Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
File: o95MO22qWmmL8wfMORKCqymH1hc.mft (raw, json)
Hash identifier: GZjAtbD9Xrp7imQYpgTRr0Bcs6rCbWb65xjn2iAESyo=
Subject key identifier: 52:3A:65:E6:B4:88:5C:4E:55:84:2B:BF:42:31:17:A8:4A:47:93:A5
Authority key identifier: A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
Certificate issuer: /CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Certificate serial: 0195108FFBE9AC1F068B2392FAA7941234F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
Manifest number: 09A0
Signing time: Sun 16 Feb 2025 21:00:26 +0000
Manifest this update: Sun 16 Feb 2025 21:00:26 +0000
Manifest next update: Mon 17 Feb 2025 21:00:26 +0000
Files and hashes: 1: aaz13NJRzQSWik1cFJTAx8gsPnU.roa (hash: CsCDTEtayCoWB3zZSGEuzJzCmVEA7r5a08XAY8x/Hbg=)
2: o95MO22qWmmL8wfMORKCqymH1hc.crl (hash: AKq+5OstgdTo8pbdp01SM7tb9/qwrn0G3bqqLbUhOGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:fb:e9:ac:1f:06:8b:23:92:fa:a7:94:12:34:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3de4c3b6daa5a698bf307cc391282ab2987d617
Validity
Not Before: Feb 16 21:00:26 2025 GMT
Not After : Feb 17 21:00:26 2025 GMT
Subject: CN=523a65e6b4885c4e55842bbf423117a84a4793a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b9:81:c4:74:36:06:38:a3:17:63:b0:dd:1d:
51:6c:ed:23:77:e6:3b:6d:a1:ff:75:26:d9:5f:15:
17:b4:6b:80:4a:d4:f0:1f:47:35:75:1a:ae:4a:a8:
83:ae:7a:67:8e:91:4f:bd:dc:f4:9b:cd:32:a5:6f:
78:de:cb:f2:c1:dc:ed:ff:07:bf:ad:52:22:28:9a:
fd:00:69:77:35:83:90:80:6e:95:ee:2f:89:1f:5a:
20:be:93:d7:7b:83:1d:f2:81:67:75:91:4d:6b:84:
16:8d:01:23:2f:2a:aa:49:6c:aa:af:ef:cf:51:e2:
a0:0b:63:af:4d:b2:ad:a4:85:af:12:2b:2f:b0:30:
a1:b2:ae:53:ff:6f:72:06:b5:76:68:c9:c7:a0:ad:
11:80:52:7e:3b:f9:3b:92:15:8f:c0:b9:b9:df:2e:
57:58:a4:d0:a3:48:da:b4:ec:96:16:fa:3e:89:65:
91:6a:23:6f:69:79:22:d6:36:3a:f9:39:04:7b:1e:
af:59:59:03:32:d6:b0:12:dc:e5:35:4c:35:02:aa:
b8:31:df:5e:06:61:05:38:2d:32:fd:c3:8b:09:47:
81:f0:64:dc:43:3d:b8:5e:b8:a6:89:e8:28:a0:fb:
81:19:7f:ae:92:2e:1d:30:d0:96:bc:64:ef:63:d7:
19:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3A:65:E6:B4:88:5C:4E:55:84:2B:BF:42:31:17:A8:4A:47:93:A5
X509v3 Authority Key Identifier:
keyid:A3:DE:4C:3B:6D:AA:5A:69:8B:F3:07:CC:39:12:82:AB:29:87:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o95MO22qWmmL8wfMORKCqymH1hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c9fbe-1725-4116-9ef3-0af2c5c4cc0f/1/o95MO22qWmmL8wfMORKCqymH1hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:9b:07:42:66:d4:9d:65:33:23:7a:10:c2:15:ea:4b:01:a3:
90:61:83:80:cd:27:09:41:ee:9e:87:96:ca:dd:eb:43:54:b7:
bf:12:03:29:b1:bf:d3:d8:4c:34:46:08:1f:50:fc:07:ce:d5:
72:57:c4:68:6a:3e:c3:96:12:b6:58:8a:8d:f8:63:88:e4:b3:
f1:c2:df:d2:90:77:89:13:6c:5a:c0:c1:3e:43:d5:93:4d:81:
0d:a8:2d:d5:bf:f5:c8:0f:ac:36:af:21:23:26:52:54:39:d9:
3d:3d:77:8c:d3:83:ce:01:1c:06:fe:e1:ba:a3:8d:3a:09:b5:
8c:79:29:05:0c:cb:bc:26:53:b0:37:7e:a8:36:43:58:6f:c9:
5a:24:4f:b5:1f:e5:e6:f7:25:c2:b8:5e:98:8c:98:60:e2:83:
25:ea:da:53:22:6f:1e:58:40:14:9e:1f:8d:08:bf:4b:5d:7e:
2c:c7:c4:b0:ca:22:f7:1a:27:79:4d:99:76:f8:03:cc:f2:f0:
a0:b7:65:30:42:00:1b:4b:ee:0a:c9:cb:8b:a7:5e:07:de:20:
39:08:78:06:53:25:87:94:0d:4f:29:32:80:36:ee:ee:81:c7:
3e:d5:1c:94:da:f8:f0:29:cd:b6:22:ca:22:a5:3c:01:48:3c:
43:af:ef:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:55 2025 by rpki-client