Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: l2UwWe4jB2QhRwH04QGr6u3wRqmnnon+b3HBY+GtxQg=
Subject key identifier: 81:A7:86:B1:AA:45:3D:CE:57:17:95:69:53:09:81:B6:0C:9C:47:E6
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 0194BA843A6D6D6696B72DA8AA131C52D796
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0C1D
Signing time: Fri 31 Jan 2025 04:00:15 +0000
Manifest this update: Fri 31 Jan 2025 04:00:15 +0000
Manifest next update: Sat 01 Feb 2025 04:00:15 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: 0tSKeK04qyD2/eVf1IjYN8BAbsm++/K5VD2kNKAefRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:3a:6d:6d:66:96:b7:2d:a8:aa:13:1c:52:d7:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Jan 31 04:00:15 2025 GMT
Not After : Feb 1 04:00:15 2025 GMT
Subject: CN=81a786b1aa453dce57179569530981b60c9c47e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f2:6f:53:4a:84:1d:a6:5f:97:6b:d6:96:2e:
7f:b3:50:4e:9c:22:bb:1e:1b:b1:d6:4b:fe:60:13:
05:2f:37:cf:7c:ee:b4:e5:81:0a:d0:7d:31:93:31:
71:e3:0b:21:0b:0c:cc:41:20:71:03:ac:b8:46:26:
c2:d1:06:00:d7:6f:d4:d7:56:f1:c3:c4:61:3b:74:
c1:34:3d:03:43:7c:04:65:8b:f0:ab:c4:8f:2c:8c:
ec:ca:4a:cf:ec:7f:45:32:59:da:82:7b:90:08:a7:
d2:c9:66:68:d2:dd:a6:2e:ce:b7:2e:fe:d4:7e:27:
bc:f1:e3:18:27:77:ff:04:28:9b:43:91:5d:e3:09:
f0:8f:1e:49:fa:98:77:0c:38:c6:3b:f7:41:6a:5a:
47:1d:51:74:1c:99:95:e3:3d:21:fb:01:bd:b7:c0:
ec:a2:13:cd:a6:33:d3:1a:07:6b:5f:a0:c2:70:48:
95:e8:1f:df:e9:d3:c1:df:db:7c:71:39:7e:67:30:
33:3a:ec:c3:e7:e8:29:3f:24:44:78:9e:9d:a5:6e:
eb:8f:fc:36:0c:1f:c8:c2:85:28:05:8c:01:aa:fa:
e3:9d:4a:4f:15:0b:b8:48:d6:03:1e:e9:87:63:75:
a0:fe:db:d6:e8:86:6b:c6:42:ac:25:6a:ab:5e:56:
3f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A7:86:B1:AA:45:3D:CE:57:17:95:69:53:09:81:B6:0C:9C:47:E6
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:e2:e3:77:4e:39:16:03:cc:e4:69:f0:28:ee:a6:52:80:e0:
42:58:83:ff:ca:7d:05:68:de:04:a2:d0:6c:a2:17:87:4c:1c:
9f:b7:ee:0f:2b:48:bf:a1:e4:b4:23:ba:e9:37:a1:19:ef:76:
8a:30:56:3b:de:97:5f:af:8e:fa:00:66:0c:75:4f:ce:c2:b6:
74:f0:69:95:d9:1f:c7:92:a0:18:68:a1:5b:58:ed:1c:17:05:
d5:73:d8:cf:f5:94:7a:ef:4e:51:1d:fe:a8:9a:52:fb:5b:0b:
0d:3f:f5:7e:b3:89:54:29:45:4e:86:c9:94:63:09:1c:5e:1a:
89:bf:b6:e8:1c:fa:9c:c6:62:09:8b:df:5c:d5:62:2f:40:15:
4d:c8:db:11:d3:4a:80:2e:70:67:37:55:24:ff:aa:b3:29:b7:
12:3a:c6:14:93:76:e0:6f:d0:23:82:8a:58:3e:11:1b:57:0f:
bf:f5:5e:a8:d8:10:62:65:bb:75:49:77:07:cc:12:67:83:21:
e5:dc:40:2c:cb:2f:0a:d6:79:46:f3:8f:f1:d0:74:e6:d9:be:
89:00:91:99:5d:ae:ba:37:db:8f:4d:26:cf:a6:f4:dd:9f:52:
4a:2c:85:12:36:e4:2b:49:41:90:2b:b9:6e:3d:d4:b0:7c:aa:
b5:b5:d1:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:32:16 2025 by rpki-client on console-fra.rpki-client.org