Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json)
Hash identifier: 2DzCT7bwzGr5f/rasHyLvVbnG8IFMoS1AzOTknt43UQ=
Subject key identifier: C2:AB:62:CA:AC:86:4E:E0:1A:E9:82:64:1A:2C:D6:D0:13:99:FA:7F
Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Certificate serial: 0194C42C058DD70A9BA24193486352D9B556
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
Manifest number: 0D57
Signing time: Sun 02 Feb 2025 01:00:06 +0000
Manifest this update: Sun 02 Feb 2025 01:00:06 +0000
Manifest next update: Mon 03 Feb 2025 01:00:06 +0000
Files and hashes: 1: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: CX55flyDZzLlTA5p4qfWpRX9y1qjuowsrk21/GoUbT0=)
2: mV-huyQ7uf2YxiJ1JUpDypBxzhA.roa (hash: XQgQ9aC7Ey76psDYNwOwzM5lgNTkkh3rEJlv1Rte2h0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:05:8d:d7:0a:9b:a2:41:93:48:63:52:d9:b5:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Validity
Not Before: Feb 2 01:00:06 2025 GMT
Not After : Feb 3 01:00:06 2025 GMT
Subject: CN=c2ab62caac864ee01ae982641a2cd6d01399fa7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:65:db:0f:a9:09:e1:21:40:c8:be:f5:31:9e:
ca:f9:94:86:4a:fc:93:4b:97:12:6b:6c:11:6d:1f:
ae:5b:b3:b2:f4:5c:bd:66:63:f2:43:cc:d6:cb:47:
5d:04:a1:21:14:c4:a4:ba:c2:cc:1f:63:f2:47:85:
47:3b:dc:c2:fd:4c:0d:69:7c:20:59:0b:71:f8:c3:
ed:25:af:fa:78:0a:36:45:3a:8b:a3:54:05:a4:83:
19:cc:25:38:1d:3f:b8:2d:39:68:a4:f7:2c:8f:5e:
f6:ca:81:2d:09:f1:cc:39:95:57:19:1f:2a:12:25:
fc:03:86:29:10:26:cc:05:07:9b:68:20:73:d6:d6:
7d:5c:99:e4:65:43:98:4e:bf:0b:d8:e7:ef:02:00:
b9:bf:e7:df:a8:c1:54:96:3b:cb:dc:a4:1f:5b:26:
58:9d:76:fd:73:7e:f4:7c:00:e6:b7:7f:a2:df:44:
ab:38:0b:ed:18:cc:01:df:31:2b:31:d8:ed:10:fc:
11:45:1a:4d:3b:7f:8a:d4:dc:5f:53:ff:0a:37:ec:
ec:14:bb:a6:41:21:db:7e:49:b1:70:77:2d:16:84:
ea:f1:56:ef:24:49:bd:9d:e1:bf:e0:fc:37:52:03:
92:69:a2:23:83:73:50:37:11:24:fc:c3:64:38:af:
af:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AB:62:CA:AC:86:4E:E0:1A:E9:82:64:1A:2C:D6:D0:13:99:FA:7F
X509v3 Authority Key Identifier:
keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:48:3a:2e:b1:12:4d:40:04:b7:21:67:5e:be:6a:7d:b3:45:
a8:76:43:de:ef:8e:d4:43:a9:f3:ef:db:ea:9d:79:b9:27:35:
97:fe:ac:fb:22:ab:52:64:de:4b:b2:7e:3a:1f:3d:8c:4a:04:
81:0a:d2:b8:45:66:56:1b:58:ae:d0:01:9a:f8:de:f1:16:eb:
43:23:08:fe:7d:1d:bd:87:cb:e4:9c:e5:dc:5d:5b:3a:14:0e:
b1:b0:3d:b0:5b:73:1a:89:e6:24:f2:92:b2:ce:c3:47:7f:cb:
d1:33:2c:27:02:fb:33:aa:ac:1f:95:58:dc:c6:74:f9:c3:0e:
00:72:4d:e5:df:8e:89:0f:2a:a9:8c:dc:2f:6b:29:55:31:7d:
b4:a2:ea:b6:16:7d:bc:f3:6a:56:b4:a3:f9:45:6d:b7:2b:e8:
52:e5:99:15:0a:06:8c:21:d7:f6:a2:14:fc:32:7e:4b:63:2c:
a4:75:e2:27:11:57:2f:32:22:56:cf:e8:7b:bb:77:5f:c5:0b:
24:bd:65:b0:ae:fb:4b:94:0b:b0:d1:6c:b2:d6:48:34:48:3b:
ce:0f:ea:d1:d3:08:8f:1c:8f:a4:5d:be:88:5a:ad:91:69:f7:
f0:f6:0c:10:db:f1:73:1b:86:2a:91:80:1e:21:36:a6:63:13:
de:c9:2f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:52:32 2025 by rpki-client