Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
File: o05gF-H-A5MnjChZ9DBDsx7myJo.mft (raw, json)
Hash identifier: sbPfy6+p/gIWYPQJa4syYQ/Qb620BRq/jjKvlKqaYt0=
Subject key identifier: B1:7C:8C:28:F2:8B:B3:18:31:86:42:F0:48:8C:AD:88:CF:50:80:54
Authority key identifier: A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A
Certificate issuer: /CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
Certificate serial: 0194BB96C781C21288C3D05CCCBA69075F7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
Manifest number: EE
Signing time: Fri 31 Jan 2025 09:00:08 +0000
Manifest this update: Fri 31 Jan 2025 09:00:08 +0000
Manifest next update: Sat 01 Feb 2025 09:00:08 +0000
Files and hashes: 1: IThQt7fbZjTxBPjVToQUiBMJLfw.roa (hash: oQVD23q0+FFPZozW7epeAMXOc9QR32sT9Z0RYH7NZss=)
2: o05gF-H-A5MnjChZ9DBDsx7myJo.crl (hash: koWm5ZP9xH2dN7tK7IFAB94k3ZSwaWzV6mfYzXBQDgY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:96:c7:81:c2:12:88:c3:d0:5c:cc:ba:69:07:5f:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
Validity
Not Before: Jan 31 09:00:08 2025 GMT
Not After : Feb 1 09:00:08 2025 GMT
Subject: CN=b17c8c28f28bb318318642f0488cad88cf508054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2f:23:fe:85:d5:11:54:10:e7:0e:46:86:8d:
54:ff:16:62:ca:57:b1:e4:44:80:1f:b4:51:68:ee:
a2:b1:f0:30:0b:bb:8c:b1:c1:9a:c1:54:c2:06:77:
0d:0a:dd:f1:ed:77:d8:66:ab:ed:81:4c:ba:f3:54:
2e:17:f8:ca:96:88:c1:fe:c1:5f:be:c7:96:94:cd:
d0:91:48:c9:f9:dd:be:3e:02:af:14:af:a4:db:4a:
13:cf:d0:18:e9:4c:3b:51:82:50:0c:4d:b2:cb:0c:
fe:ce:7f:f7:ba:75:3a:ae:22:ed:6c:a7:46:86:a3:
50:4c:92:96:5c:be:cd:6a:96:0d:ad:e3:5f:4b:27:
2b:a0:29:da:ab:65:f2:08:ba:10:eb:83:d5:36:8f:
f6:c2:c0:72:5e:b9:12:55:2e:13:e3:13:6f:06:30:
6d:9b:5a:b6:77:55:c6:44:b9:b3:4f:ae:f5:10:24:
e9:c8:bc:e7:43:e7:71:c3:46:b2:9c:8b:14:d8:b1:
13:79:0f:34:45:b3:08:38:a8:37:51:b1:b3:f3:84:
f1:d4:f1:76:05:da:2b:b9:b2:d5:b4:71:fb:c3:f7:
59:86:0a:74:cc:ec:98:30:59:57:7c:dd:e4:d9:da:
c3:96:cf:5c:bd:0f:52:2e:b9:1b:83:53:f7:cb:9c:
4b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:7C:8C:28:F2:8B:B3:18:31:86:42:F0:48:8C:AD:88:CF:50:80:54
X509v3 Authority Key Identifier:
keyid:A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:6d:d5:0d:89:52:3b:3e:85:89:fa:28:61:7b:fd:13:3c:4d:
f7:bd:1e:de:4b:3c:0d:10:9e:02:45:88:16:34:23:24:af:f1:
89:3f:d9:98:e6:6c:24:38:97:00:40:08:9d:7e:03:ea:9f:96:
43:2d:0f:9c:3c:c4:25:19:35:3f:47:d2:85:1a:84:d6:7b:56:
5a:c6:71:50:00:88:e0:80:83:99:c6:d8:1c:f9:d6:d3:8b:63:
76:5b:22:88:9e:29:e4:e4:48:63:92:ea:4b:52:d9:00:1f:64:
3a:1d:e1:f1:94:95:c3:eb:a8:08:ad:c6:da:e7:26:f9:76:8b:
9a:c2:1c:25:37:1b:25:aa:88:3b:fa:92:6e:bd:63:e4:8c:63:
e2:c6:82:e5:90:26:53:00:59:39:58:88:f4:86:f6:14:31:f2:
ca:cf:73:0f:df:8c:c4:b6:5e:c1:a3:8c:94:96:02:92:ca:15:
2f:cb:b9:6d:ed:79:1e:b6:c7:e6:50:33:9d:48:ad:f4:3c:d1:
94:27:da:f3:99:0f:ec:5f:8a:fd:df:f7:b1:68:ca:40:c2:e9:
cc:83:eb:c0:27:50:59:65:f6:f3:42:7a:61:c6:3a:11:12:62:
21:3e:c2:f4:cd:ae:19:be:82:ba:dc:8f:43:c3:c0:7b:a9:44:
0a:e0:09:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:42:28 2025 by rpki-client on console-fra.rpki-client.org