Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
File: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft (raw, json)
Hash identifier: pV+ViDcPs0C1jgRGsFTpvE05mVl3GRcCO4eJqdanKDQ=
Subject key identifier: 5B:5C:79:8A:6D:64:09:9C:BA:82:08:CC:FD:5A:4C:56:12:8F:26:04
Authority key identifier: 38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
Certificate issuer: /CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Certificate serial: 0194C4632C5D6C05AD7B484B42ED570A8463
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
Manifest number: 142E
Signing time: Sun 02 Feb 2025 02:00:21 +0000
Manifest this update: Sun 02 Feb 2025 02:00:21 +0000
Manifest next update: Mon 03 Feb 2025 02:00:21 +0000
Files and hashes: 1: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl (hash: +urJ2qZ0tdS1Aihile3mX6rnc4UG94k/bkJVQEJYXzU=)
2: eMQhZAA1BBjlcx0eTkggms08VQo.roa (hash: xi+ujT09IBX2cdfgWniCY7aqnXMFDpXhE7QErRO6YQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:2c:5d:6c:05:ad:7b:48:4b:42:ed:57:0a:84:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Validity
Not Before: Feb 2 02:00:21 2025 GMT
Not After : Feb 3 02:00:21 2025 GMT
Subject: CN=5b5c798a6d64099cba8208ccfd5a4c56128f2604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0c:a7:ca:03:f2:7d:3c:70:43:b6:9c:24:9f:
38:6b:ad:c4:3c:8d:18:25:59:99:4c:a3:99:f9:d9:
38:b5:95:47:07:3e:3e:27:05:79:9f:ca:a0:30:36:
df:5f:66:67:23:7a:be:3e:1b:95:86:01:34:f4:10:
85:1c:43:25:72:29:44:6e:18:69:86:ec:3d:82:fa:
06:84:8f:2e:69:41:91:be:ea:a9:f8:46:20:a1:1b:
84:99:f0:06:61:26:43:62:6b:b7:af:a7:d5:d1:87:
cd:4b:f1:c2:12:f1:d5:6c:3e:28:50:51:ea:75:7f:
7c:8c:ab:5b:b3:00:d2:50:04:f3:b3:ea:ea:c0:31:
0e:24:1f:fa:79:71:0e:85:b7:70:2e:74:9f:67:7d:
f8:8a:63:88:59:95:72:d5:be:7a:dd:84:f1:9b:4c:
d4:ec:98:a0:2f:93:19:5b:93:bb:1e:67:de:c1:25:
63:3e:62:d1:a8:0f:95:89:87:6b:39:77:8f:61:f0:
e3:dc:40:23:13:de:c8:7c:34:37:64:d7:8b:f1:62:
85:ae:da:4f:f0:26:63:f1:db:d0:4f:35:e5:5a:46:
6d:43:a5:94:b9:e9:b2:f2:4f:34:9d:f5:f1:c6:d3:
61:71:3a:f6:64:f7:99:46:43:76:d6:d6:6b:ab:18:
fd:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:5C:79:8A:6D:64:09:9C:BA:82:08:CC:FD:5A:4C:56:12:8F:26:04
X509v3 Authority Key Identifier:
keyid:38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:11:f0:b4:c6:29:0b:a8:c4:9d:71:91:93:35:1c:f7:55:16:
07:7b:33:5f:49:38:78:c9:d0:4c:87:3c:5d:02:4b:8d:36:dd:
6c:45:f3:80:d0:65:71:ef:05:cc:8c:14:45:aa:ac:3e:f4:dd:
64:15:fb:54:4a:20:b6:53:71:99:b1:d2:91:89:e4:2d:bf:76:
57:96:82:19:5c:e8:1d:7e:8d:8d:dc:90:28:4a:a0:11:29:a5:
17:8e:88:93:1f:70:23:b9:ec:2d:0a:a3:57:b2:d2:82:4b:34:
d8:28:56:25:79:8a:10:2c:29:de:dd:53:b9:73:72:69:3f:e4:
3c:b3:9a:ff:8a:56:8e:4c:37:f0:1f:ed:c6:10:be:99:c7:c5:
af:21:a6:89:e2:91:43:cd:9d:56:e2:86:32:f4:7a:94:24:eb:
22:19:92:40:2d:17:f9:13:27:b3:a2:2d:c9:da:a2:18:40:c5:
c8:bd:ce:1e:cc:07:1e:9b:c2:48:79:ce:38:90:10:af:a5:3a:
03:23:65:54:d0:e6:11:14:5f:a2:6f:70:48:d0:6c:33:77:17:
bf:23:6d:09:9f:a6:c1:78:2b:7d:12:85:44:1f:48:e4:52:fc:
6f:0b:0f:77:5f:ce:f0:8f:3a:c5:21:64:2c:48:a1:75:be:a1:
95:dc:9d:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:56:20 2025 by rpki-client