:e7:8d:
c1:14:4f:1e:e1:ad:cf:10:78:ab:3c:7d:dd:5f:21:
64:dc:80:ce:5e:58:f7:44:77:4f:d6:ef:70:de:26:
5a:56:b5:a5:b4:b6:5f:b3:b4:a1:9f:b8:81:2b:60:
a7:a0:be:56:c3:22:42:14:34:2c:95:67:73:46:52:
5c:b4:f0:6a:e3:71:c4:30:b6:e6:a7:66:3e:7c:98:
30:68:f3:3d:d5:ff:82:4a:f3:39:d1:ee:33:12:92:
84:34:0e:51:2f:f4:2c:1f:4a:84:a2:39:59:af:4a:
92:8f:99:f9:80:e4:fa:7f:d8:8e:d5:5d:39:82:ed:
a7:b9:9a:04:42:4c:ee:2c:a3:7d:91:1c:e9:f5:f3:
ad:50:38:36:ab:8f:33:9b:d0:ef:f9:9f:1f:ac:87:
b8:f1:4f:4a:fa:9f:6b:48:cc:bd:fd:a4:7e:fa:16:
a3:3e:60:3b:cb:d4:01:f4:8a:fd:f9:7b:9c:01:42:
af:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E1:CF:EE:86:EC:CB:CF:4A:8C:C3:C8:7C:92:35:C1:08:8F:AF:30
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:96:07:5e:f3:e5:80:98:69:7b:0b:9e:83:75:a7:ba:5c:2b:
31:87:fe:f0:70:97:ec:25:ba:26:71:b2:8f:d9:6d:60:8b:b6:
4d:f4:3a:74:f8:59:69:8a:5d:fa:fd:0c:4a:54:07:42:fb:ee:
ff:1b:6a:82:e1:6e:58:6a:03:3e:83:c5:68:fd:53:88:63:05:
68:d3:a6:83:95:d8:5c:ef:31:1a:7a:fe:90:fc:e4:0e:dd:af:
a4:8b:a7:9a:ca:b1:97:29:3b:67:52:68:a4:5b:19:5c:73:68:
f3:ad:da:ef:3d:87:32:8d:7b:18:46:5d:67:89:68:86:8d:ec:
88:ff:1e:db:ca:07:39:ee:0a:72:d8:41:a7:40:91:58:14:ae:
75:64:e5:10:70:15:92:73:e6:43:e8:7d:c2:06:69:b1:e0:63:
d5:b4:e2:db:c1:79:20:b4:dc:a8:cf:53:74:3d:10:12:f7:63:
a8:fc:47:f4:7f:3f:08:d8:dc:e2:dc:87:ba:de:98:7f:70:2f:
44:94:6d:cb:46:85:6f:2a:f0:d8:7b:61:2b:5b:75:e9:14:52:
3e:db:0a:0c:bc:10:f0:51:a8:18:06:ee:bb:7f:ac:b0:94:6c:
3f:69:20:50:0e:97:42:56:74:97:a7:ec:53:78:71:4f:9c:02:
a3:24:f1:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:45:27 2025 by rpki-client