Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
File: oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json)
Hash identifier: /5GG+FnOAUX56TuIyeUTibycPzdIaUm8B+ykRZpibW4=
Subject key identifier: 5D:A5:12:53:44:77:9B:18:98:30:CC:C4:D7:24:0D:F0:71:01:88:BD
Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
Certificate issuer: /CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Certificate serial: 0194BA84536D9B11375CEC08E16F6CE08B21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
Manifest number: 0173
Signing time: Fri 31 Jan 2025 04:00:21 +0000
Manifest this update: Fri 31 Jan 2025 04:00:21 +0000
Manifest next update: Sat 01 Feb 2025 04:00:21 +0000
Files and hashes: 1: 0BmC-81HN_hGVStiVWyBsG7yPOQ.roa (hash: 1DBUkLbwQ3sH8OPXtfdrx6wa0RdQ3lqLVqMY8QCHCK8=)
2: 58QzCphRddJsBqi71H5oisOTtGM.roa (hash: K7oZA9oPzuB3kuDmCdohN1gPlNbeKKgYedD/MB4pxbM=)
3: K5VqopWIERNLlg6XYIHxbSMQwf8.roa (hash: 6CqhTE0o4WqNXO4cXlNrVv+QBipio9ZfLg1pbcvRhvU=)
4: Qt9hOGMkdfDH8ID_bHwfLmJlE60.roa (hash: ARZiY2rT8rE43lKmT9EIHjzaS4HpYkA+YcbbFMZTS4E=)
5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: sy/olYCQC0D6raQCSgJyu2AhLObcifHEnZ4mPu9zRA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:53:6d:9b:11:37:5c:ec:08:e1:6f:6c:e0:8b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Validity
Not Before: Jan 31 04:00:21 2025 GMT
Not After : Feb 1 04:00:21 2025 GMT
Subject: CN=5da5125344779b189830ccc4d7240df0710188bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:38:5c:0b:4e:c1:70:58:98:6d:14:94:51:80:
17:02:5a:3c:df:ae:b9:38:12:b6:7a:c2:e1:b8:3d:
ec:d8:84:58:3d:ee:b8:70:be:f2:0b:b1:18:be:69:
d2:8a:37:dd:80:be:72:9e:11:08:54:a7:c0:40:35:
65:05:ce:8c:b0:9d:92:a4:9c:a0:42:33:7c:d2:57:
f1:3c:94:fe:4f:c0:a0:00:a9:76:ea:6a:7a:9b:14:
e6:c5:4e:d4:23:24:99:1f:63:2d:33:f7:ee:f5:72:
8e:85:b3:3d:37:f6:f3:3e:80:7c:80:2b:9e:c6:1c:
b6:59:21:c1:06:aa:c2:42:fd:02:ab:dc:a4:e6:06:
26:29:1f:cb:57:e1:d9:13:7d:e5:32:0a:81:fa:42:
c6:90:da:87:aa:d7:e3:f4:b2:e3:8d:48:37:40:ac:
6e:c5:d5:ee:5f:8a:30:34:34:4a:4d:44:e5:c0:dc:
67:81:3d:da:29:54:53:04:6b:71:bf:fe:29:4c:8e:
38:25:2f:6d:a7:0a:0f:9a:0d:ab:d0:43:bd:78:1c:
79:74:dc:f3:13:d7:9a:45:ea:a2:1a:1e:cf:44:c8:
98:a6:f6:46:35:82:ea:f8:c7:7c:3d:a7:68:6e:2e:
ae:7d:d3:b5:59:cc:09:84:e2:a0:cb:51:01:ca:2e:
da:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A5:12:53:44:77:9B:18:98:30:CC:C4:D7:24:0D:F0:71:01:88:BD
X509v3 Authority Key Identifier:
keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:bf:65:d7:71:79:4d:31:f9:1a:53:38:95:9f:c8:f2:93:b0:
b5:3e:40:84:44:aa:79:70:7d:59:cc:d8:39:59:1c:a2:c7:45:
2f:77:0c:5c:f5:0b:a6:e4:8a:98:31:49:3f:70:50:96:83:ad:
8a:2b:5f:b5:b8:c5:ca:ca:8b:06:c2:89:3b:79:5e:1c:9a:c2:
7e:30:d7:8a:ea:da:01:6c:5b:51:23:d8:a9:01:34:f3:39:f6:
31:ae:fc:0b:1a:64:d7:74:5e:66:87:26:41:8c:50:3e:da:06:
db:04:07:d3:27:f0:9a:12:dd:e3:05:25:e4:25:cc:5e:1d:44:
68:f6:b8:1c:83:96:5d:86:af:34:b0:d8:23:f0:85:59:af:ef:
00:40:63:d9:15:13:02:36:5a:ed:2d:25:8f:22:0e:0a:14:ae:
8e:4f:8c:f4:25:6d:d9:3e:0b:78:e2:f2:73:18:1e:b8:bd:24:
51:dd:5e:fb:19:3c:08:bc:96:f2:18:2e:5a:4c:dc:eb:cd:e6:
a9:8f:2a:97:fa:12:1f:1d:66:e5:05:be:e9:1e:7c:3e:78:3a:
26:1e:67:48:f1:16:1d:62:a0:8b:d2:4b:80:28:62:0b:6a:01:
51:bc:05:ff:47:14:65:c6:24:d6:46:91:23:37:4e:9d:59:75:
4d:43:3c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:07 2025 by rpki-client on console-fra.rpki-client.org