Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft
File: OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft (raw, json)
Hash identifier: Yl0pkGQTLtZCJBFr2Y9QeJbMur7/znjSjqQ9PVwN/AY=
Subject key identifier: 3C:76:C3:C4:AB:FB:CA:48:A2:46:DB:8A:34:B7:28:0B:1D:8A:16:AA
Authority key identifier: 38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
Certificate issuer: /CN=38203463eb944b25c65135ca47bdbdab646f3984
Certificate serial: 0194BABBAAA34B610FC4635AC84243BB03C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft
Manifest number: 1168
Signing time: Fri 31 Jan 2025 05:00:48 +0000
Manifest this update: Fri 31 Jan 2025 05:00:48 +0000
Manifest next update: Sat 01 Feb 2025 05:00:48 +0000
Files and hashes: 1: 0Fmh8eaTe-TA8TzJaqV0xDv1Pzo.roa (hash: ZxN3vaamtDqMo8xYPJBI33oBeaqJ8QIz0amzm/bnvtg=)
2: 3nej7O_5-sZXCWeuqPyGbja9XnQ.roa (hash: p+MNFJ74eHqjwkPNS5+3QDf8dfQpJUlMjkJWwIsIN5s=)
3: JpI0mKHoKJGb5HpwhqpgQJ-989w.roa (hash: +p1PcccuIrfXBOI8p25PVV972uHT5dceE6dg0Tn0L/g=)
4: OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl (hash: PnplNautKTpxyDy+xi+X9+/NN4J+z7GJ1zIMLZv5Ge0=)
5: Q718Z9XRXwbb8eAv-JSYxNy8m3E.roa (hash: QwKiyK2H3mBEUzLEautBF28TXwWRoI+nh+WAF8i9ayk=)
6: eapLNVKWkPJvIKSSw8FvjnbqKM4.roa (hash: lQyg7ma6RsIJVyHbW0BuPsXW31hRi/B1a2UZgfzLbWY=)
7: flTVx8-F7E37FHcVoN5708sXexM.roa (hash: snTHoXZxUjfO9kURa3StUkh2LzhC8cP2m56/uoBtpVA=)
8: itNeHRmlhkmkLNFMeFLLpwNO4FY.roa (hash: iZAIvlpDGBx0E4icQgD8R/hQnWve6QmLhqITJu2cuoY=)
9: ktpnhSV94n1dgI9-LO5orxsroMo.roa (hash: HdTZITsdNE12a7HbwFoAmzx8Exmybo0iwACkTzBDWZ0=)
10: p6yu9K0prb-3wy95x-qc7KcMywQ.roa (hash: bNVvwouaPK4oyavhTkisO8oVhR1iolZntv1z6WFieUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:aa:a3:4b:61:0f:c4:63:5a:c8:42:43:bb:03:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38203463eb944b25c65135ca47bdbdab646f3984
Validity
Not Before: Jan 31 05:00:48 2025 GMT
Not After : Feb 1 05:00:48 2025 GMT
Subject: CN=3c76c3c4abfbca48a246db8a34b7280b1d8a16aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5e:1a:36:12:57:05:d7:74:61:84:48:15:cc:
ac:ec:b8:51:ee:38:e1:3e:15:51:a8:64:d5:89:17:
a2:df:1a:62:c7:ad:98:4f:ce:af:e0:a3:a8:71:e5:
a1:c9:63:3d:4f:9e:db:00:48:4c:2a:17:99:24:c7:
90:5a:73:8b:5d:49:e1:f4:d6:4e:01:04:a6:a6:e1:
5f:17:6d:e9:8a:08:aa:ed:19:90:d6:e5:79:f0:92:
62:f5:bf:19:7d:b5:3e:9d:1f:c8:de:d8:ed:e2:a1:
d4:9d:45:c9:2e:1d:02:f0:49:08:a9:1a:b8:8a:f9:
82:ed:bd:24:fd:ea:1c:db:f5:8b:e3:42:6f:a6:b1:
13:e1:37:9c:31:f5:96:f7:ec:70:d3:2a:2d:ff:98:
ce:b5:b0:0b:ed:b1:1e:43:89:e0:c8:77:32:71:b6:
05:2e:c1:1e:7b:0b:52:d7:55:0c:24:90:54:21:52:
4e:5f:76:bc:4f:04:bd:db:29:92:aa:b7:11:b1:77:
03:57:08:10:66:e2:44:c0:21:8e:5e:22:0b:60:50:
ee:33:e7:3c:c9:0c:2f:5d:6a:22:11:e7:b0:b7:2d:
09:86:cc:30:93:55:77:5a:b4:ab:df:b0:dc:fa:0c:
82:7f:a8:e3:34:59:4d:9d:dd:f0:fa:b6:1f:ed:51:
59:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:76:C3:C4:AB:FB:CA:48:A2:46:DB:8A:34:B7:28:0B:1D:8A:16:AA
X509v3 Authority Key Identifier:
keyid:38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:93:f5:51:a6:30:b8:4a:f0:99:36:f5:f9:c5:27:df:2a:23:
53:96:c3:6b:8a:0f:2b:6b:1b:71:fb:9e:a0:dc:31:27:77:7d:
b3:9d:f1:3c:d6:4b:11:bb:cf:87:cf:7f:09:51:3c:ca:95:df:
65:16:80:62:bb:0e:cf:ec:b0:26:de:25:83:74:ae:11:79:9f:
bb:17:cb:af:8b:9f:b0:9c:62:a5:24:18:9c:15:5b:23:65:fa:
6a:3c:07:66:b1:52:a3:5b:60:f9:a5:f0:aa:ed:36:84:ae:04:
37:de:7e:ee:fc:36:66:e7:a9:e5:41:58:06:49:cf:99:06:9e:
c2:51:e4:53:3e:c9:d8:0a:9b:3a:80:bf:78:92:20:48:ec:af:
83:07:f5:98:b5:dc:83:69:db:f9:2d:21:e3:7b:62:46:3d:59:
9d:34:e5:cd:45:88:cd:21:28:70:13:4e:cb:01:be:41:8b:7c:
dd:8a:74:5b:2b:fb:67:1a:10:04:a4:65:87:82:22:b8:73:f4:
6b:8f:76:95:c9:6c:40:80:55:92:55:45:a5:eb:d7:d9:04:dc:
e8:c9:21:bc:bc:ea:1c:0e:59:ea:3d:7a:4e:0e:7b:fb:27:b9:
56:07:83:6f:3f:ca:83:56:58:3c:e0:f9:ef:61:d2:81:4a:95:
b7:f6:7b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:32:56 2025 by rpki-client on console-fra.rpki-client.org