Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
File: OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json)
Hash identifier: +KEw2G7rQsq4SDbbbfSiv927/Z5BUxN8X7je6vbr8w4=
Subject key identifier: F5:81:4B:38:CD:47:51:DA:2E:64:01:8F:02:1A:E8:3D:1D:5D:6B:3A
Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
Certificate issuer: /CN=3a611bc291ff1de02256f2315345680603fa4edb
Certificate serial: 0194BB604F240248A484F5466F1B0C5A6DBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
Manifest number: 02EF
Signing time: Fri 31 Jan 2025 08:00:38 +0000
Manifest this update: Fri 31 Jan 2025 08:00:38 +0000
Manifest next update: Sat 01 Feb 2025 08:00:38 +0000
Files and hashes: 1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: ZeYbF92Nrh3BVS74TworVfJxJICY01sd22wse743610=)
2: WMqMrN8GSXOfRqdUfWDSfGSeNoY.roa (hash: +HUvEm/zmLGsWH85M7k1xXVdXwdEmqkh5XDlJHFGu2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:4f:24:02:48:a4:84:f5:46:6f:1b:0c:5a:6d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb
Validity
Not Before: Jan 31 08:00:38 2025 GMT
Not After : Feb 1 08:00:38 2025 GMT
Subject: CN=f5814b38cd4751da2e64018f021ae83d1d5d6b3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2c:fb:e7:3d:7e:7d:17:04:be:c8:81:1b:47:
6a:6e:fe:f8:f9:59:9f:6d:53:8b:73:40:c1:41:db:
24:72:15:a0:a3:71:99:d8:d6:aa:98:84:d6:49:9e:
de:79:0a:05:31:f7:3e:c1:f4:a4:2f:18:36:4c:33:
b6:f9:7a:d0:36:7d:46:61:cd:d2:f5:b0:1d:22:2a:
c2:c1:7e:31:a5:2e:84:2b:04:18:3f:e0:f8:77:fd:
de:42:fb:50:ed:d8:19:cb:60:1f:7a:8f:31:ed:31:
4a:53:f5:e8:7e:c1:33:b1:06:23:9a:6d:ce:a7:e7:
c0:8d:3d:84:be:ea:79:4e:0a:c4:9e:49:07:a8:19:
95:48:c3:41:8d:e9:e9:38:1a:60:83:9a:3c:c2:40:
c0:48:4a:4a:63:98:21:a6:fe:39:43:0e:09:c5:53:
b1:08:3a:3c:00:7d:aa:fc:64:8f:0a:c5:f0:7e:f8:
cb:63:64:28:7d:20:7e:5f:d3:f4:9c:cd:ba:2e:25:
3a:2c:1b:3d:f0:5b:63:19:2e:76:52:97:81:35:f0:
06:36:23:f4:74:28:b9:3b:4f:ed:98:87:07:fb:08:
67:67:5a:2a:5f:6a:71:75:7e:bb:68:de:b9:d8:8d:
a3:de:a5:12:85:33:e7:1f:40:24:1a:a5:ef:04:1d:
8f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:81:4B:38:CD:47:51:DA:2E:64:01:8F:02:1A:E8:3D:1D:5D:6B:3A
X509v3 Authority Key Identifier:
keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:f2:3a:21:73:bb:18:41:94:76:00:a7:5d:f0:84:f1:b2:fb:
1d:02:37:c7:7b:f6:30:3a:f1:9c:b1:35:6d:2f:1b:e8:25:7d:
d0:3c:15:e9:ed:d4:12:ad:ce:b2:3d:57:de:a2:96:9f:13:85:
c3:b4:c7:91:29:c2:89:b5:90:05:3c:69:4e:67:86:30:c8:31:
9b:8c:4a:d5:e3:2c:6b:a7:11:72:e9:f0:b9:7e:e1:4a:77:a1:
7a:38:7c:7b:b2:6c:32:68:81:7a:ac:59:e8:54:a4:8b:0d:7b:
53:22:0d:a3:30:b1:55:50:a9:47:79:61:db:bb:b6:8b:cb:d7:
61:b9:23:b5:e7:72:53:a0:50:6b:ab:54:9f:79:b6:dd:92:ef:
da:fd:7a:12:5b:61:2e:1e:14:62:de:17:79:1e:c5:68:8a:3d:
6f:66:d4:ba:2a:d2:c2:6b:54:a3:9d:d8:b8:1d:22:ed:c8:30:
00:b6:13:9f:72:fc:43:0c:bf:6d:f8:56:ad:76:71:fa:5d:39:
a9:10:82:7e:f4:da:56:f2:8f:6c:b2:e8:de:c1:7f:0e:8f:8a:
3d:d4:11:f0:01:2c:00:d1:69:a7:6a:aa:71:ed:d4:1d:dc:ae:
18:e2:5c:73:e9:c2:57:04:08:98:e7:03:ab:af:82:eb:d9:09:
d5:3b:87:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:35 2025 by rpki-client on console-fra.rpki-client.org