Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
File: mq5G4hNZMNomjAZNzlrbtjoM7DY.mft (raw, json)
Hash identifier: XDXdKn1abp39n58Bc5T1pZ8BzRwaeHl8jhNQbXTVZrY=
Subject key identifier: 5B:CD:0A:D8:EF:EF:FC:1E:F7:6D:2B:17:5E:28:70:48:63:95:90:87
Authority key identifier: 9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
Certificate issuer: /CN=9aae46e2135930da268c064dce5adbb63a0cec36
Certificate serial: 0194C38878A45422FAC183BF5768EFEEE962
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
Manifest number: 0DF9
Signing time: Sat 01 Feb 2025 22:01:28 +0000
Manifest this update: Sat 01 Feb 2025 22:01:28 +0000
Manifest next update: Sun 02 Feb 2025 22:01:28 +0000
Files and hashes: 1: STbkSsaZ4h0iV7Ywpice3xeLm7Q.roa (hash: OYYfvGM7goZ9gxelNf2ly9w5B8haX1abcCwOvQfYiPk=)
2: mq5G4hNZMNomjAZNzlrbtjoM7DY.crl (hash: cIwl9NoT/+7c+EJ+02tN0wUQoFBnLZJEfy5PNjIireQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:78:a4:54:22:fa:c1:83:bf:57:68:ef:ee:e9:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aae46e2135930da268c064dce5adbb63a0cec36
Validity
Not Before: Feb 1 22:01:28 2025 GMT
Not After : Feb 2 22:01:28 2025 GMT
Subject: CN=5bcd0ad8efeffc1ef76d2b175e28704863959087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c6:1f:4a:f0:81:48:d7:0f:66:87:0b:ed:e4:
23:08:a4:ed:e4:d0:5b:d9:40:8a:2b:15:b1:f8:1e:
e3:1e:cf:ee:d9:f4:ba:ec:7c:b8:87:3e:e5:75:53:
99:55:54:0b:0a:aa:7f:e4:c4:25:25:2a:84:ed:e4:
86:78:ac:b9:94:80:3d:05:08:88:22:7f:c6:f8:04:
8d:a7:7a:9c:57:8b:75:4a:b8:9b:2b:6d:a9:0d:5c:
68:02:2a:57:df:94:8f:97:3b:0f:9c:41:29:45:8b:
33:87:40:a6:53:96:44:4f:7b:80:84:0b:26:16:b3:
26:30:af:20:a6:b3:68:98:1b:c9:17:4c:db:2f:e7:
bc:9f:9c:4f:bf:ed:80:67:77:e1:76:6b:55:ba:9f:
e9:cb:e5:74:02:a2:7a:01:07:32:26:7b:0e:c8:8b:
0f:04:ee:08:4e:40:13:77:fc:8b:b1:34:52:c1:77:
7a:6e:44:b0:8b:34:de:da:82:1b:96:9c:97:b2:e9:
eb:30:a3:79:a5:ac:51:53:2d:1d:50:a1:cc:44:b3:
ff:b7:80:fd:d3:c1:e4:88:a8:27:9c:7d:d6:77:19:
23:65:42:5f:d9:c5:83:88:67:e1:85:2a:cb:26:7e:
af:7b:cd:09:17:43:19:2d:43:bb:ba:f3:b9:94:84:
78:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:CD:0A:D8:EF:EF:FC:1E:F7:6D:2B:17:5E:28:70:48:63:95:90:87
X509v3 Authority Key Identifier:
keyid:9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:84:b6:da:d1:9f:65:7b:fa:d4:7d:c7:34:38:59:42:e8:6c:
93:01:9f:d1:03:4d:2a:5d:90:7a:dc:56:cc:ea:6a:1c:bf:6c:
40:9d:9c:66:e5:d4:10:a8:a1:31:26:5d:c5:0a:69:30:bc:33:
20:de:fb:1a:55:f3:3f:72:05:59:7b:d6:70:c7:f4:50:9d:2d:
13:4f:0b:ea:b2:18:7f:13:c9:55:77:43:d7:12:41:c0:5b:e8:
57:ea:3b:b2:6b:27:9b:bd:36:cb:d9:b2:73:78:96:3f:f5:36:
3b:32:03:f0:96:ff:76:89:3c:1a:8b:e6:77:62:d2:53:2d:64:
73:5c:14:ed:30:13:0c:23:1a:c1:aa:03:81:b8:f4:1a:67:74:
97:f0:5e:17:89:46:bb:98:dd:54:d9:0b:9b:b9:f8:5f:7d:0a:
b8:71:7a:0c:39:ca:11:c8:62:b4:a0:60:97:d3:7a:e9:fd:de:
85:49:81:29:ae:24:ca:5e:1b:91:b0:92:fe:79:3f:ca:63:6e:
4e:d4:30:82:34:b5:c9:de:19:18:f1:97:84:62:1d:b2:be:45:
dc:df:3a:94:f0:07:b7:02:37:9a:3d:7f:93:1a:28:1e:24:90:
f7:8f:fc:b1:6a:6e:6b:03:96:28:8d:91:f7:d4:75:95:2e:b2:
15:76:4a:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDiHikVCL6wYO/V2jv7uliMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhYWU0NmUyMTM1OTMwZGEyNjhjMDY0ZGNlNWFkYmI2M2Ew
Y2VjMzYwHhcNMjUwMjAxMjIwMTI4WhcNMjUwMjAyMjIwMTI4WjAzMTEwLwYDVQQD
Eyg1YmNkMGFkOGVmZWZmYzFlZjc2ZDJiMTc1ZTI4NzA0ODYzOTU5MDg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcYfSvCBSNcPZocL7eQjCKTt5NBb
2UCKKxWx+B7jHs/u2fS67Hy4hz7ldVOZVVQLCqp/5MQlJSqE7eSGeKy5lIA9BQiI
In/G+ASNp3qcV4t1SribK22pDVxoAipX35SPlzsPnEEpRYszh0CmU5ZET3uAhAsm
FrMmMK8gprNomBvJF0zbL+e8n5xPv+2AZ3fhdmtVup/py+V0AqJ6AQcyJnsOyIsP
BO4ITkATd/yLsTRSwXd6bkSwizTe2oIblpyXsunrMKN5paxRUy0dUKHMRLP/t4D9
08HkiKgnnH3WdxkjZUJf2cWDiGfhhSrLJn6ve80JF0MZLUO7uvO5lIR46wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFvNCtjv7/we920rF14ocEhjlZCHMB8GA1UdIwQY
MBaAFJquRuITWTDaJowGTc5a27Y6DOw2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXE1RzRoTlpNTm9takFaTnpscmJ0am9NN0RZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9kOGZjNzgtYTUxYi00M2RjLWI1MGEt
OGFlNDMwODFhYTM2LzEvbXE1RzRoTlpNTm9takFaTnpscmJ0am9NN0RZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9kOGZjNzgtYTUxYi00M2RjLWI1MGEtOGFlNDMwODFhYTM2
LzEvbXE1RzRoTlpNTm9takFaTnpscmJ0am9NN0RZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJIS22tGf
ZXv61H3HNDhZQuhskwGf0QNNKl2QetxWzOpqHL9sQJ2cZuXUEKihMSZdxQppMLwz
IN77GlXzP3IFWXvWcMf0UJ0tE08L6rIYfxPJVXdD1xJBwFvoV+o7smsnm702y9my
c3iWP/U2OzID8Jb/dok8Govmd2LSUy1kc1wU7TATDCMawaoDgbj0Gmd0l/BeF4lG
u5jdVNkLm7n4X30KuHF6DDnKEchitKBgl9N66f3ehUmBKa4kyl4bkbCS/nk/ymNu
TtQwgjS1yd4ZGPGXhGIdsr5F3N86lPAHtwI3mj1/kxooHiSQ94/8sWpuawOWKI2R
99R1lS6yFXZKIg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:49:14 2025 by rpki-client