Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
File: AOC06vnBB5HzU7qYfeI2ChOEF70.mft (raw, json)
Hash identifier: cBA14u4MrQmyIPG7Va0j8mn62Ee54wLVoREYAzqfoDk=
Subject key identifier: 9C:A1:E4:18:3E:38:64:91:CA:93:C6:C9:2B:8D:82:2B:C9:81:A8:01
Authority key identifier: 00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
Certificate issuer: /CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Certificate serial: 0194BAF2653CC5796172119B79F80F46494B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
Manifest number: 0653
Signing time: Fri 31 Jan 2025 06:00:35 +0000
Manifest this update: Fri 31 Jan 2025 06:00:35 +0000
Manifest next update: Sat 01 Feb 2025 06:00:35 +0000
Files and hashes: 1: 7Qz5q4z6Tluf-_C3llmKbm-Y_6k.roa (hash: Btz39reQ2rKKUs2JCEZIO4ZVKwDZCOjT3ZoGf4qNKOM=)
2: AOC06vnBB5HzU7qYfeI2ChOEF70.crl (hash: ykuTrdGXhDbudAdagtMdq1UvglcBF0MFYu2btLd8vc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:65:3c:c5:79:61:72:11:9b:79:f8:0f:46:49:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Validity
Not Before: Jan 31 06:00:35 2025 GMT
Not After : Feb 1 06:00:35 2025 GMT
Subject: CN=9ca1e4183e386491ca93c6c92b8d822bc981a801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ad:a7:92:9c:53:5e:e2:37:d0:f0:7f:17:f3:
21:82:12:39:e5:5d:55:74:94:3b:f6:43:76:50:3c:
55:85:ec:fc:6a:f3:8f:0a:40:ee:ce:e2:2b:f3:b0:
78:fc:ed:60:14:7f:8e:6b:ae:3e:48:d8:e4:68:2d:
82:ae:f6:76:69:b6:bc:58:59:c7:de:71:02:6d:a6:
2c:90:6f:af:75:2c:2b:9e:1b:45:d9:01:3c:9c:ab:
2c:70:c7:3b:74:fe:5f:2e:6d:9e:5f:f3:8c:32:50:
76:eb:fa:56:f3:ce:07:d5:c5:33:a3:da:04:43:4b:
7e:fa:6b:2b:67:f3:da:25:4a:bd:8c:75:ff:08:bc:
b6:ad:b9:ad:60:19:fc:51:30:6c:c7:40:f2:25:62:
32:4f:52:af:9d:d6:0c:4a:d6:de:ad:44:33:21:e1:
18:12:92:1e:14:29:06:26:01:bb:28:97:4b:f3:ca:
85:df:da:16:d1:02:65:14:4e:3b:73:1c:6a:31:cd:
86:cc:ab:8c:96:6a:4e:9c:b0:d1:f5:e5:04:d4:0b:
de:43:bb:2f:13:df:9d:ac:71:73:20:41:27:86:b0:
bc:f4:7f:7d:0b:43:af:35:1a:97:1a:a3:bd:0b:c9:
fc:8b:a6:d4:32:a3:70:f8:fb:6d:8b:5e:bf:82:d7:
ec:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A1:E4:18:3E:38:64:91:CA:93:C6:C9:2B:8D:82:2B:C9:81:A8:01
X509v3 Authority Key Identifier:
keyid:00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:2a:a9:85:4d:5a:ce:ba:f7:82:23:a3:2c:66:98:e5:b4:98:
72:42:c0:f8:25:15:e5:7a:e9:f1:81:71:70:42:0b:da:09:a7:
db:67:40:2d:f7:1f:e1:31:2a:ad:77:e3:9e:56:48:e9:6c:d5:
7c:81:75:fe:4d:2b:18:2e:83:61:21:4e:06:d6:56:f5:e9:8c:
61:6d:af:1b:dd:e5:b0:1c:70:1c:63:c5:e4:4f:4d:93:0b:14:
95:74:99:75:a2:62:ab:da:a3:03:8d:65:04:7e:fa:24:8d:dd:
24:b9:61:f4:77:54:f9:ca:7d:6c:73:0b:76:d1:8a:b9:16:16:
64:ce:59:50:b9:f2:b5:51:e0:f2:a3:c5:a4:c7:36:c5:c0:c5:
2e:53:a7:92:d8:3a:23:06:63:1f:5d:1a:7d:5e:d1:60:05:b5:
47:2c:cc:b7:55:f1:ba:5e:53:ed:27:3e:8d:2e:d2:d0:90:ae:
34:5e:b3:dc:29:84:a3:73:9a:84:2c:87:74:9f:8c:65:f3:47:
ac:4e:11:95:b9:6c:08:24:4b:52:5e:fa:55:ef:d7:c1:c8:eb:
9d:28:81:1c:ff:aa:b7:5d:c5:20:6f:ae:b6:fb:a0:0f:f7:f8:
3a:2f:df:9e:95:b8:72:97:70:f0:04:3e:d9:93:d5:08:5b:8a:
1d:07:4f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:41:53 2025 by rpki-client on console-fra.rpki-client.org