Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
File: oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft (raw, json)
Hash identifier: MCiuj/9a/mxdhBZAvfsKF3TVN2gscjxPFh0fGgZuyU0=
Subject key identifier: 6A:DC:37:E7:31:FE:D5:F3:98:53:8A:FA:FA:0F:57:AC:A6:2F:70:79
Authority key identifier: A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
Certificate issuer: /CN=a1655282be419d21222b506fb7a368c3fe5db23d
Certificate serial: 0194C4D1792C2AA236DB0BF9968BFFDD933A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
Manifest number: 142E
Signing time: Sun 02 Feb 2025 04:00:49 +0000
Manifest this update: Sun 02 Feb 2025 04:00:49 +0000
Manifest next update: Mon 03 Feb 2025 04:00:49 +0000
Files and hashes: 1: SxgKNPaYJVhAK36SOSTuyxJmYzI.roa (hash: iBEUhnRScZ+rajzC9bqU9rcXbnYIQMvrpQOY+tW8FQc=)
2: oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl (hash: zCE9G3CXOonIuYa/XH5/Hp7rIr17HJpF3ORKrLcUMyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d1:79:2c:2a:a2:36:db:0b:f9:96:8b:ff:dd:93:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1655282be419d21222b506fb7a368c3fe5db23d
Validity
Not Before: Feb 2 04:00:49 2025 GMT
Not After : Feb 3 04:00:49 2025 GMT
Subject: CN=6adc37e731fed5f398538afafa0f57aca62f7079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9f:a3:df:9f:db:88:a5:b9:be:96:61:f8:a3:
16:eb:61:5e:6c:0d:4b:a5:25:60:13:15:8b:f7:91:
0c:78:5e:3b:97:8e:82:dd:6d:b7:68:6a:d4:62:3c:
29:17:79:0e:03:7c:e2:f5:5f:c2:1f:bd:48:fc:14:
ef:0e:ef:0b:6f:60:bf:84:41:d1:ae:d7:c8:41:b5:
d0:83:bd:1c:72:54:f7:63:07:7d:47:52:4a:c3:fe:
f2:58:5e:25:c0:06:42:4b:f2:30:d6:ed:33:90:01:
d9:ed:c0:76:58:0f:bd:4b:34:fa:a8:b9:68:c6:5e:
d0:80:ca:24:d9:86:20:b9:8c:de:28:38:39:83:7d:
dd:a5:64:21:eb:51:de:dc:14:56:6e:49:69:2b:af:
4f:d7:7f:5e:94:a8:db:eb:36:69:13:63:b0:99:ab:
08:2b:2f:c3:12:84:2e:7b:4f:1e:9c:d5:e7:c0:89:
e6:20:b5:04:1c:22:ce:ad:c1:db:e4:87:ea:20:b6:
ea:af:0c:cb:c3:82:30:14:f9:c1:72:61:ea:7a:48:
6e:64:d2:03:8b:e2:ff:bb:3c:a8:a1:47:fe:11:c6:
92:ec:ad:e8:28:81:60:f0:dc:7c:9f:4c:72:46:f8:
f4:1e:10:05:8f:9f:2f:cb:cd:30:3c:fe:74:1f:4f:
7b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:DC:37:E7:31:FE:D5:F3:98:53:8A:FA:FA:0F:57:AC:A6:2F:70:79
X509v3 Authority Key Identifier:
keyid:A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:cb:92:b7:9b:a6:dc:87:1c:70:4c:f8:08:27:e6:8f:48:78:
ea:fb:66:24:a5:43:9a:c5:e8:1a:0a:69:82:aa:cb:1b:fe:b1:
16:52:31:32:e0:41:fc:b1:22:2c:1e:62:be:15:35:f3:29:0e:
66:26:53:40:fb:de:0e:6b:12:d5:45:4a:07:53:44:b7:de:47:
b9:5a:cd:c6:bc:33:80:59:1f:a7:3f:12:0e:dc:d5:1f:38:fc:
ac:fe:ad:2e:db:68:d9:a4:5f:7e:59:c2:1e:06:db:76:1b:ff:
bb:db:af:8c:bf:0e:d3:86:96:e1:d4:4d:3a:8b:9a:84:f6:49:
60:0f:d6:51:5e:6c:7d:a1:a0:cf:4d:b9:c8:32:0d:cc:7c:82:
ea:c2:b6:0c:60:dd:9f:07:7f:d7:4b:08:54:cb:ad:77:9d:41:
65:1b:f9:88:2a:b6:de:ba:7a:c0:dd:1c:d1:62:1f:3f:98:a5:
bc:8b:d7:17:36:a9:12:94:15:92:ed:d0:a2:7e:93:c2:10:80:
9e:a6:3c:3e:34:43:f6:8d:8d:42:7d:34:7d:7d:a2:46:64:13:
c2:83:24:92:8d:3e:2e:8a:91:6a:70:22:86:6d:87:f2:16:08:
e6:75:91:cc:4b:27:b4:8d:ef:ee:a1:6f:ca:55:15:0f:5f:3b:
05:56:c7:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:54:57 2025 by rpki-client