Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft
File: OvdxDfit1ku5aI4PRYG-pn5ALGY.mft (raw, json)
Hash identifier: H+WT1lGvg4BjcDnEiNVKPaS93GhnBsFiZe4rdEIIt4c=
Subject key identifier: C4:24:9B:9C:90:CB:99:53:71:38:E6:52:F4:BE:B3:19:8D:41:B2:33
Authority key identifier: 3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66
Certificate issuer: /CN=3af7710df8add64bb9688e0f4581bea67e402c66
Certificate serial: 0194BBCE653615844974C49445601FF6D73B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft
Manifest number: 0961
Signing time: Fri 31 Jan 2025 10:00:53 +0000
Manifest this update: Fri 31 Jan 2025 10:00:53 +0000
Manifest next update: Sat 01 Feb 2025 10:00:53 +0000
Files and hashes: 1: 1-5V6RXgQOXjxU3mO34q_0PmmYk4.roa (hash: UBzppXP3Ubih2qJBoeebTWZSAjaul2dwW+uHzrrKrpI=)
2: EyL9qIdoOkum4j70O97owcKKNdo.roa (hash: CPup2t2Dcwh/1Zx2zcdDGMOwGKKSbKozTe/yHf2vibg=)
3: FlLUDtJLemuN_BKbJN1fJcTs1uc.roa (hash: 3dx+bvVn8Sv+QH7LBpP0VRkLuWwRZFyVuuQwWb9qaTw=)
4: OvdxDfit1ku5aI4PRYG-pn5ALGY.crl (hash: pwg/lfKazsGODaF/NPgZI5szLHUM50qkbVSbPMq8QBE=)
5: mdUceimjZwfVVG0REiUEooQJhAE.roa (hash: LzFwucR3C7CoRMDtQiS0SQDDS6RSOm6dTPZ+EmCdgOw=)
6: ozrTdpe1V6nWhIXc_uPJkbB3Ha8.roa (hash: 4/0gezw7oO9+Mipv3nHjnHIMLwCz0D23SE1aqFovk9Q=)
7: pz30gP5HXmvVhezEbR2M9x5jpYg.roa (hash: zMuCQqFnbVDZWipMHPrJQB2cNPEYXwDyxtFSxkBu5H4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 10:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:ce:65:36:15:84:49:74:c4:94:45:60:1f:f6:d7:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af7710df8add64bb9688e0f4581bea67e402c66
Validity
Not Before: Jan 31 10:00:53 2025 GMT
Not After : Feb 1 10:00:53 2025 GMT
Subject: CN=c4249b9c90cb99537138e652f4beb3198d41b233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:48:3d:22:a4:d0:d8:19:d5:0a:61:7b:a2:18:
87:db:6c:cd:34:dd:ff:3b:d7:df:e9:5c:4a:39:e7:
be:ac:7f:a9:28:af:c1:2f:1e:24:48:7f:bf:58:94:
3c:a1:55:51:cd:8e:65:53:bf:bc:f1:6e:13:2b:ca:
37:ea:58:51:70:df:33:3c:fd:9e:c1:f2:fd:e7:39:
03:f4:14:00:ea:30:f2:06:41:8d:b1:2c:39:d8:b6:
e6:29:db:98:c3:c8:1c:fe:9b:00:82:ec:7d:de:a5:
34:73:44:c5:cc:91:f6:22:d2:51:99:e8:04:35:9c:
d4:a5:d8:55:04:01:a7:3f:d8:ed:58:11:dc:24:8f:
7f:50:d4:5d:d2:c4:06:c5:1f:2c:63:63:b9:89:8b:
f9:75:b6:50:ae:39:6f:8e:d3:c5:6d:0d:79:ae:33:
c5:a9:69:08:1b:a9:9f:09:42:86:59:40:af:9e:2a:
27:74:4a:cd:c6:53:47:b7:d5:d6:8d:f9:af:8f:f0:
df:8d:df:0c:4e:c7:f9:56:b1:7d:c6:e1:cc:67:3e:
73:8f:6c:2e:2b:a1:0b:bb:d9:5e:2d:7a:d0:7b:2f:
0c:2f:48:4e:8d:23:6b:39:31:61:70:ce:72:8f:92:
b3:3f:55:da:f4:73:10:e5:0b:75:9a:54:9f:85:82:
6f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:24:9B:9C:90:CB:99:53:71:38:E6:52:F4:BE:B3:19:8D:41:B2:33
X509v3 Authority Key Identifier:
keyid:3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:dd:e8:f2:a3:81:34:db:9e:42:df:1a:da:14:26:e3:0c:78:
07:1a:ea:c5:3f:b2:bf:ce:02:e5:45:a6:ff:a5:f6:68:ab:8d:
ae:d5:5c:31:91:5b:87:45:88:41:28:88:23:02:2a:3a:d3:44:
fc:37:39:3b:23:e0:5a:6e:95:0b:de:1a:0b:c6:8d:0e:f1:0b:
7f:7c:64:01:42:b0:16:d1:79:70:e6:94:1a:f8:f5:87:f0:54:
4d:f2:62:df:03:6c:71:43:c8:b6:30:cd:25:10:ca:54:09:b9:
5c:2a:51:32:bf:a2:f9:1f:72:36:f3:2b:bc:ee:e6:0f:20:52:
d8:22:23:cd:0d:33:54:40:8e:1b:37:3a:9c:20:da:07:5e:4a:
82:66:b6:a3:f6:58:02:a4:07:c3:8c:3b:d8:f2:75:bb:58:2b:
6a:76:e0:09:d3:5b:fb:4f:19:40:aa:44:b8:13:83:1e:e7:ed:
43:af:ed:f9:9f:14:1e:9c:f9:cf:57:be:a3:f0:5a:35:3a:8c:
5c:01:eb:57:f5:40:28:9a:f3:08:cb:f8:71:37:89:7d:e3:20:
ff:63:64:a3:6f:25:ad:93:98:40:89:33:72:d3:39:40:cc:59:
bb:22:81:17:d7:f8:92:09:ec:e5:99:3e:e4:89:12:1c:5a:f4:
b7:4e:dc:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:15 2025 by rpki-client on console-fra.rpki-client.org