Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: H0reNyuJQesCJcNgXwgSrDxsO54lN17cZXmLs3Zl/yw=
Subject key identifier: 85:43:00:FB:DC:06:4B:4A:D8:53:34:53:36:84:B8:C1:6E:FA:CB:A0
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 019510FDE27C11BCD424F767FFA76A2F89E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 13E7
Signing time: Sun 16 Feb 2025 23:00:28 +0000
Manifest this update: Sun 16 Feb 2025 23:00:28 +0000
Manifest next update: Mon 17 Feb 2025 23:00:28 +0000
Files and hashes: 1: WlFkHZf-mGa6meWaQmN57qSrEtA.roa (hash: B5J0da5BqpBMDIf+RMe68Zm2sCoZIjqiRagoU19Nd+4=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: 88weESq92By7Wvpi6lkGh9R64wgWAq7yRCH3R1gV3Wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:e2:7c:11:bc:d4:24:f7:67:ff:a7:6a:2f:89:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Feb 16 23:00:28 2025 GMT
Not After : Feb 17 23:00:28 2025 GMT
Subject: CN=854300fbdc064b4ad85334533684b8c16efacba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f8:d0:7d:5c:1c:c7:81:c9:3d:c2:dc:37:13:
97:65:db:13:22:58:8b:0d:30:91:d0:26:4a:1b:f8:
a5:b5:6f:65:c3:3e:87:1f:ed:73:4b:f3:29:e3:9d:
43:6e:bc:f9:30:fe:37:67:ab:77:07:25:0b:19:c7:
71:bb:b6:15:22:73:5f:bd:4c:98:13:6f:aa:32:a5:
3e:08:3a:c7:ec:1b:25:60:8f:19:ee:ce:3a:25:93:
d8:a5:a1:ca:8e:fa:68:12:aa:fe:7c:e7:f7:c0:47:
ff:0f:df:a5:3b:63:a0:55:6c:2b:c5:7d:87:ef:7f:
07:4b:cb:ae:88:00:20:76:fa:0d:96:de:01:22:20:
94:dc:fc:f0:28:e6:77:65:31:e3:60:8d:52:2d:64:
c7:b9:8a:b2:6f:5c:40:a0:0a:48:10:af:a1:d2:d9:
45:fb:43:c2:8e:01:47:25:8a:6c:dd:43:9d:bc:09:
90:1e:57:f8:ab:7a:b0:82:3d:33:60:48:0d:c3:cc:
c1:16:35:4a:7f:7a:9b:76:2a:ab:79:98:d1:cd:67:
d6:2d:cf:c1:d5:31:9b:61:01:3f:76:04:8b:9a:64:
62:5b:a3:38:f4:1f:b1:c4:1c:bc:68:56:89:bc:35:
c2:c0:ba:27:0a:71:2e:87:31:9e:f0:aa:46:fe:46:
6d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:43:00:FB:DC:06:4B:4A:D8:53:34:53:36:84:B8:C1:6E:FA:CB:A0
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:81:ca:a3:d8:6a:ff:56:08:c0:3c:40:c8:a9:81:54:87:77:
1f:9e:88:72:a8:ba:9b:63:3e:68:ae:ea:f5:30:af:6d:fb:ce:
94:2b:f7:40:5c:78:63:c3:5c:1c:a5:d4:d5:df:7e:7c:f2:44:
0f:03:30:a7:98:f6:7f:b6:b3:69:56:c2:3e:f7:ee:2f:54:fa:
e9:43:59:e8:70:9f:5c:4c:89:00:28:b8:4d:6f:ea:df:c1:3f:
84:31:6e:53:16:d0:09:3f:5a:d7:8b:a2:95:1c:10:2e:97:d0:
3c:0e:17:38:b0:42:62:ad:a6:99:22:08:2f:4e:2c:15:0f:c0:
77:02:5d:a1:8e:fb:48:6f:29:95:1c:2a:5d:97:61:b1:98:a6:
57:bb:eb:af:82:a1:47:c3:13:84:d5:32:0d:ff:48:64:4d:ad:
f3:3b:5e:8e:fc:89:e3:46:42:8e:1f:ac:d2:cd:c5:2a:d8:96:
f6:38:4b:53:06:42:e5:eb:9a:f4:85:d0:36:e0:bc:15:61:f4:
12:83:3a:53:8b:4c:63:68:ef:a0:4c:3d:be:4c:66:54:4b:81:
0f:1f:c5:9e:ff:75:9b:0f:08:49:58:a7:6a:ac:ac:0a:da:b2:
be:af:5f:26:97:63:7c:5d:af:a4:65:d9:9b:dc:08:55:27:a4:
5f:95:b0:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQ/eJ8EbzUJPdn/6dqL4nhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MjM4Y2U3ZWFmNjlhNWJhMmYwOTQ3YjJiYTA1MzM5NGI0
NWI2Y2QwHhcNMjUwMjE2MjMwMDI4WhcNMjUwMjE3MjMwMDI4WjAzMTEwLwYDVQQD
Eyg4NTQzMDBmYmRjMDY0YjRhZDg1MzM0NTMzNjg0YjhjMTZlZmFjYmEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvjQfVwcx4HJPcLcNxOXZdsTIliL
DTCR0CZKG/iltW9lwz6HH+1zS/Mp451Dbrz5MP43Z6t3ByULGcdxu7YVInNfvUyY
E2+qMqU+CDrH7BslYI8Z7s46JZPYpaHKjvpoEqr+fOf3wEf/D9+lO2OgVWwrxX2H
738HS8uuiAAgdvoNlt4BIiCU3PzwKOZ3ZTHjYI1SLWTHuYqyb1xAoApIEK+h0tlF
+0PCjgFHJYps3UOdvAmQHlf4q3qwgj0zYEgNw8zBFjVKf3qbdiqreZjRzWfWLc/B
1TGbYQE/dgSLmmRiW6M49B+xxBy8aFaJvDXCwLonCnEuhzGe8KpG/kZtgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIVDAPvcBktK2FM0UzaEuMFu+sugMB8GA1UdIwQY
MBaAFIUjjOfq9ppbovCUeyugUzlLRbbNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFNPTTUtcjJtbHVpOEpSN0s2QlRPVXRGdHMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9jYTQxMTQtMmZiOS00M2QxLWI1Mjgt
MDMyYWY4MzZjMTcyLzEvaFNPTTUtcjJtbHVpOEpSN0s2QlRPVXRGdHMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9jYTQxMTQtMmZiOS00M2QxLWI1MjgtMDMyYWY4MzZjMTcy
LzEvaFNPTTUtcjJtbHVpOEpSN0s2QlRPVXRGdHMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATIHKo9hq
/1YIwDxAyKmBVId3H56Icqi6m2M+aK7q9TCvbfvOlCv3QFx4Y8NcHKXU1d9+fPJE
DwMwp5j2f7azaVbCPvfuL1T66UNZ6HCfXEyJACi4TW/q38E/hDFuUxbQCT9a14ui
lRwQLpfQPA4XOLBCYq2mmSIIL04sFQ/AdwJdoY77SG8plRwqXZdhsZimV7vrr4Kh
R8MThNUyDf9IZE2t8ztejvyJ40ZCjh+s0s3FKtiW9jhLUwZC5eua9IXQNuC8FWH0
EoM6U4tMY2jvoEw9vkxmVEuBDx/Fnv91mw8ISVinaqysCtqyvq9fJpdjfF2vpGXZ
m9wIVSekX5Wwug==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:12 2025 by rpki-client