Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
File: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft (raw, json)
Hash identifier: VLbDLpsW2lzTDc30lnIYxW7iU6Q9AzLdwc10lhJ4tBY=
Subject key identifier: 2C:6B:AE:EB:C4:13:2D:C1:E3:20:71:8A:00:42:F9:47:1C:90:88:E3
Authority key identifier: AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
Certificate issuer: /CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Certificate serial: 0195116BD7B3EE1A4D6EA18E83955E39DA09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
Manifest number: 0133
Signing time: Mon 17 Feb 2025 01:00:34 +0000
Manifest this update: Mon 17 Feb 2025 01:00:34 +0000
Manifest next update: Tue 18 Feb 2025 01:00:34 +0000
Files and hashes: 1: HlRrYVzs80ZJA5_JZ3csPGXIkEY.roa (hash: 2WA22A/U8/r4tDX+UDoYIX+va554GCdeOFSCw5V25j8=)
2: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl (hash: 6lGXyW7vro6x0Ww5SFOWkmt5GWFp0jmnTOKYu9zQ19k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:d7:b3:ee:1a:4d:6e:a1:8e:83:95:5e:39:da:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Validity
Not Before: Feb 17 01:00:34 2025 GMT
Not After : Feb 18 01:00:34 2025 GMT
Subject: CN=2c6baeebc4132dc1e320718a0042f9471c9088e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:69:e0:ba:9a:6f:81:6b:44:c9:27:ff:08:b5:
65:34:d5:5b:2c:f8:e5:2d:77:b0:71:51:d3:6a:cc:
03:ad:b1:81:7b:56:fa:ae:2d:0f:6f:ea:16:a4:52:
70:1c:74:6b:00:ab:e7:fb:7d:f9:69:e1:e9:63:54:
d6:93:c5:07:ec:73:40:3a:99:df:26:ae:c9:b2:ee:
b7:a4:bc:db:91:86:82:4a:0f:96:cd:65:0a:38:1b:
20:a0:c1:39:1e:a3:01:e5:5b:68:ed:7d:78:c1:57:
f0:88:bc:89:dd:16:b4:82:ad:a7:bb:1d:a3:35:51:
ea:56:b1:93:41:41:35:f4:a2:70:11:9c:80:c7:61:
30:33:17:d2:65:4e:98:b8:be:6a:ad:46:9f:83:79:
c5:ce:c3:af:fa:e8:ac:bb:a8:42:29:ec:3b:eb:5e:
fa:8d:be:e3:6e:cd:7d:cd:bc:b8:2c:db:51:84:9a:
dc:7f:17:97:19:38:82:ec:2a:42:95:a5:74:ec:7d:
44:1d:03:1b:33:3e:e5:fe:ec:00:44:b8:60:69:32:
92:2d:a9:8a:bb:b1:f3:d9:c0:78:79:02:b6:b0:70:
62:ed:d0:61:63:63:1f:dd:3c:e5:99:a5:a7:d6:a8:
f8:d7:76:90:77:27:f0:57:b0:63:58:00:bf:5f:c3:
52:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:6B:AE:EB:C4:13:2D:C1:E3:20:71:8A:00:42:F9:47:1C:90:88:E3
X509v3 Authority Key Identifier:
keyid:AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:b9:7e:de:e1:ef:54:86:fe:ca:fd:74:32:97:0c:a0:36:c4:
b7:47:81:cf:32:35:55:27:1c:98:42:cf:aa:2e:e2:fc:25:bf:
29:c7:27:bc:3e:6f:77:d3:95:32:98:a9:d5:69:f5:b5:5a:69:
b4:7b:bc:6d:8d:cc:c9:d8:d1:a9:aa:43:2f:cf:ca:33:71:14:
ff:e2:8a:31:3d:13:b9:38:a6:b9:c2:7f:09:56:9c:5b:9f:e9:
eb:94:e1:91:ba:12:d0:47:ac:32:fc:2f:0e:b2:8f:8e:6e:0a:
42:c7:97:78:a9:61:af:77:29:90:66:f1:e7:8f:45:10:0e:9f:
81:b6:27:3c:2c:c3:09:73:06:3a:55:f2:c3:64:34:b1:e9:74:
65:fc:5d:45:b6:45:dd:2a:ee:f6:2e:ec:17:04:b9:fd:25:d0:
ec:10:6c:78:29:84:fe:db:47:c7:8b:f4:17:94:38:b4:f6:4a:
92:5e:aa:b6:c9:a2:d3:13:c6:b1:33:2c:74:6f:25:a9:92:b9:
b9:ef:f2:66:73:ad:4e:53:42:c7:27:23:5c:48:7c:a4:59:74:
b1:be:9b:7c:50:75:c0:04:0b:75:48:ca:40:01:b1:05:12:de:
2a:6e:35:df:b4:9b:58:e2:3c:75:d3:1b:a9:df:86:d0:ce:11:
01:e8:3e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:27 2025 by rpki-client