Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
File: o05gF-H-A5MnjChZ9DBDsx7myJo.mft (raw, json)
Hash identifier: dBQz0gVm2Epwa1b9Yu0x+7mQ/jIIEfN0abqBLfx4szo=
Subject key identifier: AB:AB:17:84:C7:FC:29:E4:30:94:2A:CF:F5:EF:26:E1:5E:7D:10:E4
Authority key identifier: A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A
Certificate issuer: /CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
Certificate serial: 0195108FDC026E857948B8562DBD89BB56E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
Manifest number: 011A
Signing time: Sun 16 Feb 2025 21:00:18 +0000
Manifest this update: Sun 16 Feb 2025 21:00:18 +0000
Manifest next update: Mon 17 Feb 2025 21:00:18 +0000
Files and hashes: 1: IThQt7fbZjTxBPjVToQUiBMJLfw.roa (hash: oQVD23q0+FFPZozW7epeAMXOc9QR32sT9Z0RYH7NZss=)
2: o05gF-H-A5MnjChZ9DBDsx7myJo.crl (hash: qni047ep+9VoksDg7MlLSVyVdKpqJXPFz0+g5iCufoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:dc:02:6e:85:79:48:b8:56:2d:bd:89:bb:56:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
Validity
Not Before: Feb 16 21:00:18 2025 GMT
Not After : Feb 17 21:00:18 2025 GMT
Subject: CN=abab1784c7fc29e430942acff5ef26e15e7d10e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1d:6a:b0:9b:57:b5:e3:d1:ef:c1:5a:4d:ec:
22:08:99:78:13:51:f6:51:5e:d7:16:6a:64:65:f7:
23:8a:be:c8:32:11:2b:16:4b:4f:08:f9:f3:55:ce:
5e:67:f3:ad:e6:e9:51:13:bf:7a:73:5e:04:e9:5b:
e8:5b:4e:0f:72:3f:ab:b4:eb:be:40:c8:93:87:ed:
dc:aa:71:d4:8a:04:33:f1:60:8e:49:47:f7:b9:c6:
4a:52:33:1b:53:8b:93:d9:18:b5:4f:4b:4a:a3:87:
f5:1c:3e:ac:45:ef:5d:93:ce:ce:67:d4:f8:43:02:
50:7e:62:31:23:e3:16:72:b9:8f:42:02:68:75:3a:
22:ea:4e:d8:6f:16:0f:35:d2:c8:e3:1d:27:a1:2d:
ab:de:f3:6f:7d:00:fb:c7:91:d9:e3:0e:cc:53:45:
9d:9f:9b:ea:72:92:40:ff:7b:34:9e:75:b7:e3:7c:
1c:0f:a1:13:ba:06:48:54:6e:13:f0:1d:ed:aa:1e:
c5:c5:a2:11:34:c7:54:34:85:d9:f6:a8:46:ab:dc:
62:74:1e:3e:1b:67:c5:82:f1:2f:2b:1f:c2:3a:64:
d7:19:8a:ce:ba:d9:d5:b0:0f:da:f2:e2:f2:39:39:
63:fd:28:00:ba:9b:34:3f:13:bd:a7:74:51:c1:9d:
c3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AB:17:84:C7:FC:29:E4:30:94:2A:CF:F5:EF:26:E1:5E:7D:10:E4
X509v3 Authority Key Identifier:
keyid:A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:91:3a:21:3e:09:12:00:47:99:7c:ff:eb:b4:49:31:63:a0:
ac:6b:cd:ec:c0:87:df:ad:d4:2a:4f:e4:03:63:43:3c:2f:93:
a6:2e:ab:95:5c:82:43:59:84:b8:b4:36:f9:cc:60:6a:26:65:
09:f6:00:66:cd:b5:8d:c7:c3:47:bf:7b:49:8e:ab:0f:88:a8:
b6:dd:9d:0a:b7:c3:d7:31:5c:55:24:b2:3b:f1:d4:c4:3e:98:
f5:24:fd:5c:be:e9:cf:0c:06:fc:14:15:7a:71:c9:d0:12:e6:
9d:41:89:8d:7d:4e:f3:98:99:8d:2f:74:7f:2e:0e:28:1c:99:
c1:1d:2f:41:fe:86:0f:80:ae:81:d3:9d:e6:d5:3c:58:49:cb:
3c:11:d5:22:de:85:b9:fc:e4:eb:93:df:93:9e:c1:c7:9e:30:
f5:26:83:00:55:a6:5c:a5:b2:5c:b9:3a:4c:82:93:95:2b:b6:
58:ae:1d:a4:b6:ea:cc:30:dc:6c:d5:f0:5f:a1:0a:f8:fa:18:
9e:3b:b7:42:fe:bf:42:0c:62:f6:27:81:38:9c:4b:9b:27:90:
c2:e9:6f:27:5f:1c:95:f3:11:1c:aa:dd:e1:e4:64:36:74:8c:
fd:9c:21:e0:39:4d:84:e6:8c:6e:bb:ba:65:ba:14:cc:37:c3:
91:4d:89:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:55 2025 by rpki-client