Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: gTeRv3I7SIAyI8L2fM1OI+/hicnj8vq/C22m1ju9abs=
Subject key identifier: C5:18:BD:E9:98:E6:E8:EC:52:51:11:FB:E9:8F:E7:C6:13:06:94:DF
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 0194BAF2091F38BC8CE0334B8FADC8262DEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0A66
Signing time: Fri 31 Jan 2025 06:00:11 +0000
Manifest this update: Fri 31 Jan 2025 06:00:11 +0000
Manifest next update: Sat 01 Feb 2025 06:00:11 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: iPEbOlTcNALdmDdmaewpKqAZeDnHPMTy4MJ9095nb5o=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:09:1f:38:bc:8c:e0:33:4b:8f:ad:c8:26:2d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Jan 31 06:00:11 2025 GMT
Not After : Feb 1 06:00:11 2025 GMT
Subject: CN=c518bde998e6e8ec525111fbe98fe7c6130694df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e0:74:39:2a:74:76:c6:4b:c7:e3:8c:16:27:
71:a7:a0:8e:a2:38:d5:d1:fe:c2:be:a6:e1:96:70:
fd:73:9a:04:41:36:90:5b:6e:4f:46:53:01:f7:9a:
0a:cc:8f:fb:4d:59:5c:4a:f5:10:40:e0:a7:6d:ee:
46:a0:d4:0f:99:ef:98:ff:a5:76:cc:d3:66:53:a6:
09:4d:65:0a:2a:61:a2:d4:2e:e1:66:2a:0a:f8:18:
93:ef:79:1a:9b:d2:01:b2:3b:36:9e:f9:a8:cc:12:
b0:b2:ec:c2:ba:25:95:d6:4e:8f:84:6a:ae:48:6e:
aa:f7:12:2e:f2:cc:dd:20:b8:8a:e7:4a:e8:f5:b8:
ce:72:0c:ef:9e:91:9e:a7:67:59:b0:42:83:13:b8:
7c:1f:5d:a8:50:c0:24:de:f5:54:f1:04:c1:31:30:
ad:d4:3b:80:77:49:37:45:4a:3a:c7:0e:6f:b2:ae:
a5:b2:9a:66:1a:a2:05:9b:d4:98:a9:69:c4:77:1e:
8a:c8:b0:4c:84:78:31:12:45:49:be:07:d7:ac:88:
36:0f:00:2b:dd:98:67:c2:b5:6d:e7:a4:e7:a1:53:
65:77:76:91:4c:7e:24:df:db:45:75:49:cc:7d:17:
22:d1:73:2d:d1:7a:0a:9a:f1:8d:cd:27:f3:85:b2:
5d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:18:BD:E9:98:E6:E8:EC:52:51:11:FB:E9:8F:E7:C6:13:06:94:DF
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:22:dd:d8:7f:96:2b:06:fa:ad:54:2d:9b:be:89:74:b3:26:
ef:9c:89:35:38:55:dd:0b:e7:56:fa:42:4c:aa:ef:e6:32:2a:
0a:35:f6:83:80:d0:4a:26:79:03:04:27:d0:72:8d:8a:e8:de:
60:d5:27:9f:28:4d:17:54:67:79:17:c2:fa:5e:0c:8d:cb:12:
83:18:5c:8e:be:4c:2d:d3:7e:27:e5:90:2e:c7:47:de:4d:8e:
5a:32:a4:46:bf:3e:aa:ea:51:d8:d1:1b:08:4f:ee:a8:6e:11:
a4:6d:aa:21:60:c2:77:93:ae:f6:07:e3:f7:fc:f7:f8:0f:82:
5b:62:38:1b:83:7c:d1:13:8f:55:c7:77:ea:65:ef:ec:f6:fc:
7d:c9:fd:ab:8a:74:d6:13:84:22:d0:7c:cc:d4:0f:69:a3:ed:
bf:87:99:92:b8:b9:41:d6:16:33:cd:f6:ab:4e:ad:64:d2:8e:
54:1a:0a:ed:3d:f2:03:45:ab:f6:5c:46:89:f1:fb:38:6c:d9:
38:8a:7e:45:74:b0:9d:05:09:c1:08:44:9e:58:a0:6c:f4:55:
b9:67:64:36:3c:aa:99:b0:37:af:c4:b5:b6:9c:a0:7e:2a:56:
52:53:6e:8c:79:b9:04:9d:21:8c:6a:fc:66:14:2a:5b:86:74:
2a:43:52:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:11 2025 by rpki-client on console-fra.rpki-client.org