Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
File: o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft (raw, json)
Hash identifier: TN9D+KlejvDTPMyaaxc2q1W5Fq+Xut42DetU6/PCW2g=
Subject key identifier: 28:42:ED:66:31:37:06:80:55:90:7A:33:C3:D1:8B:61:60:89:A2:20
Authority key identifier: A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
Certificate issuer: /CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Certificate serial: 0194C3BEB2C9A91E7AD53DE44BD385B23563
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
Manifest number: 058C
Signing time: Sat 01 Feb 2025 23:00:42 +0000
Manifest this update: Sat 01 Feb 2025 23:00:42 +0000
Manifest next update: Sun 02 Feb 2025 23:00:42 +0000
Files and hashes: 1: borZkxzd7Q70fU1OWvln2Q1-HRc.roa (hash: WT5cBwBGRYqcO3GRfgSJfVkJ2Niz57/GzD/KCZQzgos=)
2: o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl (hash: bkMXVR93TYfj05SFsHSDeDOU9h8IunVoW6nvUZOtIqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:b2:c9:a9:1e:7a:d5:3d:e4:4b:d3:85:b2:35:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Validity
Not Before: Feb 1 23:00:42 2025 GMT
Not After : Feb 2 23:00:42 2025 GMT
Subject: CN=2842ed663137068055907a33c3d18b616089a220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:26:65:91:b1:be:e8:4a:a1:08:39:30:3f:46:
7e:be:7b:7e:83:b2:b4:3a:fc:45:90:cc:2d:01:09:
5b:20:84:9c:9a:73:c5:a8:52:6a:3a:d2:3d:04:f1:
1b:0a:83:6a:44:89:58:32:d1:fd:fa:2a:60:9a:23:
71:7f:e7:78:69:80:db:61:ef:ea:5c:32:66:d4:3a:
77:b2:22:52:ca:e1:b7:41:f6:e3:0f:22:79:fc:a9:
7a:e8:59:2b:51:92:32:eb:b8:a9:49:b0:f7:2a:bc:
7f:65:a3:2d:b2:e8:0f:76:86:d1:aa:81:a4:ff:bf:
3f:56:9c:45:f0:e2:57:ae:ba:a1:d2:ba:00:a4:47:
45:2a:c3:51:53:c3:d6:1e:a6:16:43:8d:2e:cf:4a:
40:71:d7:bd:1f:93:f7:34:59:f5:31:75:d8:06:47:
ea:56:b3:06:26:1e:a8:50:6d:5f:bc:e6:25:21:81:
92:d4:44:64:b4:c1:e8:4c:95:2a:24:b1:e2:2d:4b:
71:cc:d8:9c:9b:40:dd:ca:33:dc:b6:27:8a:73:d0:
5a:9b:99:09:38:b9:6d:fa:f9:a1:65:58:68:5f:66:
49:f7:90:cc:30:07:62:03:b4:3a:6c:d9:cf:51:35:
35:66:fd:04:b2:7d:f4:06:1f:6c:af:f5:0e:81:59:
a0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:42:ED:66:31:37:06:80:55:90:7A:33:C3:D1:8B:61:60:89:A2:20
X509v3 Authority Key Identifier:
keyid:A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:2a:53:41:64:c0:7d:87:c8:bd:3a:ae:67:0e:3a:4c:37:07:
77:19:12:66:04:3d:f6:91:b9:a8:84:f0:9f:58:25:ee:79:f4:
ee:46:ea:8d:3d:c8:fb:e9:ac:65:36:bf:a1:2a:bb:42:13:10:
55:aa:0d:24:0a:83:37:21:18:e0:92:77:b2:60:c2:b4:a3:e4:
a4:41:27:e9:b7:56:6b:5d:28:06:b5:e5:a9:59:9e:f5:d3:ad:
4c:2c:6c:2c:a1:85:41:a3:96:eb:d2:fe:e8:90:b1:b8:b0:34:
c3:fc:b6:89:52:87:61:f8:cc:7b:5c:da:5a:99:e8:1f:d3:2a:
6b:0b:5c:92:8b:75:24:0a:56:ba:ae:26:01:8a:f7:18:b4:3f:
64:17:98:a6:05:ab:87:f9:8d:dd:a0:ef:41:59:5d:18:25:53:
e9:51:49:33:19:89:49:34:67:f3:17:54:39:c2:a3:cb:92:b5:
89:76:e8:c8:e9:42:f9:eb:8e:52:6c:78:6f:94:2b:6b:57:53:
4e:f5:75:3b:76:ee:2c:bf:ee:bb:27:fd:13:00:fe:1e:30:c7:
da:44:49:b2:c9:89:94:fe:1a:72:09:a6:82:b9:0e:2f:91:c5:
53:5c:21:16:31:de:35:ef:ff:07:1a:44:8c:95:09:12:ff:b1:
2e:d9:dc:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:20 2025 by rpki-client