Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
File: 1OKXHl2BaclArwINsCe-2tiZFZA.mft (raw, json)
Hash identifier: ZOMVVw2JTSkJFcnaD8g36r9tezc5bW2Zg7nZPGvyrWE=
Subject key identifier: 53:0A:7B:6D:B6:20:95:D9:9E:15:C0:EA:1E:4B:7D:24:AE:32:24:DD
Authority key identifier: D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
Certificate issuer: /CN=d4e2971e5d8169c940af020db027bedad8991590
Certificate serial: 019511A24DFEBA32A63A3BECB50FB7E0AEA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
Manifest number: 145A
Signing time: Mon 17 Feb 2025 02:00:04 +0000
Manifest this update: Mon 17 Feb 2025 02:00:04 +0000
Manifest next update: Tue 18 Feb 2025 02:00:04 +0000
Files and hashes: 1: 1OKXHl2BaclArwINsCe-2tiZFZA.crl (hash: 1zeP5u2qqNKlwq1mXB6TSj2WGei9UGRExxHt3fTNEzQ=)
2: t9RZtYM1TGEMt1syPgITn8S6yxc.roa (hash: zIj5Jh4OKcBo5HQ6NodMOlq+a7yM6D/J29/6rKcVe2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:4d:fe:ba:32:a6:3a:3b:ec:b5:0f:b7:e0:ae:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2971e5d8169c940af020db027bedad8991590
Validity
Not Before: Feb 17 02:00:04 2025 GMT
Not After : Feb 18 02:00:04 2025 GMT
Subject: CN=530a7b6db62095d99e15c0ea1e4b7d24ae3224dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7d:b2:a6:f2:a8:d2:88:d5:de:64:e6:07:bd:
48:d6:7e:de:4c:77:d5:8e:cb:cc:cb:e7:73:37:92:
b9:6d:ac:ad:9a:fd:fb:39:bf:36:ef:12:f4:a0:d2:
8a:71:3b:d6:a9:04:65:b7:e8:62:ca:c4:44:ed:78:
04:31:d7:fb:9b:0c:c1:df:a3:ee:ec:4d:cc:38:af:
e8:a4:7f:24:89:a9:79:8b:ee:eb:e9:a9:1b:45:d3:
9f:9b:0d:70:af:8c:df:42:c4:63:20:b3:36:66:1b:
c0:f2:60:4e:84:36:34:79:3d:f4:db:66:9e:5f:d5:
e5:d0:23:79:08:e1:c3:db:a7:a4:be:92:5b:0a:5c:
6b:c6:73:69:7d:4d:0c:01:74:53:46:76:63:a6:2b:
d4:c5:d2:3b:b0:5b:61:f5:72:4e:05:be:f5:8c:94:
58:b5:41:10:18:31:ea:ae:dd:d2:8b:de:12:b5:78:
5c:3b:c6:dd:1b:0b:97:85:dd:1f:48:37:21:58:99:
c6:e3:4d:d7:18:35:3d:ee:be:99:79:99:58:2a:61:
61:94:64:32:f2:4f:2a:19:27:d6:bc:d0:56:cf:d8:
62:c0:12:d0:0a:5b:2d:09:de:8d:6c:5a:d9:1c:d6:
04:9b:b4:74:79:9c:c0:c4:53:3a:b6:39:47:28:f4:
37:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0A:7B:6D:B6:20:95:D9:9E:15:C0:EA:1E:4B:7D:24:AE:32:24:DD
X509v3 Authority Key Identifier:
keyid:D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:4f:23:d2:a3:b3:6d:94:5b:61:b3:a5:ea:ef:ce:41:97:27:
c7:2b:fa:56:7d:af:f2:a5:54:9d:47:fd:5f:8b:bc:9a:71:04:
93:e3:10:46:34:af:fc:c3:d9:44:0b:a6:d8:00:81:00:9a:76:
b8:0b:42:38:38:36:ca:02:84:70:7a:4e:1e:bf:8b:36:16:c2:
23:a1:c3:7b:ef:01:8f:c8:5c:d6:d6:4b:1a:fa:73:7c:3f:0c:
a6:e9:f0:67:d6:67:1e:4e:d8:9a:9c:60:66:32:e8:e0:6c:38:
5e:c5:4c:48:b8:16:13:c4:ee:50:69:10:d9:47:8b:91:2e:8b:
5a:cd:08:11:da:d4:ab:02:2f:4e:dc:8d:d8:8c:c5:2a:cf:f6:
3e:2f:af:61:b1:16:c5:1c:c2:07:c6:8a:76:80:c8:ae:5e:ed:
14:a4:33:35:ec:42:c5:19:4f:09:79:78:ba:00:0c:9e:de:3a:
81:91:dc:7d:8e:ca:37:54:af:db:be:e4:89:a1:66:7c:b1:2c:
25:04:a3:64:0e:6f:ab:e6:90:7e:00:b9:e1:e8:68:2b:d6:79:
77:0b:15:8f:89:13:b6:bf:74:fc:a6:ba:bf:49:ff:4e:ba:7c:
1e:c9:6b:fb:ba:da:04:1c:d8:ee:0c:5b:8e:68:d0:d2:d7:cc:
21:a0:b2:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:59 2025 by rpki-client