Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json)
Hash identifier: u4MeVvlkAqTYxu0Zm8rmkgIyKIiyLWrq19dOWbw+cn0=
Subject key identifier: A0:AF:A8:A4:FB:D6:E8:A0:3D:79:B4:1D:DA:9E:08:33:AC:E4:F1:7A
Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Certificate serial: 0194C3F58EE6156797BAD54DD17A2EAD19FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
Manifest number: 08A6
Signing time: Sun 02 Feb 2025 00:00:37 +0000
Manifest this update: Sun 02 Feb 2025 00:00:37 +0000
Manifest next update: Mon 03 Feb 2025 00:00:37 +0000
Files and hashes: 1: 7IkFNxuEd7zYMJ5GFmWYCrb0D3k.roa (hash: EbQqPJKQBhTvoE7/qrp3Wi8FH8cq4X28q+E9y9x/db0=)
2: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: s9t1prwRRZXyceb43R6haIgUGdySP6c/7/3DMW2eqOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:8e:e6:15:67:97:ba:d5:4d:d1:7a:2e:ad:19:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Validity
Not Before: Feb 2 00:00:37 2025 GMT
Not After : Feb 3 00:00:37 2025 GMT
Subject: CN=a0afa8a4fbd6e8a03d79b41dda9e0833ace4f17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f4:d1:42:2a:5a:35:23:93:18:60:43:f2:f6:
49:89:b7:11:1a:a7:16:ff:29:3e:69:dd:d8:17:28:
d6:9d:6e:60:2a:8d:e2:7d:a6:1c:95:7a:6f:36:d4:
f3:b7:bc:81:e5:8c:25:26:b6:be:92:73:89:ed:1a:
f0:a8:95:a9:62:e6:1f:30:eb:75:c9:33:7e:49:5c:
60:a4:b8:47:be:dd:ac:47:21:be:55:d1:84:f9:4a:
f0:1b:f2:c9:1d:5c:85:58:c4:66:ce:23:8e:52:5f:
4e:cd:63:5b:04:aa:40:1f:86:70:68:c9:07:29:b8:
17:11:4e:b7:8f:30:b4:c7:9a:cb:e3:a6:4e:26:da:
cd:ab:fa:fd:96:7f:b1:9b:98:1f:07:fd:b5:11:50:
52:a6:72:18:bb:31:89:fc:f0:8f:bc:4a:f9:19:bc:
93:fe:cf:d1:4f:b0:14:89:36:b0:e4:25:80:1b:bb:
21:f9:c0:8b:c5:ad:5c:e2:97:6c:8b:93:e8:e1:8e:
85:90:47:e7:a7:df:8e:91:47:81:d8:39:97:ef:d9:
f3:fe:87:82:95:b0:2c:fb:32:3d:a7:25:d7:dd:57:
2d:3a:30:5a:fb:78:ba:44:c1:2a:80:2a:39:ee:75:
04:7e:e7:ef:ae:bd:76:6a:20:df:e0:1f:bc:66:9f:
95:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:AF:A8:A4:FB:D6:E8:A0:3D:79:B4:1D:DA:9E:08:33:AC:E4:F1:7A
X509v3 Authority Key Identifier:
keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:8a:aa:b3:66:3d:e0:81:42:8b:03:25:a0:2e:1e:82:b1:d9:
42:b1:da:99:79:4c:b9:7b:0e:99:48:16:03:8b:2a:f3:41:18:
69:07:7d:2d:e5:a9:90:3a:41:39:40:bd:6a:50:1c:30:be:01:
1a:68:92:f5:4d:fd:c9:04:17:59:63:a4:36:8b:0f:f2:8a:7f:
b5:66:ce:1d:87:c3:a5:74:02:f9:47:b7:46:97:1b:2b:a3:70:
3d:2a:39:46:8c:bf:9f:b4:62:eb:53:54:50:47:ed:e3:6c:8d:
00:ea:24:86:72:2d:de:ac:c2:82:7b:c9:98:82:00:45:b3:57:
be:bd:4e:3e:07:cd:4a:f1:07:5e:56:2e:c5:9f:f6:63:04:87:
87:94:84:cf:c5:79:9b:da:a3:ee:46:fd:2b:79:bf:3d:4e:ca:
23:7c:fe:40:3f:a0:83:9a:ff:55:6c:87:b1:52:bd:64:8f:2d:
b8:3d:86:64:41:d5:4a:c5:06:b0:96:b7:d9:a2:b5:e9:82:db:
ea:b7:00:9f:9a:3a:cc:16:f7:65:c5:f8:5a:c3:a6:c6:62:2c:
da:c9:e5:18:5a:d4:4e:02:64:d3:ae:f9:33:a4:4e:06:0d:d1:
32:53:6e:0e:76:c1:9c:92:a3:af:ea:db:41:9e:00:c3:b5:41:
fd:fe:34:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:03:06 2025 by rpki-client