Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
File: r2Okes26jsHNhdTXnzazW2mOX4k.mft (raw, json)
Hash identifier: LvU/KSKSfDU9Fhy0q2kJGhB0Bk3RUrSt5zcZ7XYT6yE=
Subject key identifier: DB:49:93:AB:E2:91:8B:A7:97:A4:D1:3E:E2:6D:6B:11:88:77:D2:33
Authority key identifier: AF:63:A4:7A:CD:BA:8E:C1:CD:85:D4:D7:9F:36:B3:5B:69:8E:5F:89
Certificate issuer: /CN=af63a47acdba8ec1cd85d4d79f36b35b698e5f89
Certificate serial: 019579EB8CFE72095D477A14AAE665CA2DD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
Manifest number: 148D
Signing time: Sun 09 Mar 2025 08:00:34 +0000
Manifest this update: Sun 09 Mar 2025 08:00:34 +0000
Manifest next update: Mon 10 Mar 2025 08:00:34 +0000
Files and hashes: 1: YXk4VQ9w2ydeFfWUpTPAL38DI14.roa (hash: 63k2DxSPaDP/x2Jl3oeCNKnb4PXDg6/RYTgk7tLrZPw=)
2: r2Okes26jsHNhdTXnzazW2mOX4k.crl (hash: rPcZFsoTJSqBQ48KBdZOpwPJZ0Y6eqjbhmYwlQEU6z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:79:eb:8c:fe:72:09:5d:47:7a:14:aa:e6:65:ca:2d:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af63a47acdba8ec1cd85d4d79f36b35b698e5f89
Validity
Not Before: Mar 9 08:00:34 2025 GMT
Not After : Mar 10 08:00:34 2025 GMT
Subject: CN=db4993abe2918ba797a4d13ee26d6b118877d233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:85:58:ba:c5:81:e0:de:ae:92:64:e9:86:bb:
61:03:81:e0:8a:9a:d2:37:1a:66:66:21:77:68:4d:
19:c2:7e:2c:cb:2a:5b:40:d7:0a:42:2e:58:ff:85:
cc:9e:07:93:fc:09:23:3b:d3:06:7e:e4:4b:16:9a:
22:53:cc:58:db:96:5b:41:cc:dc:fc:2e:84:a1:e7:
04:14:29:3c:a8:89:f4:f9:51:87:06:74:f0:b6:31:
2d:08:bc:9e:08:b8:33:f8:60:50:4b:70:3f:d5:c2:
2e:b9:ec:0a:33:2d:56:b7:cf:e8:1c:6f:e4:45:f5:
d0:0a:4f:c2:59:18:ec:e2:ea:0b:50:8c:8e:44:51:
a3:05:c4:49:97:17:8d:32:3f:83:9f:59:c3:ae:95:
96:74:47:b0:b1:68:44:46:af:33:fc:32:ac:ff:40:
f3:14:79:b7:77:ce:ed:18:9b:06:4f:78:bd:86:4b:
b1:03:ad:10:f9:70:ad:b6:0a:86:c3:27:79:d2:f6:
aa:0d:3a:4f:9b:c3:4c:ae:0e:5d:68:94:5d:ee:1f:
ac:46:bc:1a:79:40:11:eb:85:ea:f9:41:5f:81:e0:
69:c8:89:72:59:dd:fd:dc:3b:11:b8:63:f4:b1:17:
4d:0c:77:b6:8e:b3:2c:d8:8b:3d:de:96:ff:87:17:
f4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:49:93:AB:E2:91:8B:A7:97:A4:D1:3E:E2:6D:6B:11:88:77:D2:33
X509v3 Authority Key Identifier:
keyid:AF:63:A4:7A:CD:BA:8E:C1:CD:85:D4:D7:9F:36:B3:5B:69:8E:5F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:c8:ca:7c:9c:94:9b:14:0e:57:b5:f7:e9:ec:4a:68:e1:14:
80:b9:22:00:2a:9d:d9:24:4f:ff:8e:c7:bd:80:be:c0:4a:aa:
ea:17:69:a8:9c:a2:0a:90:dd:8e:23:10:d8:2c:cc:c7:62:b8:
68:d5:24:7f:6d:3e:37:5b:67:8d:45:f9:6f:f3:f8:f6:b4:dd:
fc:7c:72:2e:7e:e3:3a:87:cf:9c:d0:55:8d:5f:63:32:00:83:
9e:61:86:77:8f:27:70:bc:51:80:47:5b:bc:2a:b5:dc:c5:3d:
4b:59:a8:3b:23:5a:4f:53:e6:36:11:55:ae:6c:cc:f4:6f:c6:
48:7b:f4:ea:78:d6:bc:af:39:84:14:f0:4b:04:81:a2:4f:59:
5d:60:3e:9c:de:e9:bb:d5:28:29:86:55:49:30:60:5e:a5:1e:
6a:c3:f4:25:78:ab:a0:a6:97:60:56:c2:e0:cf:d8:79:97:33:
62:d9:c7:08:21:36:a0:c4:f6:7a:d6:10:43:ce:8a:0d:8b:c2:
5f:9d:a0:d3:f1:99:62:76:a4:be:ed:b9:33:cd:10:ed:d7:52:
23:c3:93:51:b5:ff:6c:c5:d4:43:88:26:bd:8a:9a:ad:43:f0:
06:53:61:cf:75:08:16:1b:25:42:a6:b7:4d:3a:e8:38:23:ea:
29:4b:91:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 11:49:08 2025 by rpki-client