Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
File: USOacCubRBGfwO-wBSTn3RLeqPY.mft (raw, json)
Hash identifier: GKkgqk7qHlIyvgzfGjMu1u4eB/UyxrW6GRiMf3X+ZoM=
Subject key identifier: 34:8E:AE:2A:D1:75:AF:B5:01:E2:D3:41:B2:5F:15:2A:55:C2:6A:8E
Authority key identifier: 51:23:9A:70:2B:9B:44:11:9F:C0:EF:B0:05:24:E7:DD:12:DE:A8:F6
Certificate issuer: /CN=51239a702b9b44119fc0efb00524e7dd12dea8f6
Certificate serial: 0194BA847F939ED12E09C2F52B1CA31D3A54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
Manifest number: 10BB
Signing time: Fri 31 Jan 2025 04:00:33 +0000
Manifest this update: Fri 31 Jan 2025 04:00:33 +0000
Manifest next update: Sat 01 Feb 2025 04:00:33 +0000
Files and hashes: 1: OA9cjZfM9pcs189DQL3OK7PNscQ.roa (hash: k0wLUi6w93vs71XE/cCMCBIvwa+yuzcb+Mk+I80oin8=)
2: USOacCubRBGfwO-wBSTn3RLeqPY.crl (hash: eF4NnKgRvr1RNTmF8B3h9dHijvPBc/PmNBp/t/Im5Ok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:7f:93:9e:d1:2e:09:c2:f5:2b:1c:a3:1d:3a:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51239a702b9b44119fc0efb00524e7dd12dea8f6
Validity
Not Before: Jan 31 04:00:33 2025 GMT
Not After : Feb 1 04:00:33 2025 GMT
Subject: CN=348eae2ad175afb501e2d341b25f152a55c26a8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:f5:00:fb:c7:ff:04:50:9d:04:bf:3e:aa:1f:
5b:c9:12:39:4d:9a:94:6c:00:a4:b2:8d:13:a7:9b:
8e:48:31:8f:f0:10:f0:86:b4:99:b9:e0:47:88:d2:
05:50:b5:db:10:b8:f1:29:9c:38:13:43:c0:83:92:
bd:bc:8f:f5:99:6b:49:5c:73:33:e5:fd:40:08:a9:
82:fe:e1:ed:f6:5c:d4:cb:5d:d2:96:a2:58:4f:94:
81:0e:93:f3:13:c3:fa:a5:cc:15:3a:17:97:df:1d:
11:ec:d0:eb:78:7c:bc:05:58:8d:67:54:9c:d8:16:
e7:9a:71:86:a0:27:a3:3b:1c:7e:82:86:0b:de:79:
cf:86:81:12:07:4f:1c:25:19:9c:87:0a:46:64:f0:
37:9d:80:ad:8d:e6:eb:84:1f:a8:93:1b:22:c9:b1:
4d:09:ea:38:f1:70:ea:4a:c1:7f:01:a4:0a:a4:9b:
e5:67:0e:b9:42:78:5a:73:0d:dc:f0:89:6d:c5:d5:
71:ac:48:91:35:87:a7:03:46:f1:9c:d1:f3:53:25:
36:21:f2:13:7e:fe:20:ff:81:ac:d1:b9:17:87:91:
c1:cb:c9:82:aa:75:a2:53:a4:1e:a5:58:37:8a:7e:
a7:c9:37:be:f5:3c:e6:81:36:46:b3:0b:14:33:f0:
4b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:8E:AE:2A:D1:75:AF:B5:01:E2:D3:41:B2:5F:15:2A:55:C2:6A:8E
X509v3 Authority Key Identifier:
keyid:51:23:9A:70:2B:9B:44:11:9F:C0:EF:B0:05:24:E7:DD:12:DE:A8:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:10:67:98:d0:06:f1:4b:47:7a:35:e0:58:f3:f9:c9:32:ca:
76:87:c3:0a:58:e3:e9:51:9d:ed:1a:61:77:04:cb:09:b6:a2:
f3:a5:23:a7:c3:97:d8:b4:93:45:d3:01:e3:be:2d:65:ff:a2:
a8:38:4c:75:d3:0d:0f:f6:c9:24:13:1e:68:7f:f5:b0:75:68:
2f:a6:69:66:7b:59:5e:97:81:86:83:3a:bc:94:91:de:26:a7:
4d:5a:db:ac:39:76:34:db:bb:c3:8d:b6:d6:10:9d:d5:32:8a:
c0:8d:5a:8f:9d:8d:ea:e4:42:c4:bf:a6:2b:ab:6a:5a:45:b0:
a0:2a:e7:3b:f0:99:9e:07:a0:ba:e4:99:47:5c:3c:f3:16:7c:
a8:fd:f1:dd:3f:2a:62:77:1a:31:36:ae:ec:61:fa:e5:d5:fa:
f4:87:93:9e:ea:74:ee:e7:39:c4:9e:33:60:c9:17:56:07:32:
16:28:df:04:3b:ef:51:c1:ab:f0:eb:fa:a1:26:ef:bb:51:5c:
e9:8e:52:bc:58:5a:e3:d7:08:4a:4b:46:b2:e3:d0:cd:fe:b0:
7b:6d:61:1d:75:7e:6e:f0:27:c2:e3:e2:79:08:1b:8c:98:d5:
95:b7:bb:f2:17:0f:d7:d8:bb:44:89:08:bb:1b:50:55:b4:dd:
f8:80:4c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:42:20 2025 by rpki-client on console-fra.rpki-client.org