Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json)
Hash identifier: GpyLF+EGE66P23m5DG3/extPZnvz90c+A3sGxOa6NjU=
Subject key identifier: BD:B4:D9:60:DE:66:4C:6B:44:93:36:AF:04:85:AF:65:88:27:D3:42
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 019510C7644E4F88E78D0B9CED660177233E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
Manifest number: 0F94
Signing time: Sun 16 Feb 2025 22:00:57 +0000
Manifest this update: Sun 16 Feb 2025 22:00:57 +0000
Manifest next update: Mon 17 Feb 2025 22:00:57 +0000
Files and hashes: 1: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: rgRrIqxxdyPa0pLKdrUfkiY/ccU0JEC2eWkSPdyHeOE=)
2: lx4r-_of66D7nj4_JxEX4B7iGSo.roa (hash: nBmUpTvMg37xBiu7Iw7rIz0CmSBaScYekCzZq9oCvAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:64:4e:4f:88:e7:8d:0b:9c:ed:66:01:77:23:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Feb 16 22:00:57 2025 GMT
Not After : Feb 17 22:00:57 2025 GMT
Subject: CN=bdb4d960de664c6b449336af0485af658827d342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ef:3e:58:9f:77:3d:f7:da:b4:22:dc:6c:59:
82:44:72:1e:4b:77:d1:78:ba:f1:f8:4a:cd:0c:14:
c1:c9:55:fb:3f:00:67:99:52:e7:d4:ce:e6:77:d6:
aa:86:fe:d9:64:b7:cd:e3:b8:e2:6d:de:75:5c:28:
c0:13:c3:7b:2a:dd:c8:ff:2e:16:af:83:71:c4:f6:
00:dd:34:51:46:1c:31:30:ed:e7:1a:12:07:2c:e1:
27:15:75:03:58:b8:45:db:b0:79:2e:6d:db:63:87:
92:c5:78:ed:2c:fd:69:76:c7:b5:83:db:0c:24:b2:
a8:04:b0:2c:eb:05:3c:07:fe:47:4d:d0:e1:20:9c:
e3:10:af:bd:c8:c7:25:f2:d0:cd:58:68:e0:f5:d1:
ca:35:5d:59:3f:2b:5c:a4:89:97:e6:6b:86:38:59:
93:a1:3f:dd:9b:f8:f2:04:65:47:1f:00:bf:b5:28:
88:bf:65:3f:d6:f2:ff:4b:e4:bf:20:05:9a:a1:57:
6c:dc:b2:0b:1b:0b:c7:e4:bc:f2:c8:ac:fe:60:38:
37:0a:22:4b:cb:d6:f9:c9:d3:6d:c5:04:a7:12:69:
e3:04:8f:34:32:22:d4:48:4c:91:64:ff:aa:4b:ae:
24:21:74:c0:03:92:5c:8e:c5:8e:d0:9c:6e:39:12:
b9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B4:D9:60:DE:66:4C:6B:44:93:36:AF:04:85:AF:65:88:27:D3:42
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:bd:9e:5b:d6:ce:22:20:73:87:1e:12:1e:81:04:0c:5f:0d:
23:4a:9d:12:3f:11:73:9f:73:c5:9d:c2:20:e1:1b:70:36:7c:
e3:6d:08:ef:a7:e8:d5:a6:18:98:d7:16:ef:c9:5d:7e:c2:cc:
84:30:aa:ba:c9:c6:06:5b:01:2d:4e:66:e5:cd:f9:36:a4:f0:
a1:33:df:f0:3f:ab:24:d7:36:78:7c:a3:d3:81:91:c4:eb:fc:
68:b1:e5:a4:a8:76:ee:ff:87:9b:5a:87:ab:a4:55:66:b3:e2:
89:c1:2c:a5:3f:a4:a8:db:4b:d2:d7:4c:8b:5c:96:df:99:e9:
07:78:e0:6f:0b:d7:16:fc:50:04:64:d5:af:d4:c0:b3:81:a3:
61:e5:b5:e4:fa:74:1e:c0:ec:2a:89:04:5d:ff:62:d9:54:5d:
a6:d9:ef:06:fe:9a:55:cc:ca:f9:3c:e5:ea:fd:b4:a1:3a:d9:
dd:04:13:60:af:68:a2:87:0f:57:d4:e8:6a:af:76:49:59:5b:
4f:26:42:90:db:9b:32:ec:6f:e2:0f:fb:43:ab:d3:e1:72:68:
b4:df:b5:7c:25:00:78:0f:be:40:b6:21:ec:28:3f:47:e5:9d:
25:61:8a:be:85:d2:98:2b:f0:e7:09:4a:19:06:6f:49:cb:e0:
13:76:c4:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:34 2025 by rpki-client