Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: iPib49lIgzJBI4r9E7bG7xjtQ8MmQ7YfT044bTMJptQ=
Subject key identifier: 1E:17:45:0C:2E:92:0C:48:3D:E4:36:0F:AF:84:EE:CE:6D:39:2D:34
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 0195108FEB26943776CFA6C5FA0EDEB30055
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 13E7
Signing time: Sun 16 Feb 2025 21:00:22 +0000
Manifest this update: Sun 16 Feb 2025 21:00:22 +0000
Manifest next update: Mon 17 Feb 2025 21:00:22 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: 76eQPBSUfFHtUGPs0/EoobqwyCS8uqwo8iZ/qV8nEmA=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:eb:26:94:37:76:cf:a6:c5:fa:0e:de:b3:00:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Feb 16 21:00:22 2025 GMT
Not After : Feb 17 21:00:22 2025 GMT
Subject: CN=1e17450c2e920c483de4360faf84eece6d392d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:36:58:aa:34:ad:59:9c:73:de:c8:2d:03:38:
ce:ed:74:95:85:a2:5d:a4:5f:05:d6:6c:9b:b4:9f:
05:07:c9:10:be:10:d1:11:da:0c:eb:a3:0e:c9:15:
06:ba:98:13:f9:d9:09:4a:70:ab:65:95:6c:1e:39:
a4:08:67:db:bb:fc:e2:33:a0:a1:a7:0b:b0:4b:f5:
cf:22:39:c3:86:36:b3:c4:7a:82:ef:0f:a0:ad:e5:
6a:38:29:f1:ee:ee:76:f4:af:ba:65:19:49:d1:d8:
48:d6:a2:d3:5e:e1:9c:0f:f7:71:49:eb:64:0e:15:
4f:02:a2:c8:d2:17:6a:f0:2f:f4:49:4f:f6:f5:69:
7b:72:ab:60:5f:92:c0:8e:2f:77:56:23:e3:75:e5:
d8:70:0f:66:d3:29:13:b8:9a:96:50:cb:f3:55:d0:
c6:00:bd:ee:9f:38:6c:b9:77:be:94:54:17:76:85:
19:5d:ae:24:bd:3d:dd:b2:47:76:25:2f:e6:a5:89:
1e:72:22:fd:71:9d:e1:16:00:4f:f3:de:1a:f4:db:
29:bf:93:f6:aa:06:99:47:98:a0:55:ea:3f:8e:19:
9b:10:d7:f0:b2:79:a2:f4:6e:d8:3c:ab:5c:8a:b2:
cf:74:df:db:df:94:86:4c:0e:d8:5a:32:e8:b7:3a:
ec:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:17:45:0C:2E:92:0C:48:3D:E4:36:0F:AF:84:EE:CE:6D:39:2D:34
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:8d:4c:82:a0:3f:2e:e7:b9:6d:4e:0f:9d:12:e0:40:13:d8:
e4:b6:70:83:16:9f:16:a0:f1:e5:2e:ac:14:63:07:6c:ac:37:
6e:15:32:68:84:23:2c:8a:72:a6:40:ba:d0:6e:6c:1d:b6:56:
a8:66:c1:84:f3:d2:a0:08:3b:a3:83:f2:b2:17:e1:27:e6:6e:
0b:14:8f:df:69:38:8c:0a:16:7d:fa:e9:e7:f8:64:64:dc:95:
dc:31:57:81:1a:30:b5:bc:e8:e8:be:fc:69:a8:66:bf:7e:42:
6d:47:71:95:a5:ea:fc:0f:64:76:b5:ea:b1:2f:6d:10:47:fc:
03:93:cc:cd:31:d6:11:66:d1:31:48:2a:5d:49:24:ba:3a:c0:
e8:8f:68:ba:e0:53:3a:5d:68:5a:56:43:fa:4f:f0:eb:93:60:
16:8e:dc:b3:31:3a:da:a3:12:5b:7c:fe:76:32:5d:64:4b:01:
0b:fe:cb:8f:d9:fa:d4:28:8c:93:2c:1e:4a:0c:21:15:b3:83:
03:42:08:f4:f1:fa:63:1d:e2:aa:62:d6:5d:97:17:f4:07:b6:
01:3b:92:ea:e1:05:fd:e2:52:0d:7b:45:ee:54:2a:d2:da:34:
82:28:85:c4:09:58:a3:44:dd:2c:e3:b6:f5:30:56:f0:02:cf:
27:6d:aa:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQj+smlDd2z6bF+g7eswBVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNjZkOGI5ZDM4ZDViYjE5Y2ZhMGM0NjQ0YjQ1MjkzZDFl
OGI2ZmEwHhcNMjUwMjE2MjEwMDIyWhcNMjUwMjE3MjEwMDIyWjAzMTEwLwYDVQQD
EygxZTE3NDUwYzJlOTIwYzQ4M2RlNDM2MGZhZjg0ZWVjZTZkMzkyZDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizZYqjStWZxz3sgtAzjO7XSVhaJd
pF8F1mybtJ8FB8kQvhDREdoM66MOyRUGupgT+dkJSnCrZZVsHjmkCGfbu/ziM6Ch
pwuwS/XPIjnDhjazxHqC7w+greVqOCnx7u529K+6ZRlJ0dhI1qLTXuGcD/dxSetk
DhVPAqLI0hdq8C/0SU/29Wl7cqtgX5LAji93ViPjdeXYcA9m0ykTuJqWUMvzVdDG
AL3unzhsuXe+lFQXdoUZXa4kvT3dskd2JS/mpYkeciL9cZ3hFgBP894a9Nspv5P2
qgaZR5igVeo/jhmbENfwsnmi9G7YPKtcirLPdN/b35SGTA7YWjLotzrsiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB4XRQwukgxIPeQ2D6+E7s5tOS00MB8GA1UdIwQY
MBaAFNxm2LnTjVuxnPoMRkS0UpPR6Lb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUt
NDc3MWQxYTRkZGYwLzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUtNDc3MWQxYTRkZGYw
LzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJo1MgqA/
Lue5bU4PnRLgQBPY5LZwgxafFqDx5S6sFGMHbKw3bhUyaIQjLIpypkC60G5sHbZW
qGbBhPPSoAg7o4PyshfhJ+ZuCxSP32k4jAoWffrp5/hkZNyV3DFXgRowtbzo6L78
aahmv35CbUdxlaXq/A9kdrXqsS9tEEf8A5PMzTHWEWbRMUgqXUkkujrA6I9ouuBT
Ol1oWlZD+k/w65NgFo7cszE62qMSW3z+djJdZEsBC/7Lj9n61CiMkyweSgwhFbOD
A0II9PH6Yx3iqmLWXZcX9Ae2ATuS6uEF/eJSDXtF7lQq0to0giiFxAlYo0TdLOO2
9TBW8ALPJ22qLw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:16 2025 by rpki-client