Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json)
Hash identifier: sCj3Siy9SUAm/0nJMC0fn24PISI4Q2P+fvahrDjZdXc=
Subject key identifier: CD:BB:93:4F:D8:CB:D3:2E:A8:09:73:B8:45:B0:70:C9:18:14:B5:17
Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Certificate serial: 0194C350EC13C5F5D83CE2F2833A5AA2787D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
Manifest number: 142D
Signing time: Sat 01 Feb 2025 21:00:47 +0000
Manifest this update: Sat 01 Feb 2025 21:00:47 +0000
Manifest next update: Sun 02 Feb 2025 21:00:47 +0000
Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=)
2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: +5ED4ArzWGkMxPMWevG/fLxqfOKjmEZ5cC1+IvwDfpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:ec:13:c5:f5:d8:3c:e2:f2:83:3a:5a:a2:78:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Validity
Not Before: Feb 1 21:00:47 2025 GMT
Not After : Feb 2 21:00:47 2025 GMT
Subject: CN=cdbb934fd8cbd32ea80973b845b070c91814b517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a1:af:af:bc:3c:07:31:ef:c8:fa:a0:de:78:
35:8a:22:ed:f1:e9:3e:ab:65:89:68:fd:0f:70:31:
d7:29:f3:cd:71:1f:e7:27:75:cf:39:59:08:92:2f:
41:c1:c2:14:2a:e4:ac:72:96:c5:e2:58:74:20:25:
d9:cc:e3:64:95:52:bb:24:5d:70:b0:ee:70:bd:6a:
f8:88:9b:62:27:fa:b4:49:6a:77:61:9b:86:f8:cf:
17:b3:76:8a:67:a7:9b:72:21:c9:31:04:48:e9:a5:
12:75:82:53:53:26:b6:b4:9f:f7:21:bb:b5:96:8d:
1d:72:4c:20:39:e0:b4:f0:b7:c2:d9:4b:8c:98:37:
a6:d5:5c:f3:88:b7:80:01:53:11:8f:af:a8:e6:c3:
bb:f6:5e:a1:2e:34:b9:ec:e8:e4:55:84:3c:3c:7c:
a7:35:83:66:fb:4f:cf:3d:56:93:31:df:77:ac:51:
fb:7a:eb:4a:d3:b4:97:7c:24:79:7d:ce:f6:23:c2:
3d:53:ff:a0:a4:17:cb:89:83:16:46:1c:56:51:a5:
93:cc:8f:a5:2d:5b:a9:e5:f8:9b:7e:42:7a:8e:eb:
52:fa:c5:e9:de:53:7d:ef:a5:4d:7c:e7:39:b2:b4:
f3:63:3f:1d:2d:37:19:4e:c0:99:61:79:76:85:6b:
59:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:BB:93:4F:D8:CB:D3:2E:A8:09:73:B8:45:B0:70:C9:18:14:B5:17
X509v3 Authority Key Identifier:
keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:25:0b:2d:7d:a5:05:fb:41:37:bc:52:3b:fb:d3:eb:16:f8:
ab:81:d9:7e:96:fb:0d:b3:99:01:00:f7:7e:dd:7d:8b:f8:ef:
bb:5e:2e:f2:f7:d1:4b:ce:f6:19:09:64:c6:66:b5:5f:03:07:
50:66:89:37:38:6a:c0:8d:ae:d6:13:69:bf:d3:d7:44:7a:7e:
8c:c6:95:9c:dc:a6:b2:e8:64:d4:72:79:d4:f6:42:fa:b4:98:
a4:f8:6f:e3:d6:52:14:19:ff:b0:88:d4:7c:8f:17:0f:fd:d6:
5b:38:d8:03:99:c1:97:90:9a:f6:cb:ec:9c:04:9d:22:0c:76:
53:f6:a5:0b:13:67:5f:0d:e3:6c:cf:f8:c7:88:c3:a1:35:55:
e8:ab:21:7c:54:af:74:7c:a7:e6:ba:44:fa:85:a5:7f:0b:11:
5b:25:2f:e5:fb:91:44:5f:97:80:84:52:01:44:3f:24:5d:48:
10:5f:9e:0a:15:a0:d8:3b:6d:fd:e5:2e:ca:39:bc:86:64:72:
5e:6c:7f:82:39:33:48:7f:b4:41:da:67:35:2e:c1:7c:0b:19:
0a:bc:ab:2d:ff:7c:5f:e2:9f:63:30:8a:b6:9c:6c:a3:00:48:
3d:85:48:c1:bb:10:41:7c:93:3c:6e:d4:86:fe:33:60:f2:6f:
1a:f4:5e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:53 2025 by rpki-client