Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
File: okz5AynEe6NDpmzWXTiDOjV7WVU.mft (raw, json)
Hash identifier: K5VpkEb/k4JMjJdjLffAyZVlQ/KXKq6uk3NwnBInGPQ=
Subject key identifier: 99:22:BA:4C:E7:C7:C2:D8:D9:35:B8:4F:7B:DF:2D:37:AE:A3:09:35
Authority key identifier: A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
Certificate issuer: /CN=a24cf90329c47ba343a66cd65d38833a357b5955
Certificate serial: 0194BB97002E6133A9692820F76CE7C39A29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
Manifest number: 142D
Signing time: Fri 31 Jan 2025 09:00:22 +0000
Manifest this update: Fri 31 Jan 2025 09:00:22 +0000
Manifest next update: Sat 01 Feb 2025 09:00:22 +0000
Files and hashes: 1: L_hJzZcxwJZunjzxLQL-YVG1jT0.roa (hash: /H7f2gZdXTvhI8V5NwcetnxeXbpLznW3EXechuUQFz0=)
2: RwOt6V2v9wJzu17DXTZnu1cti-k.roa (hash: pKpNRVrX80xh9DAepdCWEqDAUnRd1u2Llc+QIfnWV/Q=)
3: okz5AynEe6NDpmzWXTiDOjV7WVU.crl (hash: 87v1xsFJ8LH1uIW162tZ0RoO98CkCxtyx5Qxz5t+WW4=)
4: tDQAlIS1RkP7Hll5jY6GwoLQRHA.roa (hash: ZBp1qrqjsUhmRr1QqJR4LsXUqiXorK/xdRoQ9NS8bh8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:00:2e:61:33:a9:69:28:20:f7:6c:e7:c3:9a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24cf90329c47ba343a66cd65d38833a357b5955
Validity
Not Before: Jan 31 09:00:22 2025 GMT
Not After : Feb 1 09:00:22 2025 GMT
Subject: CN=9922ba4ce7c7c2d8d935b84f7bdf2d37aea30935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e7:90:74:7c:4b:a9:94:1b:3e:f8:ca:6f:ff:
77:b4:63:c4:27:21:73:1a:49:c3:0f:a8:35:ea:d3:
5b:87:a6:6e:e3:91:6e:b4:38:76:6e:a9:8f:61:01:
1e:b8:f1:cb:79:e1:fb:13:00:0f:ba:2d:0a:71:f9:
83:fa:29:9a:1b:23:6c:bf:27:e9:c0:d3:3e:39:54:
7a:ee:dc:b1:e9:90:27:61:27:2b:1f:b2:3a:0e:ed:
32:de:0f:9f:be:5d:f2:6e:73:39:95:77:7e:48:7d:
96:e4:22:63:c5:63:8d:ea:51:e7:b2:d8:3d:51:71:
be:ba:86:be:79:87:4d:f8:d9:3e:99:46:44:5a:18:
3d:50:9a:2d:59:d3:ec:9c:e9:41:07:45:c9:84:8c:
25:1b:8e:2f:22:87:dc:4f:e5:9b:72:ef:34:35:19:
bf:94:f0:f2:37:d1:c8:88:d4:cf:6a:58:5c:a5:08:
a9:b7:04:b0:c0:3f:de:e6:1c:0c:ff:5c:08:42:16:
66:4a:68:66:0e:18:59:01:94:37:56:13:99:55:11:
be:83:57:b8:a3:05:2c:1c:b9:44:3a:1c:bb:b7:ed:
ab:99:64:7a:0b:f9:06:f6:83:8a:ad:22:a4:35:88:
8a:74:02:3e:6c:80:b9:63:5e:1c:76:ba:d8:ee:8b:
d4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:22:BA:4C:E7:C7:C2:D8:D9:35:B8:4F:7B:DF:2D:37:AE:A3:09:35
X509v3 Authority Key Identifier:
keyid:A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:66:76:ed:47:e8:06:4f:4f:79:39:f3:35:95:a9:ef:76:1d:
af:e0:6d:08:bd:39:c8:be:d2:54:d2:1d:e2:5f:f6:f0:03:df:
9a:28:c8:d4:dd:c4:1e:43:05:6b:95:08:b1:c4:83:4a:6b:f8:
c3:54:12:28:40:1a:64:ea:cb:1a:11:f7:df:de:8b:dd:f4:19:
84:c7:04:94:91:17:3f:18:15:f1:a1:7f:ff:1d:06:19:18:94:
57:2b:07:41:1e:a8:43:32:2d:f3:7d:a8:c1:36:89:c2:6f:76:
24:d5:93:40:61:09:76:5e:a5:f1:96:fc:18:3c:cd:27:80:4d:
36:a4:e5:5a:a6:50:a6:1d:1e:a1:86:bd:16:8f:47:75:8f:f1:
29:44:38:93:c3:a5:48:bc:50:ca:06:16:d2:35:61:09:ec:9d:
79:6c:c9:8c:0a:87:35:43:4a:0e:80:62:76:21:b7:99:a4:98:
9b:d5:e6:b7:cd:e1:05:4b:83:63:9f:c5:17:5a:29:d0:43:9e:
85:7d:17:42:67:72:10:a7:ea:77:a1:cb:1d:98:e2:cf:9c:7b:
1d:cb:38:e8:5c:6b:96:2e:2e:7a:00:1d:ea:d8:13:20:59:4e:
0e:b0:5a:1f:e2:b8:66:51:ea:03:7d:ef:13:f2:09:16:6d:cc:
90:43:5a:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:34 2025 by rpki-client on console-fra.rpki-client.org