Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
File: OitQeZsxwLFFEkZQ1xG844PWcDk.mft (raw, json)
Hash identifier: D2ys9IEfHAn2t8TFgNIp/JXYGkFmqE86UDpaLPoqqeE=
Subject key identifier: 86:47:0E:34:52:88:6D:3E:13:3F:1B:23:29:7F:09:EB:6F:42:31:ED
Authority key identifier: 3A:2B:50:79:9B:31:C0:B1:45:12:46:50:D7:11:BC:E3:83:D6:70:39
Certificate issuer: /CN=3a2b50799b31c0b145124650d711bce383d67039
Certificate serial: 0194BB295BC25ACBD9C938995508CE088497
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
Manifest number: 087B
Signing time: Fri 31 Jan 2025 07:00:37 +0000
Manifest this update: Fri 31 Jan 2025 07:00:37 +0000
Manifest next update: Sat 01 Feb 2025 07:00:37 +0000
Files and hashes: 1: OitQeZsxwLFFEkZQ1xG844PWcDk.crl (hash: G0X0jKjspOj1dDgb88QC0BWeSF2oRzdKqplMYxJ2CVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:5b:c2:5a:cb:d9:c9:38:99:55:08:ce:08:84:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a2b50799b31c0b145124650d711bce383d67039
Validity
Not Before: Jan 31 07:00:37 2025 GMT
Not After : Feb 1 07:00:37 2025 GMT
Subject: CN=86470e3452886d3e133f1b23297f09eb6f4231ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:15:18:3c:b7:66:fb:8f:d6:0a:93:af:94:53:
af:b9:fe:f1:53:3b:de:1d:08:94:98:43:13:c7:31:
92:22:c9:aa:4a:8d:3a:05:27:e0:15:d6:16:9c:de:
4b:41:be:55:e0:d5:1f:0e:2a:c6:63:ce:68:aa:82:
ec:92:c6:39:3d:9a:79:ed:03:35:cd:dc:e1:45:8f:
92:f1:06:c7:01:c9:26:e3:aa:8d:00:52:ca:a8:b2:
05:29:48:7c:00:8e:74:f5:d6:71:f9:e4:8b:bd:3d:
88:20:49:16:70:2a:75:2b:8b:d2:a3:63:dc:1f:61:
62:80:09:fb:c0:a9:d6:db:f9:22:ec:69:9c:bb:f4:
d2:18:40:26:34:24:03:af:58:8f:0e:96:30:48:e9:
00:f1:08:b5:90:d5:a2:12:fa:21:39:10:fa:b4:26:
49:03:73:da:24:f3:5c:68:85:0a:f1:55:82:44:da:
f0:91:58:de:b6:d7:0d:d9:13:40:a5:64:94:1f:2d:
69:08:83:33:44:f6:ee:c3:86:4c:47:ee:9b:36:0e:
3f:0b:8f:6f:55:6a:99:d5:77:50:85:34:66:60:c1:
da:eb:d5:7e:41:f0:d4:2e:2d:3e:0f:5c:46:6d:46:
9b:05:c0:9c:74:8a:73:d1:28:44:f6:44:bc:05:88:
8a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:47:0E:34:52:88:6D:3E:13:3F:1B:23:29:7F:09:EB:6F:42:31:ED
X509v3 Authority Key Identifier:
keyid:3A:2B:50:79:9B:31:C0:B1:45:12:46:50:D7:11:BC:E3:83:D6:70:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OitQeZsxwLFFEkZQ1xG844PWcDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0152ab-d346-4e11-b0c3-332730fb1c8a/1/OitQeZsxwLFFEkZQ1xG844PWcDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:e6:ea:61:8d:4b:50:12:86:d2:71:1f:1c:1a:70:b5:c3:d6:
b8:22:2d:dc:b0:c0:7e:2b:90:94:41:ba:6d:07:5f:7b:61:17:
db:71:d8:c8:25:bc:e3:f3:95:de:e0:6d:32:50:b8:fc:3e:34:
14:bc:5a:a3:79:34:42:43:64:ad:58:14:58:68:7b:28:94:4f:
6b:b8:8a:81:47:98:4c:4d:22:49:27:59:de:82:d0:5e:5f:23:
ed:9c:1f:76:44:aa:13:db:4a:37:ab:cd:71:bc:fe:d2:1e:95:
b7:8a:cc:fe:19:db:85:27:e1:19:03:58:35:ef:d5:fd:e7:18:
98:02:f4:90:87:8a:32:f2:e5:ce:f7:be:94:19:5e:4f:b3:26:
f5:f1:68:44:fa:5d:c1:20:1f:fd:f6:7f:3b:a9:d4:f6:e8:fe:
a8:20:b9:87:88:d4:5f:8a:d9:1e:2e:33:e4:c7:6e:77:91:20:
e7:c7:82:d0:6b:2c:7a:d9:28:6b:17:7e:ad:2c:c1:e6:d9:71:
56:a0:40:54:e7:aa:ae:d7:98:de:cc:83:25:c2:f2:7f:e0:a1:
35:da:d1:17:27:02:27:36:0e:ee:f3:de:40:8f:54:55:76:56:
7e:29:53:f0:5d:cf:d9:3a:b0:3f:de:15:31:80:94:80:7a:70:
aa:13:3b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:32:56 2025 by rpki-client on console-fra.rpki-client.org