Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
File: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft (raw, json)
Hash identifier: Ayb3/MJBfxacY9DaY80+7VbW3qLvSpI8lZ6vPiWvYjg=
Subject key identifier: A4:EF:F1:0C:2A:73:35:43:96:26:D6:1A:88:63:07:ED:F6:15:AE:9C
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 019512105A31ED7C7D147DAE9DBA34F299DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
Manifest number: 0924
Signing time: Mon 17 Feb 2025 04:00:16 +0000
Manifest this update: Mon 17 Feb 2025 04:00:16 +0000
Manifest next update: Tue 18 Feb 2025 04:00:16 +0000
Files and hashes: 1: F3oEv0QBT7ejRZnF2aTKoyEK5cI.roa (hash: MTTLBQPL1aOScQOGtAiCwXpSCEzlrz60TWKC9wTFgO4=)
2: O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl (hash: 62rmXfSO2qQFQD5JIuH+Pwlq0qlaKZFghvh+JPqbaeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:5a:31:ed:7c:7d:14:7d:ae:9d:ba:34:f2:99:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: Feb 17 04:00:16 2025 GMT
Not After : Feb 18 04:00:16 2025 GMT
Subject: CN=a4eff10c2a7335439626d61a886307edf615ae9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6f:bd:b1:b1:03:d5:02:6a:c9:8c:a6:85:c3:
be:c1:7d:2c:d9:53:40:75:51:65:cd:57:9c:89:36:
aa:07:0e:4e:1d:5a:89:15:22:c8:75:a4:48:a2:c1:
66:b4:92:1a:4e:26:dd:8f:cb:c4:53:61:38:78:6b:
3c:83:df:22:56:cb:4c:28:be:2c:9f:e7:59:17:2f:
86:12:7b:6d:c0:0e:0a:0c:bf:4a:c1:99:63:c1:8e:
e3:cf:a8:dc:94:b3:2a:b8:64:2d:07:e8:4b:a7:ad:
e2:5e:1d:24:d4:ca:ac:7a:c1:de:fc:be:05:51:f6:
ac:0b:08:2a:43:2b:72:8a:19:1b:25:f2:9f:63:cf:
65:55:54:69:43:7d:60:3e:bb:70:89:eb:52:bd:54:
8c:ad:57:8b:4b:67:86:27:68:d6:4c:d0:40:07:51:
43:13:f0:dd:8e:8b:78:5d:75:5e:3c:62:7c:ef:f7:
a9:ca:dd:7d:da:e0:51:56:6e:83:02:5f:37:ea:af:
6c:f3:4f:a9:94:4a:cb:18:34:8a:c4:7a:33:1a:4a:
1d:0c:ea:ce:6e:2b:3f:bb:6f:b6:84:66:8d:67:f4:
06:42:b1:20:3a:ca:b7:24:59:e0:1d:c5:99:70:65:
6e:17:d7:6d:4d:45:35:49:74:08:6e:b8:8d:7c:00:
f7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:EF:F1:0C:2A:73:35:43:96:26:D6:1A:88:63:07:ED:F6:15:AE:9C
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:11:a8:49:c4:6d:d4:a8:bf:53:17:a8:14:80:7e:cf:c8:3e:
30:ab:51:bb:8f:77:83:76:ef:03:fc:ce:f3:41:6e:a4:db:45:
04:62:7a:05:a1:94:4e:c6:26:4c:db:3a:5f:9a:7d:57:95:e9:
31:85:18:cd:6c:26:f0:6d:ce:ec:a0:78:3b:b7:ff:f2:48:49:
01:95:96:0b:ff:85:4f:97:5e:86:53:c5:3e:7e:ac:f3:a4:38:
2b:77:fc:b0:e8:6e:10:d9:8c:a2:18:57:41:67:1b:e4:20:5f:
05:2d:27:e0:a8:81:38:90:f9:2a:33:11:9e:46:5d:52:4f:a2:
48:78:9d:4d:1f:ea:34:ea:45:66:65:66:ab:6d:dc:99:92:70:
c9:1c:af:cc:a7:d0:82:d8:06:11:46:da:50:5f:c7:6b:24:d1:
3e:65:6e:c3:a3:10:25:c8:d5:d4:78:8a:3f:63:c9:dd:49:f8:
d5:6a:c9:a6:5d:a9:98:0a:13:17:3a:02:1c:19:5d:e7:77:6d:
4e:65:a1:d4:16:d2:a2:f4:b3:b4:38:8e:ca:be:4f:08:a7:36:
c0:42:c5:3a:fe:f5:73:09:e2:41:65:d6:a0:ff:a3:94:2c:62:
47:fe:97:95:91:b1:0a:83:6a:52:c1:eb:74:f4:fd:d5:7a:98:
d8:83:3d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:48 2025 by rpki-client