Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
File: b2oouFuReYIHK59PQG1-sJmROjE.mft (raw, json)
Hash identifier: zPYSqYGmSzALvKyg9uNpIRi7S03FQ18vG99pMyib5KA=
Subject key identifier: C6:7F:7B:3B:BB:0E:81:0F:0D:46:D8:62:3D:7D:BE:63:88:FC:22:2A
Authority key identifier: 6F:6A:28:B8:5B:91:79:82:07:2B:9F:4F:40:6D:7E:B0:99:91:3A:31
Certificate issuer: /CN=6f6a28b85b917982072b9f4f406d7eb099913a31
Certificate serial: 0195113499EF77B214BE6E3EBB5BBD39DD48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
Manifest number: 0487
Signing time: Mon 17 Feb 2025 00:00:14 +0000
Manifest this update: Mon 17 Feb 2025 00:00:14 +0000
Manifest next update: Tue 18 Feb 2025 00:00:14 +0000
Files and hashes: 1: ZwdlOhTaB9mfI0Lixy338yhL9bw.roa (hash: JhlKbHsGhRiWUq0ABUz1j/K5IY2i4ZC4XvyEDFpDUMk=)
2: b2oouFuReYIHK59PQG1-sJmROjE.crl (hash: 4z8JI7ujzOKT/Snq+nLf+HiSZffMUUMlA3LcZmg1knw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:99:ef:77:b2:14:be:6e:3e:bb:5b:bd:39:dd:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f6a28b85b917982072b9f4f406d7eb099913a31
Validity
Not Before: Feb 17 00:00:14 2025 GMT
Not After : Feb 18 00:00:14 2025 GMT
Subject: CN=c67f7b3bbb0e810f0d46d8623d7dbe6388fc222a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:82:10:43:b6:ef:a2:c3:84:0d:97:12:c1:85:
57:e1:d7:23:02:df:59:e8:a3:bf:85:3a:51:74:c1:
8f:3d:05:36:22:c3:68:3c:ed:e3:5a:5a:fe:44:51:
c2:d0:f0:60:d5:f3:50:50:16:fa:cd:d9:63:45:2a:
af:ca:58:43:f1:5b:ab:72:fc:07:eb:69:b7:c4:8b:
e2:7a:d9:ba:92:89:d1:93:71:49:ea:20:2a:c1:1c:
0f:04:ae:cc:27:3d:84:c4:da:bf:fc:8d:2f:5e:eb:
c5:b0:52:d2:7d:72:4d:f9:14:6e:26:78:32:81:a3:
a7:57:e8:f4:1b:31:89:18:94:cc:33:c9:7a:a8:e7:
e3:96:13:dc:d2:1d:d1:b1:d9:f9:65:b8:f7:35:1d:
32:e3:15:c2:84:e7:9c:35:27:69:40:aa:2b:5e:cb:
e6:f2:ad:6d:d8:82:00:98:b4:04:70:25:ef:43:2c:
49:7c:b4:4c:92:d5:d3:f6:a4:bf:2c:b8:c3:d9:8e:
7c:50:83:26:80:8b:31:5b:b7:14:e0:e9:59:dc:4b:
b5:77:20:67:44:f4:d7:d9:d1:e6:e8:94:9b:ee:bb:
4a:02:72:4f:4b:ee:af:c9:17:d0:52:b0:b0:1e:e9:
21:4b:9d:52:b9:00:e0:df:f7:41:65:af:d8:13:7a:
8f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:7F:7B:3B:BB:0E:81:0F:0D:46:D8:62:3D:7D:BE:63:88:FC:22:2A
X509v3 Authority Key Identifier:
keyid:6F:6A:28:B8:5B:91:79:82:07:2B:9F:4F:40:6D:7E:B0:99:91:3A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:af:c3:96:b1:6c:d6:7f:8f:e5:6a:f5:8f:9f:2c:2c:20:e8:
a2:6e:d6:f0:c3:bb:cb:64:5e:78:6e:59:38:a9:39:ca:f4:2e:
b9:4f:0d:fd:a2:9e:5e:f3:12:3c:e0:b2:db:84:34:e0:a2:8f:
2b:bb:c0:3d:9f:ad:bb:b3:1d:d0:17:f2:83:a7:b5:6e:22:92:
9f:eb:71:2b:20:c2:c3:52:9e:ba:4a:24:6f:87:b9:69:2a:e4:
84:ac:db:a6:c0:33:ba:72:3f:fc:b7:e9:1c:57:3d:19:4a:e1:
7b:d8:e8:27:5b:57:bc:aa:7e:42:b0:fc:ad:28:e2:78:bf:6d:
61:0e:a2:62:7d:88:58:20:5f:68:1c:bd:cd:b2:0d:0e:d8:d0:
5f:fd:0f:0d:50:49:c0:c1:3c:a1:c6:21:20:2a:3f:9c:58:0f:
e7:bc:12:6f:6d:5e:1d:87:4c:cc:bc:01:8d:cb:da:8a:1d:a1:
82:97:4e:f9:2e:3e:e8:31:d7:a8:15:a1:52:68:fb:c9:72:66:
cb:ea:6a:7d:fd:73:a9:5b:52:d2:6d:78:24:80:3d:2c:8a:94:
03:04:aa:78:97:49:52:bd:bd:b2:e2:70:41:59:8e:df:4a:ee:
fb:a6:ed:94:3d:e4:c2:4b:95:00:95:48:53:f1:41:6d:57:56:
72:c3:d3:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:48 2025 by rpki-client