Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
File: OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft (raw, json)
Hash identifier: VwOqXcE57RN90WaNHFIw7/ZfzWiJ/Eb1q/MxXtTcXUc=
Subject key identifier: 88:2C:59:DE:D3:33:03:C6:68:E4:1E:20:C5:64:E6:7C:1F:24:54:DD
Authority key identifier: 3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
Certificate issuer: /CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Certificate serial: 0194BB296CB2DC2F2ACA08F12FF2C6FFFFD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
Manifest number: 045C
Signing time: Fri 31 Jan 2025 07:00:41 +0000
Manifest this update: Fri 31 Jan 2025 07:00:41 +0000
Manifest next update: Sat 01 Feb 2025 07:00:41 +0000
Files and hashes: 1: OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl (hash: PAbHjor5pgb5ebEwx7RWmT6YbVtC11hhwuRDzb+6e1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:6c:b2:dc:2f:2a:ca:08:f1:2f:f2:c6:ff:ff:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Validity
Not Before: Jan 31 07:00:41 2025 GMT
Not After : Feb 1 07:00:41 2025 GMT
Subject: CN=882c59ded33303c668e41e20c564e67c1f2454dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cd:c5:4f:1b:2a:cf:90:42:ad:0e:e1:b8:3d:
98:35:8f:69:91:da:e9:c0:d6:7f:20:90:7d:b7:cf:
f0:69:3a:5d:99:71:3a:c0:31:79:04:4a:78:9f:76:
58:af:8e:33:df:ab:b9:99:76:f7:a2:16:6d:c1:c4:
8f:e9:82:05:2b:88:71:16:a5:73:d9:9e:3a:99:9c:
b6:aa:0e:27:80:67:31:cf:65:75:03:36:a7:f1:5e:
54:8f:a8:00:57:c6:2d:e2:c2:d8:69:18:08:c9:83:
a8:fe:66:35:a2:14:be:63:04:35:20:f2:f8:71:cb:
e1:17:50:4d:91:46:07:26:20:ca:ce:4d:44:07:24:
10:ff:af:da:76:d4:a4:23:88:7c:25:aa:69:f4:8f:
a9:26:20:14:7c:8c:19:cf:75:db:b1:7d:b2:1e:6e:
b2:70:5b:50:90:11:2d:68:44:39:87:b0:c8:a0:24:
95:cd:44:3d:1e:2e:91:4b:a9:e2:22:9a:af:ba:13:
1d:42:a5:da:aa:72:74:28:e4:b5:55:59:d7:59:8b:
70:d4:8d:4a:cf:89:f3:69:01:7d:64:4d:06:83:1c:
0a:a1:68:0d:3f:89:7a:9e:ef:e9:af:84:76:f9:76:
3f:b0:e4:4e:dc:0b:32:b9:a1:61:a4:e9:28:cb:c3:
34:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:2C:59:DE:D3:33:03:C6:68:E4:1E:20:C5:64:E6:7C:1F:24:54:DD
X509v3 Authority Key Identifier:
keyid:3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:1c:6f:54:24:00:bf:21:cf:78:a9:4d:2b:f4:5b:8f:d0:7e:
1a:76:93:a1:83:e7:35:40:9a:d1:b8:01:b7:a5:04:5f:61:d4:
2d:d0:25:62:f3:5b:3c:66:ef:5a:e0:92:bc:79:9e:36:ec:bf:
d5:06:12:fd:7a:fc:ed:5d:05:92:29:f9:17:76:50:e7:d4:03:
55:fe:b5:40:43:66:b3:63:ef:5b:35:57:58:4d:d8:50:2e:a7:
42:9e:88:e9:69:24:95:cb:5a:72:d5:97:90:83:bd:6f:ca:55:
80:68:d7:46:29:3b:13:25:62:4c:99:70:e1:2c:56:6e:91:4f:
c7:f6:c2:f4:83:31:cf:fb:4b:ed:7b:fd:00:10:b4:3e:7e:60:
e2:70:56:91:1d:f4:28:c6:29:38:50:01:2d:b8:9b:83:80:b3:
17:95:48:cf:b5:20:4d:23:3b:55:ee:ae:f8:ad:fe:38:0d:05:
0e:03:11:ea:73:1d:f2:c8:dd:54:74:78:e6:b3:28:09:43:bd:
d3:79:38:ea:c0:37:16:45:4f:3b:77:9d:74:36:41:6b:cd:44:
c7:fd:5f:31:fa:6f:ef:f6:28:77:3a:11:aa:4e:99:d4:82:29:
ce:f5:d7:d5:02:2f:93:2f:83:83:95:4e:e8:9d:44:be:29:0b:
cc:6c:2f:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:40:06 2025 by rpki-client on console-fra.rpki-client.org