Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
File: iW81xeAyGs0CFn3viAfwu29xwo0.mft (raw, json)
Hash identifier: 0bh3jhDMBcxSpNX2uY0qPJ4ZPOpKx6BjyAwv4A7TzQ0=
Subject key identifier: 07:10:3C:CF:AA:7A:F3:4D:E7:AB:63:4E:3A:61:85:7B:3D:10:DF:E8
Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Certificate serial: 0195127E3D064B29440492FBA21C7B4AC8A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
Manifest number: 1019
Signing time: Mon 17 Feb 2025 06:00:17 +0000
Manifest this update: Mon 17 Feb 2025 06:00:17 +0000
Manifest next update: Tue 18 Feb 2025 06:00:17 +0000
Files and hashes: 1: KzxZqybvsz4qWRvLNMoGl_b-dg0.roa (hash: waO3ZFTQ9Kiow9t+yCx6WlAToF1IQKM9UgVqX7Ju9ms=)
2: iW81xeAyGs0CFn3viAfwu29xwo0.crl (hash: N330wZpBU1Ui3M8A00tjogPzEWQ/kxCmd8SALLU3azg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:3d:06:4b:29:44:04:92:fb:a2:1c:7b:4a:c8:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Validity
Not Before: Feb 17 06:00:17 2025 GMT
Not After : Feb 18 06:00:17 2025 GMT
Subject: CN=07103ccfaa7af34de7ab634e3a61857b3d10dfe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:bf:26:cd:b5:d6:6f:e4:e7:a6:65:78:7d:
9f:5b:44:09:8a:34:1b:bd:ca:a8:f0:70:d7:3e:a8:
40:52:f1:2a:ed:ff:10:52:f5:92:af:51:f2:7e:27:
4a:ae:04:a6:40:26:b1:b4:ef:1d:35:66:aa:24:b3:
64:46:71:b1:3b:dc:5a:16:b8:39:3e:7e:14:f0:26:
0a:8f:f4:1f:d6:6b:c9:0b:ab:d8:ab:c5:fb:0e:95:
eb:20:17:82:bf:29:db:15:50:b4:79:be:9c:36:77:
97:53:91:25:51:94:d7:cb:da:5e:7c:cc:f5:06:18:
2b:6e:f7:ff:96:c9:db:3f:d3:45:8a:be:a0:08:3d:
6a:94:2e:15:df:ec:64:f8:75:3d:0f:d3:56:a4:81:
de:14:94:54:67:50:35:ea:a3:d5:14:82:a2:d1:bc:
1f:d3:c3:5c:42:aa:9b:a1:c2:14:a3:10:e2:c9:52:
06:82:26:8d:64:e0:d2:c2:21:c6:42:b8:d0:61:29:
61:42:48:f2:40:f3:31:ea:f7:c5:6a:a6:b1:d9:7e:
a1:76:44:2f:6c:ca:5f:86:88:79:df:2d:61:98:af:
50:97:61:38:89:39:f6:cf:27:3d:2a:ca:e5:47:4b:
88:fc:ca:26:cf:60:80:7f:fa:4a:35:2f:3d:ae:05:
51:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:10:3C:CF:AA:7A:F3:4D:E7:AB:63:4E:3A:61:85:7B:3D:10:DF:E8
X509v3 Authority Key Identifier:
keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:9c:1a:de:a9:e6:25:1a:fb:49:ab:46:f1:3b:a9:06:9b:4d:
3b:e5:31:58:82:8e:f4:36:81:72:d2:c5:2a:fd:18:3f:3d:58:
1b:16:19:2f:f3:9b:75:83:db:d1:59:dd:29:5e:80:72:e6:a3:
f2:6b:59:61:b2:df:c3:a3:39:70:47:ab:b3:d5:08:37:8a:f7:
34:eb:fe:83:e2:0a:15:f1:12:25:3b:bc:25:a1:85:7c:70:c1:
9b:35:b3:26:8b:b1:6f:04:e5:42:cd:bb:e7:eb:44:02:74:e5:
c1:14:4d:0b:eb:3a:4a:ff:f1:01:e8:35:68:b8:cb:2a:b2:f8:
14:51:b0:3e:e0:99:9f:aa:b7:18:b1:3c:72:0f:88:03:70:aa:
72:0e:3e:03:1d:3f:f7:35:05:0f:16:32:26:f8:12:8f:95:a9:
82:d0:5c:d6:bf:a6:c4:57:f5:c1:d7:d2:8f:db:bf:b7:1b:cf:
e5:a2:55:98:c1:24:98:5f:ed:2e:ba:e8:b3:02:26:85:6f:95:
a1:92:69:86:fa:cd:71:ca:98:71:e7:45:55:f4:95:83:22:39:
7f:55:b9:31:85:31:fd:30:c8:ff:a7:da:be:3c:3d:e8:f7:da:
f0:49:6b:50:36:0d:6c:f0:e4:32:a5:11:85:a7:48:89:38:2a:
ac:9d:64:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSfj0GSylEBJL7ohx7SsipMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5NmYzNWM1ZTAzMjFhY2QwMjE2N2RlZjg4MDdmMGJiNmY3
MWMyOGQwHhcNMjUwMjE3MDYwMDE3WhcNMjUwMjE4MDYwMDE3WjAzMTEwLwYDVQQD
EygwNzEwM2NjZmFhN2FmMzRkZTdhYjYzNGUzYTYxODU3YjNkMTBkZmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPW/Js211m/k56ZleH2fW0QJijQb
vcqo8HDXPqhAUvEq7f8QUvWSr1HyfidKrgSmQCaxtO8dNWaqJLNkRnGxO9xaFrg5
Pn4U8CYKj/Qf1mvJC6vYq8X7DpXrIBeCvynbFVC0eb6cNneXU5ElUZTXy9pefMz1
Bhgrbvf/lsnbP9NFir6gCD1qlC4V3+xk+HU9D9NWpIHeFJRUZ1A16qPVFIKi0bwf
08NcQqqbocIUoxDiyVIGgiaNZODSwiHGQrjQYSlhQkjyQPMx6vfFaqax2X6hdkQv
bMpfhoh53y1hmK9Ql2E4iTn2zyc9KsrlR0uI/Momz2CAf/pKNS89rgVRIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAcQPM+qevNN56tjTjphhXs9EN/oMB8GA1UdIwQY
MBaAFIlvNcXgMhrNAhZ974gH8LtvccKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVc4MXhlQXlHczBDRm4zdmlBZnd1Mjl4d28wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC84MGM0YzAtYzcyOS00MThlLTgwYWYt
MjI5OWE2N2U2MDAxLzEvaVc4MXhlQXlHczBDRm4zdmlBZnd1Mjl4d28wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC84MGM0YzAtYzcyOS00MThlLTgwYWYtMjI5OWE2N2U2MDAx
LzEvaVc4MXhlQXlHczBDRm4zdmlBZnd1Mjl4d28wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYJwa3qnm
JRr7SatG8TupBptNO+UxWIKO9DaBctLFKv0YPz1YGxYZL/ObdYPb0VndKV6Acuaj
8mtZYbLfw6M5cEers9UIN4r3NOv+g+IKFfESJTu8JaGFfHDBmzWzJouxbwTlQs27
5+tEAnTlwRRNC+s6Sv/xAeg1aLjLKrL4FFGwPuCZn6q3GLE8cg+IA3Cqcg4+Ax0/
9zUFDxYyJvgSj5WpgtBc1r+mxFf1wdfSj9u/txvP5aJVmMEkmF/tLrroswImhW+V
oZJphvrNccqYcedFVfSVgyI5f1W5MYUx/TDI/6favjw96Pfa8ElrUDYNbPDkMqUR
hadIiTgqrJ1klQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:37 2025 by rpki-client