Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
File: 2OnkD_n7tigNo26XLyDTElAMGFw.mft (raw, json)
Hash identifier: ZixjDkm9QjcT+nbDNGK8OidXDW9iQjXDvTHaA/h3m7I=
Subject key identifier: 5E:CE:FA:B8:79:1B:4F:AE:B5:E2:24:F0:47:FF:ED:BA:9D:3B:5E:5B
Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Certificate serial: 019510FE018BAE813A237BC527A68DBBCD02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
Manifest number: 113E
Signing time: Sun 16 Feb 2025 23:00:36 +0000
Manifest this update: Sun 16 Feb 2025 23:00:36 +0000
Manifest next update: Mon 17 Feb 2025 23:00:36 +0000
Files and hashes: 1: 2OnkD_n7tigNo26XLyDTElAMGFw.crl (hash: ToBqoX1ZqujvFE9/JbeKOPbQxQzB3vOmvsjRGjmyKTo=)
2: h5ibvBXljsm0_9K-AnuxEpyWzoI.roa (hash: SvGB7aqcdXdN/Cdk0NHyr1xHsC5MuHnt2HID1mkRiq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fe:01:8b:ae:81:3a:23:7b:c5:27:a6:8d:bb:cd:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Validity
Not Before: Feb 16 23:00:36 2025 GMT
Not After : Feb 17 23:00:36 2025 GMT
Subject: CN=5ecefab8791b4faeb5e224f047ffedba9d3b5e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d9:b2:7e:0b:7b:81:57:31:b0:85:fe:53:76:
95:e1:84:9a:5a:c9:09:8c:aa:5f:cd:84:1e:b4:ab:
2e:e6:a6:05:26:67:55:11:4d:69:78:3b:2e:5a:88:
9b:53:d3:52:77:a7:a7:85:cd:1f:9b:8e:1f:ae:86:
6b:10:49:6b:f7:93:c0:4f:61:6c:c1:26:4b:28:c8:
ca:cc:8e:0e:10:ed:96:9e:95:b9:6c:e6:f1:50:54:
ea:ea:8e:32:03:c9:14:b3:d5:3e:c5:69:69:4b:69:
c1:7e:10:a1:3a:70:76:94:d0:3f:c7:4f:ee:54:f1:
fe:ac:1b:4e:1d:c5:ad:10:17:8f:0d:f6:22:c1:cb:
9e:70:2e:31:35:ba:61:5c:f8:11:0a:9f:c3:70:b9:
20:87:f0:d8:80:47:c5:0c:d5:4f:2d:86:19:86:81:
50:5b:02:ac:7b:28:41:36:71:d4:2d:a7:71:59:eb:
a4:55:ca:d6:4d:a7:49:d0:08:ed:ca:9e:f4:76:c4:
ad:46:7a:f1:29:a3:d7:f9:40:84:50:16:34:8e:57:
b4:ea:db:17:c2:80:97:cb:55:88:7f:9a:ac:7c:73:
33:96:99:9e:d8:7c:ff:f6:a4:80:fa:c1:3a:20:94:
43:10:22:e2:c7:be:98:e6:93:3c:c3:5e:0f:06:b3:
ee:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CE:FA:B8:79:1B:4F:AE:B5:E2:24:F0:47:FF:ED:BA:9D:3B:5E:5B
X509v3 Authority Key Identifier:
keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:1c:0d:9b:17:ee:df:b0:b2:32:cc:6f:25:b7:b6:79:a5:fc:
0b:99:63:fc:71:d6:2c:6c:a3:93:6a:c9:6f:28:74:38:6e:48:
44:57:c4:ee:bb:ec:70:33:d0:de:b4:4c:a3:f2:3e:af:30:0c:
37:86:a0:62:3c:10:9c:89:20:4f:4d:d8:bd:c8:a1:02:7f:b8:
b3:2b:32:3e:30:20:80:6c:12:8d:52:b7:e0:aa:99:f0:53:b0:
4c:d3:ed:f2:60:d8:bc:43:eb:ed:f9:2c:f1:b0:96:eb:a1:37:
4d:2b:04:ca:b4:bf:4f:0b:f3:19:df:8a:70:9f:b3:dd:4a:89:
58:ad:a8:e1:76:4c:ca:b3:25:8f:d7:96:db:bf:18:0d:cc:e6:
70:55:9f:38:a5:e3:c1:b2:8f:b5:15:f5:19:a8:84:c2:b4:d6:
30:d6:55:cc:99:56:c9:40:d4:48:08:23:40:a8:c5:84:f8:e1:
62:33:75:5e:ac:9d:16:87:55:fd:26:d4:7b:12:0f:df:c0:f4:
72:66:b9:48:b8:c9:6e:35:2f:f3:d4:c8:92:19:3e:8a:b6:c3:
58:a4:1d:f9:50:21:e3:87:2f:df:f4:71:88:c1:c4:c1:8b:11:
82:68:79:d3:dd:25:59:4c:bc:4f:85:f8:e1:71:22:1d:cd:7e:
22:47:6b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:33 2025 by rpki-client