Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
File: RkVleaUXL8oI4EOwK7ly-3UDrq8.mft (raw, json)
Hash identifier: mahTBcKddD4Prthwaw2dYe+1grFeKcpC4hjGzxu8PAo=
Subject key identifier: 59:C5:08:6F:3D:31:FB:0E:5D:02:FE:87:33:3D:B8:5E:98:42:B0:F0
Authority key identifier: 46:45:65:79:A5:17:2F:CA:08:E0:43:B0:2B:B9:72:FB:75:03:AE:AF
Certificate issuer: /CN=46456579a5172fca08e043b02bb972fb7503aeaf
Certificate serial: 019511A2F53A820B3C6BA632ABD678242AA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
Manifest number: 11AB
Signing time: Mon 17 Feb 2025 02:00:47 +0000
Manifest this update: Mon 17 Feb 2025 02:00:47 +0000
Manifest next update: Tue 18 Feb 2025 02:00:47 +0000
Files and hashes: 1: 6--mKTLhcJSvHElJeuoDt_lQE_Q.roa (hash: SXpjKVkVSr9zsLSxhubs4WsDg8DBpMmGqFFwLSfPmwo=)
2: RkVleaUXL8oI4EOwK7ly-3UDrq8.crl (hash: 0IQz9vZ2Z6+7pC7q4zc8mtpevxWCIK/EGuegDkilU+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:f5:3a:82:0b:3c:6b:a6:32:ab:d6:78:24:2a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46456579a5172fca08e043b02bb972fb7503aeaf
Validity
Not Before: Feb 17 02:00:47 2025 GMT
Not After : Feb 18 02:00:47 2025 GMT
Subject: CN=59c5086f3d31fb0e5d02fe87333db85e9842b0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:17:73:a9:8b:7f:cf:de:51:0c:4c:ec:2e:23:
c6:57:b1:6c:8c:35:69:27:cc:e8:43:f9:f0:93:25:
e8:0b:4d:6f:83:bc:80:30:0a:64:6f:a5:7d:24:f8:
ce:c3:fc:2f:44:9d:f8:99:26:c6:63:93:9e:3c:11:
e3:ad:7c:68:96:33:1c:a3:81:46:3f:e5:9b:88:0b:
c8:c0:86:12:f8:95:a8:52:74:3a:66:c7:99:de:13:
c6:1d:e3:6f:46:61:e6:ab:5f:f2:d1:5e:d1:73:22:
ad:ca:1e:2b:26:4b:e6:4e:67:42:41:f5:5b:7c:c0:
97:e7:aa:58:e7:f7:41:07:d0:26:c5:ba:84:c2:4e:
96:4e:1e:c2:fa:ea:01:2a:bf:97:8f:5a:50:1b:07:
78:d0:22:ea:4a:67:78:22:0f:47:2b:63:62:b8:07:
d2:81:75:b9:d9:89:dc:a8:46:d1:1c:52:3b:dd:da:
8a:83:41:2c:5a:3b:55:76:64:83:8c:51:88:32:dc:
63:17:fb:a3:c6:3a:39:77:1c:a0:7b:09:7b:40:b5:
39:6e:a9:ae:de:6b:9d:31:cf:b2:2d:1e:ef:3c:cf:
d5:f1:6b:59:b5:dc:d2:c9:53:84:67:38:8c:c1:f5:
75:9f:ed:ed:96:41:32:bc:e0:4f:51:0d:98:cd:d2:
24:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C5:08:6F:3D:31:FB:0E:5D:02:FE:87:33:3D:B8:5E:98:42:B0:F0
X509v3 Authority Key Identifier:
keyid:46:45:65:79:A5:17:2F:CA:08:E0:43:B0:2B:B9:72:FB:75:03:AE:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:7b:81:9d:a4:be:2a:ed:27:22:80:a4:5c:d3:38:46:b4:e8:
bd:8e:65:37:cd:eb:1e:e6:c7:9b:05:f1:d3:ac:c2:89:13:8d:
74:63:cc:0d:59:f1:50:6f:88:21:85:77:d9:4a:fd:45:34:93:
20:62:c0:2e:92:72:2c:96:27:7f:7b:84:66:4a:af:94:3a:58:
37:20:1d:d3:a0:d3:92:88:be:72:34:6d:b9:d5:05:b6:f4:1c:
aa:66:35:d3:3d:0b:0d:e1:2c:e4:aa:84:7c:7c:0a:a7:17:86:
82:9f:c9:ae:c4:81:f4:c5:73:5b:79:e2:34:bd:f6:d7:43:84:
8f:78:12:c5:19:f5:db:32:56:ee:0a:53:a9:86:b8:f9:4c:03:
a5:32:99:bf:99:91:4b:37:3e:77:2a:cf:b1:1d:84:13:85:ca:
2f:1d:0d:ba:b9:70:7e:fd:3c:24:83:27:f3:c7:0f:58:80:36:
5c:ae:48:63:6e:7b:23:45:8e:dc:94:71:e2:d3:76:14:b2:ee:
f3:93:1f:d9:44:51:52:05:d3:ba:c4:f6:67:41:d7:11:93:68:
ef:42:8a:06:04:c7:d7:c0:d4:d6:31:b3:65:a4:cb:27:85:c5:
6b:65:36:e6:d0:e9:75:ef:71:03:58:73:c1:09:eb:39:72:5e:
41:1a:89:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURovU6ggs8a6Yyq9Z4JCqmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NDU2NTc5YTUxNzJmY2EwOGUwNDNiMDJiYjk3MmZiNzUw
M2FlYWYwHhcNMjUwMjE3MDIwMDQ3WhcNMjUwMjE4MDIwMDQ3WjAzMTEwLwYDVQQD
Eyg1OWM1MDg2ZjNkMzFmYjBlNWQwMmZlODczMzNkYjg1ZTk4NDJiMGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6BdzqYt/z95RDEzsLiPGV7FsjDVp
J8zoQ/nwkyXoC01vg7yAMApkb6V9JPjOw/wvRJ34mSbGY5OePBHjrXxoljMco4FG
P+WbiAvIwIYS+JWoUnQ6ZseZ3hPGHeNvRmHmq1/y0V7RcyKtyh4rJkvmTmdCQfVb
fMCX56pY5/dBB9AmxbqEwk6WTh7C+uoBKr+Xj1pQGwd40CLqSmd4Ig9HK2NiuAfS
gXW52YncqEbRHFI73dqKg0EsWjtVdmSDjFGIMtxjF/ujxjo5dxygewl7QLU5bqmu
3mudMc+yLR7vPM/V8WtZtdzSyVOEZziMwfV1n+3tlkEyvOBPUQ2YzdIkqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFnFCG89MfsOXQL+hzM9uF6YQrDwMB8GA1UdIwQY
MBaAFEZFZXmlFy/KCOBDsCu5cvt1A66vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmtWbGVhVVhMOG9JNEVPd0s3bHktM1VEcnE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9lYzllMjYtMjBmMi00ZTIzLWEwOGYt
YTM0Yzg1NWI1YWFiLzEvUmtWbGVhVVhMOG9JNEVPd0s3bHktM1VEcnE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9lYzllMjYtMjBmMi00ZTIzLWEwOGYtYTM0Yzg1NWI1YWFi
LzEvUmtWbGVhVVhMOG9JNEVPd0s3bHktM1VEcnE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFXuBnaS+
Ku0nIoCkXNM4RrTovY5lN83rHubHmwXx06zCiRONdGPMDVnxUG+IIYV32Ur9RTST
IGLALpJyLJYnf3uEZkqvlDpYNyAd06DTkoi+cjRtudUFtvQcqmY10z0LDeEs5KqE
fHwKpxeGgp/JrsSB9MVzW3niNL3210OEj3gSxRn12zJW7gpTqYa4+UwDpTKZv5mR
Szc+dyrPsR2EE4XKLx0Nurlwfv08JIMn88cPWIA2XK5IY257I0WO3JRx4tN2FLLu
85Mf2URRUgXTusT2Z0HXEZNo70KKBgTH18DU1jGzZaTLJ4XFa2U25tDpde9xA1hz
wQnrOXJeQRqJdw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:50 2025 by rpki-client