Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft (raw, json)
Hash identifier: 63ZVg+RKSIxO+2/zJuj285R7BZY+D6hHHVuh+uBwcpg=
Subject key identifier: 9A:42:74:BE:63:DF:B0:F0:BA:9C:E1:92:A0:78:1C:BD:4F:94:CD:1E
Authority key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
Certificate issuer: /CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Certificate serial: 0194C387D7F68D9981E62B9DDBEFFEE113AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
Manifest number: 08B5
Signing time: Sat 01 Feb 2025 22:00:47 +0000
Manifest this update: Sat 01 Feb 2025 22:00:47 +0000
Manifest next update: Sun 02 Feb 2025 22:00:47 +0000
Files and hashes: 1: aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl (hash: vuN5ULkdTiNAxPruUqvOc6YekFJLwKcP9SNoaDQ/xS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:d7:f6:8d:99:81:e6:2b:9d:db:ef:fe:e1:13:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Validity
Not Before: Feb 1 22:00:47 2025 GMT
Not After : Feb 2 22:00:47 2025 GMT
Subject: CN=9a4274be63dfb0f0ba9ce192a0781cbd4f94cd1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:48:25:c4:a6:1b:ce:a9:1d:c2:e9:15:49:d9:
40:af:ce:d1:1e:76:64:3a:6d:ce:e7:bc:4f:2c:71:
8b:99:9e:de:33:c8:ab:bf:5c:2d:4e:34:66:7e:e9:
f2:cf:11:eb:ed:ee:14:07:64:aa:49:ba:0c:32:9a:
76:8a:f6:62:9a:5b:38:b1:66:87:52:92:27:c0:a7:
f5:76:11:c6:a7:27:b1:a2:bc:a8:6d:98:eb:26:29:
fe:c6:b5:0a:22:95:94:dd:d3:b1:fd:e3:ff:d2:c3:
70:81:b7:cd:99:3f:d0:88:0b:91:3c:56:4d:24:cd:
18:9b:3d:37:2c:fc:dd:d3:51:59:6c:44:e4:34:7a:
60:1d:e2:a7:05:6b:56:fb:f6:5b:d0:84:93:7f:ec:
48:3a:82:db:88:55:8d:61:fc:a0:d8:8e:d5:99:25:
cc:0f:86:9e:f8:1f:73:8a:80:81:1e:c4:5c:5c:0c:
bb:c6:0e:04:c6:e8:32:2f:42:f4:1c:d4:f2:48:14:
b1:11:a2:c4:c6:50:66:79:85:49:2a:23:ec:9f:af:
77:30:f6:5a:90:8c:d4:26:76:f1:68:f4:70:62:09:
02:ec:63:cf:2b:55:47:51:7f:db:62:85:27:bf:75:
e1:14:1f:73:bf:9c:40:ac:ef:d7:47:90:59:27:ce:
b5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:42:74:BE:63:DF:B0:F0:BA:9C:E1:92:A0:78:1C:BD:4F:94:CD:1E
X509v3 Authority Key Identifier:
keyid:69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:10:2d:e2:6d:c0:43:88:18:bd:76:3f:d0:ab:c9:0a:02:18:
72:09:dc:13:ee:ef:bb:58:0f:e9:cb:a8:9a:98:58:6a:0d:4c:
b9:d3:35:96:75:8c:29:88:16:ae:6b:f7:b2:6e:83:c9:89:21:
ad:9a:22:ba:be:f5:51:b1:40:ff:e7:5e:49:37:39:5b:1c:8e:
f0:55:cd:51:5e:5a:7b:d0:e7:7f:02:1c:ec:21:51:9a:3c:8e:
4b:ab:87:7c:d5:1f:8a:ee:88:44:2f:22:e9:01:d4:d6:f8:3c:
74:f6:42:4b:e6:70:58:7d:3e:07:d6:65:9a:c8:a2:83:54:6c:
a3:7a:be:6e:61:f8:d4:f3:f5:50:6d:12:60:6c:da:b7:85:84:
86:c9:95:3a:ae:26:a2:9c:83:b4:f6:f2:a1:de:63:40:92:1e:
6f:e1:cc:94:e4:e1:57:a3:88:8d:c3:50:55:b4:bc:38:4d:a3:
93:8c:b0:f9:30:82:0f:0d:fd:f9:3a:6a:5b:77:0c:cf:d9:7a:
96:20:7a:96:14:30:1c:41:16:11:94:45:03:61:2f:1c:92:d2:
7c:a7:6d:35:60:78:c5:70:a1:4a:35:a4:95:69:58:8e:72:cd:
d4:7b:3e:08:1b:52:97:a8:20:f4:38:02:f3:29:ee:24:2f:16:
19:a5:ae:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDh9f2jZmB5iud2+/+4ROuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ZTNhZDhiMDIyNDUyMWNkMGFlNzQ5MmM2OTRiYzJkNGVl
MWZkYjIwHhcNMjUwMjAxMjIwMDQ3WhcNMjUwMjAyMjIwMDQ3WjAzMTEwLwYDVQQD
Eyg5YTQyNzRiZTYzZGZiMGYwYmE5Y2UxOTJhMDc4MWNiZDRmOTRjZDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj0glxKYbzqkdwukVSdlAr87RHnZk
Om3O57xPLHGLmZ7eM8irv1wtTjRmfunyzxHr7e4UB2SqSboMMpp2ivZimls4sWaH
UpInwKf1dhHGpyexoryobZjrJin+xrUKIpWU3dOx/eP/0sNwgbfNmT/QiAuRPFZN
JM0Ymz03LPzd01FZbETkNHpgHeKnBWtW+/Zb0ISTf+xIOoLbiFWNYfyg2I7VmSXM
D4ae+B9zioCBHsRcXAy7xg4ExugyL0L0HNTySBSxEaLExlBmeYVJKiPsn693MPZa
kIzUJnbxaPRwYgkC7GPPK1VHUX/bYoUnv3XhFB9zv5xArO/XR5BZJ861vQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJpCdL5j37DwupzhkqB4HL1PlM0eMB8GA1UdIwQY
MBaAFGnjrYsCJFIc0K50ksaUvC1O4f2yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iZDhlYzEtMTdhNC00NGRmLTg4M2Qt
ZTk3ZDIyNmZiZWVhLzEvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9iZDhlYzEtMTdhNC00NGRmLTg4M2QtZTk3ZDIyNmZiZWVh
LzEvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARhAt4m3A
Q4gYvXY/0KvJCgIYcgncE+7vu1gP6cuomphYag1MudM1lnWMKYgWrmv3sm6DyYkh
rZoiur71UbFA/+deSTc5WxyO8FXNUV5ae9DnfwIc7CFRmjyOS6uHfNUfiu6IRC8i
6QHU1vg8dPZCS+ZwWH0+B9Zlmsiig1Rso3q+bmH41PP1UG0SYGzat4WEhsmVOq4m
opyDtPbyod5jQJIeb+HMlOThV6OIjcNQVbS8OE2jk4yw+TCCDw39+TpqW3cMz9l6
liB6lhQwHEEWEZRFA2EvHJLSfKdtNWB4xXChSjWklWlYjnLN1Hs+CBtSl6gg9DgC
8ynuJC8WGaWuYg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:52:32 2025 by rpki-client