Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json)
Hash identifier: SomTe7kFhx9Bf40FoJAq/O3Smo0u5H/VfcRRzIsgcvI=
Subject key identifier: F4:89:60:1A:C0:B7:63:47:88:6D:C0:F4:AB:E9:D3:62:9A:A1:C6:A7
Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Certificate serial: 0194C4D0EC5FF55CF4CD12EF19EBB9F3CB0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
Manifest number: 0640
Signing time: Sun 02 Feb 2025 04:00:13 +0000
Manifest this update: Sun 02 Feb 2025 04:00:13 +0000
Manifest next update: Mon 03 Feb 2025 04:00:13 +0000
Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: I6ugEMve3EaJNHc4nal1AWV3xktXUwJFr/sIzaC7zSQ=)
2: _QTwS8nAMSFeKK0ZzzPsIxYgPqo.roa (hash: Q/O46iBV3y1aR3ABGTzdA2RTNwov3wLVP1w6lO4+h/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d0:ec:5f:f5:5c:f4:cd:12:ef:19:eb:b9:f3:cb:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6
Validity
Not Before: Feb 2 04:00:13 2025 GMT
Not After : Feb 3 04:00:13 2025 GMT
Subject: CN=f489601ac0b76347886dc0f4abe9d3629aa1c6a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:23:24:31:00:3a:2d:11:cb:39:19:6c:15:ea:
5b:9d:22:de:de:b3:8b:f4:92:e2:b5:a7:04:dd:db:
ce:aa:4c:68:75:c2:ff:d2:b6:a7:ca:c4:34:2a:ea:
01:8e:a0:45:bf:1e:ec:68:01:48:31:16:72:63:86:
ba:9b:56:51:fa:be:e0:3e:e5:af:b6:e4:52:3d:5c:
f2:03:1c:c0:12:3e:75:75:8c:14:02:97:7b:26:c7:
a0:82:7b:33:93:7d:4a:9f:88:c9:41:86:51:a5:b4:
e2:be:99:54:e7:f1:50:dd:de:8a:ca:e1:17:51:43:
3d:2f:95:ed:c9:27:c8:54:ba:e3:2d:f1:38:f6:b3:
1d:e1:e2:07:3f:33:00:c7:b5:de:45:e0:d6:ce:df:
4e:e1:d0:40:2f:a7:58:9e:8d:3c:f0:a5:ad:cf:55:
1d:06:3e:de:62:ed:51:7b:bc:d1:9a:67:6a:47:6d:
24:be:1d:84:89:ac:d4:a1:40:2e:9a:3d:ac:bc:4d:
e7:2c:78:6e:d9:bc:e1:a4:32:48:e1:d4:ae:e1:37:
99:62:d0:37:c2:f5:d5:04:32:81:b3:54:8b:ed:04:
02:cf:f4:d2:b9:bd:2b:f7:7a:be:65:c0:b1:21:6b:
e0:09:08:d9:14:96:68:dc:c7:0a:90:da:f3:1b:d5:
46:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:89:60:1A:C0:B7:63:47:88:6D:C0:F4:AB:E9:D3:62:9A:A1:C6:A7
X509v3 Authority Key Identifier:
keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:dc:7b:c8:a4:9b:5c:bc:93:85:bf:98:67:81:9b:f1:d5:ce:
c0:fb:31:ca:b8:08:cc:48:b3:b0:43:b8:bf:18:e8:a6:8e:05:
34:a2:2d:18:76:48:8a:17:fc:c1:1c:50:ca:00:e9:86:33:09:
de:f3:23:f1:d1:11:79:10:06:6a:69:90:40:75:06:6d:4c:2a:
7b:f5:0e:16:f5:fb:a0:a6:07:f1:01:bb:05:30:7f:b2:78:d0:
c7:62:c5:ed:9e:ad:9f:0f:09:1d:a2:40:a5:dc:1f:52:c5:cb:
08:a1:ee:fa:c5:13:70:5c:a7:39:e7:e6:10:cc:33:da:a6:a8:
f2:95:c8:d0:ce:59:b3:16:20:0f:ea:40:f6:0f:60:09:49:78:
22:4d:f4:30:a7:81:c7:5b:c2:c8:5a:7e:7c:c3:22:98:52:a3:
7c:f2:ca:f6:87:89:ae:c8:e3:65:b6:24:c5:67:76:e3:fd:85:
41:2c:c9:d0:a8:04:e3:34:29:ab:33:9b:5f:5f:e5:2c:78:c6:
d6:3d:05:68:9f:d7:88:02:3c:e7:31:6e:47:53:87:26:3a:ad:
85:11:92:dc:47:7a:16:04:0e:71:61:c4:24:54:90:64:95:52:
3f:1e:18:ae:83:50:6f:d8:c4:61:9e:4c:5c:6c:8c:17:31:1b:
87:b7:8a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:55:09 2025 by rpki-client