Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
File: oQIHcvYouPtR80dRNrd_60smmL4.mft (raw, json)
Hash identifier: KAJSpPGZSUni4UwnjEbIBjsNuLVPS6cEe707MWmFLKs=
Subject key identifier: B8:8F:2F:B6:61:30:4B:16:4D:EB:84:98:1E:D8:0F:02:D3:C7:A0:D1
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 019512479268046236F8410D94F05061DA99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
Manifest number: 109F
Signing time: Mon 17 Feb 2025 05:00:35 +0000
Manifest this update: Mon 17 Feb 2025 05:00:35 +0000
Manifest next update: Tue 18 Feb 2025 05:00:35 +0000
Files and hashes: 1: Xn7HlAmazqZObEY4Svfv4ZbMChM.roa (hash: 900LVbegyuqsxm1Su/VFGub5Wi1DlW68cWbr8g1USwo=)
2: oQIHcvYouPtR80dRNrd_60smmL4.crl (hash: vJxoSIM4J0cLJ+FvVHxa6qJshS+Q+FqL6dKUqLIBGnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:92:68:04:62:36:f8:41:0d:94:f0:50:61:da:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Feb 17 05:00:35 2025 GMT
Not After : Feb 18 05:00:35 2025 GMT
Subject: CN=b88f2fb661304b164deb84981ed80f02d3c7a0d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bb:bf:cb:3d:d9:6d:0b:ae:91:1e:86:1b:53:
e7:63:71:13:40:d9:bc:ca:6e:0c:c2:8b:1b:c6:39:
b4:b8:8f:1d:01:60:d0:2a:89:d5:a7:91:63:b2:10:
78:32:28:71:d3:4e:a4:a8:e6:e1:8b:a2:35:fb:58:
10:8e:b7:f5:ef:e0:09:85:fa:4b:f0:2b:44:50:fd:
ca:6b:4a:59:5c:06:c4:ba:ca:8e:d9:81:d9:da:9e:
a8:51:4f:09:c1:e3:ca:77:62:15:8e:3f:74:52:5a:
61:ab:78:83:49:3a:13:d5:9c:0d:3b:0d:74:ac:9e:
4a:18:9b:0f:4c:bc:52:34:b2:05:e1:93:74:90:51:
cc:01:c2:b6:35:42:0a:63:aa:26:49:44:79:cb:3e:
6a:97:f7:8a:05:4e:33:c5:a5:a4:e8:4a:1f:9c:aa:
15:69:ba:f0:f2:37:f1:ac:91:d0:f2:96:88:44:15:
f5:80:72:1c:fb:3c:0a:89:d3:7c:18:bb:2c:a2:73:
ff:1a:e3:1d:96:4c:3b:6f:1d:87:b8:7f:67:11:fe:
35:55:74:f1:c8:d7:94:67:84:f6:8c:43:8e:38:ea:
0f:0f:f6:bb:ce:2e:04:42:0a:d4:5f:1d:71:f4:aa:
ba:24:04:1d:6d:2d:bc:db:20:9c:66:e0:b7:c9:97:
ce:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8F:2F:B6:61:30:4B:16:4D:EB:84:98:1E:D8:0F:02:D3:C7:A0:D1
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:9a:5f:f7:21:14:60:0d:bd:88:54:c2:bb:bc:c2:7b:9c:7c:
96:4f:1e:81:12:8e:58:ea:56:a1:d4:b7:cf:24:fe:00:49:8f:
06:6c:28:02:20:1b:e2:fb:56:00:6d:cb:c3:0d:23:ee:1f:4e:
18:1a:6a:59:b5:87:08:13:af:a3:51:d9:00:fc:c6:7f:de:aa:
a5:3f:f4:b7:7a:9c:83:29:d5:bd:d8:01:00:29:68:6b:76:c2:
8a:13:0f:43:9d:1e:1a:5c:99:ac:1c:53:be:75:66:d5:4f:6c:
94:80:c3:ee:65:e2:1b:c9:1c:4a:28:4e:26:b7:c6:10:91:11:
5a:2e:d6:2b:b8:c0:e7:11:7a:73:4b:d4:e0:2e:2b:d2:dc:f9:
05:1b:c7:98:bb:48:fb:3c:06:8c:67:41:ff:24:78:4e:b0:1b:
04:18:36:4e:2c:a6:89:c0:fa:97:04:04:d3:a8:44:26:b0:ea:
1e:04:83:70:8d:75:cc:5a:96:66:a3:e8:83:3e:2e:77:11:7b:
29:a1:30:ef:21:6f:9c:e8:aa:b6:43:1b:2e:31:2b:ac:70:f1:
1d:9e:3f:a2:46:ce:b0:37:5d:71:c2:dd:04:df:59:53:b3:8e:
8d:ee:47:81:a1:d9:88:78:7b:83:a5:25:4e:e8:b0:ca:36:83:
79:ae:f6:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:47 2025 by rpki-client