Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
File: OXbmqwhMnu7ehuKva95yFSdLlac.mft (raw, json)
Hash identifier: W1kSb6zOOF49CRNde2MOy0Q3Zv++j3OqJ0d/O90vpvI=
Subject key identifier: 0E:4E:31:42:CB:14:85:A4:03:8E:6A:F1:D1:F5:14:50:D4:77:77:5F
Authority key identifier: 39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7
Certificate issuer: /CN=3976e6ab084c9eeede86e2af6bde7215274b95a7
Certificate serial: 0194C3BE4D807C2F498C67696C9C187D92DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
Manifest number: 142C
Signing time: Sat 01 Feb 2025 23:00:16 +0000
Manifest this update: Sat 01 Feb 2025 23:00:16 +0000
Manifest next update: Sun 02 Feb 2025 23:00:16 +0000
Files and hashes: 1: OXbmqwhMnu7ehuKva95yFSdLlac.crl (hash: KScRsqnMYwTEdE86pQbJ2tN+pTF2gUn712Cc8O+4HBU=)
2: bS8D5tTeBAXDkMQSy-j-MAcdPro.roa (hash: R+yA1y5Nb8S44doc/dttKyd8pVatx4WMIyAI41rpB+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:4d:80:7c:2f:49:8c:67:69:6c:9c:18:7d:92:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3976e6ab084c9eeede86e2af6bde7215274b95a7
Validity
Not Before: Feb 1 23:00:16 2025 GMT
Not After : Feb 2 23:00:16 2025 GMT
Subject: CN=0e4e3142cb1485a4038e6af1d1f51450d477775f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:61:71:56:6d:ec:4e:d4:4d:55:cd:bd:b5:e6:
f4:47:d4:03:15:04:0f:88:cf:49:0b:4a:73:96:b5:
3f:40:0a:ac:01:c7:ae:4f:1f:9d:3a:c4:76:29:0f:
ae:e7:14:6e:c2:28:49:7c:29:57:e0:43:f9:47:56:
f6:c5:05:71:98:6e:56:bb:d0:0b:1c:fb:28:77:c8:
19:9f:52:64:e5:4f:46:0e:b3:02:52:aa:50:7d:42:
c2:6a:c9:f7:c4:c8:fb:7b:16:29:d8:a9:f8:df:9d:
f6:15:38:3f:04:94:0c:26:1a:67:f9:5d:d3:bc:a4:
86:87:c7:26:5c:73:ac:1d:6e:5f:df:65:63:1d:7c:
f6:99:d1:e3:88:a1:5e:c8:b5:6f:54:87:68:c5:ef:
fa:53:e9:6e:52:f6:74:ec:34:71:09:75:49:a8:88:
8a:ee:08:80:6e:7a:90:52:0e:d4:28:af:88:5d:30:
ce:ab:c9:3f:91:a7:15:78:00:9d:c0:47:d9:2d:7d:
00:aa:e0:d8:38:c9:67:1c:a9:f1:4f:6e:7e:8e:f1:
56:2c:e7:c2:a8:77:09:98:4c:5c:6f:55:36:c6:64:
4e:ec:c6:41:88:31:ba:61:69:6b:c8:13:40:b0:2e:
96:30:35:d2:1a:2d:2b:e4:d5:9b:30:88:19:94:3b:
e8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:4E:31:42:CB:14:85:A4:03:8E:6A:F1:D1:F5:14:50:D4:77:77:5F
X509v3 Authority Key Identifier:
keyid:39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:27:0e:49:70:56:76:97:58:39:b6:8c:07:95:6d:e6:e9:a9:
6c:17:cb:35:1e:00:ab:28:d5:a8:f3:58:e9:9c:be:5d:4c:fc:
7e:cd:a2:17:87:69:5a:26:dc:9c:d2:41:9b:d2:be:e8:b5:06:
be:d1:b1:b1:46:d0:20:27:41:8e:b4:9b:15:af:cc:96:57:29:
f1:10:f0:8b:6c:e3:5b:11:cb:5f:e3:91:f2:61:89:7a:42:ed:
31:17:fa:c1:6a:b6:38:f7:75:a6:a8:3f:5d:08:2c:7e:ad:2c:
e0:8c:36:b5:b1:e6:d5:56:cc:4e:b4:42:6b:b9:6a:fa:7b:07:
7e:87:ac:a6:19:66:a6:2d:b4:d3:f8:1c:44:d1:b9:9e:2f:cf:
90:14:90:86:75:ae:17:9a:2c:7f:2c:2f:24:32:82:1d:ea:8b:
30:f6:c2:b0:52:b6:86:a2:a3:fb:13:31:1b:3c:c2:52:ba:0d:
fa:a3:27:db:00:5d:0d:c5:9a:a8:1c:fd:f5:70:25:5d:ab:32:
55:b2:15:8e:a2:f9:62:f8:e2:36:cc:34:4b:61:11:ee:7b:82:
a5:35:a1:7f:62:1e:5e:a4:d8:b1:76:52:4d:0e:b5:a1:08:ef:
fa:6e:94:6a:bc:27:8a:2c:95:69:03:b1:2a:10:6b:70:6c:c9:
5b:0c:6d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:47:44 2025 by rpki-client