Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: HrwFLHd41VCBdQCnMnKGspgRBMyupWC254FcWAKa9mA=
Subject key identifier: 93:2D:C5:FC:6F:ED:81:3F:A5:19:D4:97:BC:57:55:55:E6:7E:02:D0
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019512109CE52D87196A0E6391549053B806
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 145A
Signing time: Mon 17 Feb 2025 04:00:33 +0000
Manifest this update: Mon 17 Feb 2025 04:00:33 +0000
Manifest next update: Tue 18 Feb 2025 04:00:33 +0000
Files and hashes: 1: YZGMIvadW2xPxhoSXpNJb8SDWu8.roa (hash: jQfGmlQO1sTVXZe+wmgboQPBpNBgVW+6jbuLSLsW9ZU=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: g3OXj6hQG38HflFFdOWSnJHOXi1IRBcsGxyGd3yZmxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:9c:e5:2d:87:19:6a:0e:63:91:54:90:53:b8:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Feb 17 04:00:33 2025 GMT
Not After : Feb 18 04:00:33 2025 GMT
Subject: CN=932dc5fc6fed813fa519d497bc575555e67e02d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:94:18:fa:1b:02:b7:e3:32:2c:9b:16:56:d4:
7a:05:9a:61:9f:cf:61:aa:d6:6a:c8:f6:9f:e3:e1:
42:01:23:6c:11:7f:04:e0:0d:31:6a:79:94:d4:bb:
f2:90:ed:07:3f:ef:68:ff:a1:a3:16:84:1b:e3:00:
d5:b6:00:4f:bb:fb:f4:86:f0:e8:cc:4a:02:44:fd:
87:39:6e:3f:80:b8:ab:39:70:a3:ab:f5:7f:f1:cd:
ed:bc:d4:65:6c:1b:42:52:03:c5:6b:48:31:7e:51:
db:1f:78:05:47:c3:0c:65:ef:67:ba:f1:ec:17:72:
60:62:82:f3:9c:3b:ce:ad:54:c3:c2:43:f2:c9:b0:
b8:30:92:ad:14:3d:4d:8e:6d:c0:f8:3e:95:f4:7e:
e2:10:a1:f8:63:2c:6e:c2:9b:aa:fa:12:c8:7f:58:
03:f9:cb:bc:1e:23:fc:83:c8:7f:94:d5:af:92:63:
04:f4:4a:9f:66:28:e8:b0:33:45:58:79:8d:07:36:
20:07:86:fd:cc:d7:56:3f:3a:f2:a1:f8:33:11:c1:
0c:00:c8:78:4c:c7:2c:70:d7:8f:6d:be:0a:29:d2:
31:90:04:bd:84:b2:7b:1d:aa:ad:20:9d:25:fe:d8:
75:97:55:e8:b5:e1:e3:f7:5e:c8:f3:0e:6b:2e:d4:
07:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2D:C5:FC:6F:ED:81:3F:A5:19:D4:97:BC:57:55:55:E6:7E:02:D0
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:ab:dd:0e:be:0f:da:17:97:73:68:81:e4:8b:f5:0d:cf:7d:
6c:e9:d9:76:11:85:e4:3a:f4:84:d1:7a:8d:5e:31:c1:1e:fd:
b9:50:18:55:48:54:60:ef:c9:87:5f:ee:8b:93:c2:02:d9:98:
3c:0b:46:c8:e3:10:f0:01:0e:82:cb:98:aa:19:12:b0:3c:1e:
a9:fb:5d:68:c8:6d:ec:1f:4d:16:7a:a3:9f:3b:d7:1f:0e:79:
85:30:9b:7b:7f:86:79:c3:88:83:0d:eb:e7:1a:27:7d:2a:ee:
18:3d:da:7f:89:7f:e2:1e:71:31:1b:f4:2f:e0:87:20:49:5a:
a7:8d:6f:75:39:6c:fe:c3:5a:d5:f2:dd:ac:33:2f:15:f5:2a:
02:45:d4:c8:e0:9e:81:63:24:db:6d:e5:4a:7f:5d:ea:8a:fd:
c9:ab:45:98:3d:23:f3:fc:47:ac:2a:06:8d:f0:35:04:4a:1b:
19:6c:33:34:83:58:62:2e:f1:76:79:af:e1:06:dd:0c:cf:fa:
73:75:a1:52:49:39:52:16:8a:22:32:75:c8:52:f2:5e:d6:78:
66:fb:f3:b2:e0:74:8d:71:48:f9:6b:84:bd:51:60:9a:25:14:
75:9c:60:d3:61:ac:87:10:cd:28:34:09:ef:0b:94:02:e1:82:
f5:cf:a8:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:38 2025 by rpki-client