Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
File: i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft (raw, json)
Hash identifier: 27p+LX2UHDKj0Jx2zRUPaeAlxmG3V228wyTOTaq6nKM=
Subject key identifier: 13:96:86:3B:69:10:30:F1:7A:CD:21:5C:FA:E0:B5:B9:69:2C:12:FE
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 0195108FBC8125C088CF8D530C4702B96520
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
Manifest number: 1456
Signing time: Sun 16 Feb 2025 21:00:10 +0000
Manifest this update: Sun 16 Feb 2025 21:00:10 +0000
Manifest next update: Mon 17 Feb 2025 21:00:10 +0000
Files and hashes: 1: FE1p8xqk22ZLL8TtVpBgIJ5HCYk.roa (hash: EEjSbBj9sFsFeIYvGJ66Mb2B5f9wjNh8P6NHIHv03o4=)
2: Nj_g5XagzgChnaGJmyAjIxliPxQ.roa (hash: 2T2yAo36kvnreO/zfmG7HDMPjTZHcC33NYqG6yteeqQ=)
3: i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl (hash: qAh8V/OWDJSqkZH8TPY84kO5bKNg9qLvYwU7TTAOpq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:bc:81:25:c0:88:cf:8d:53:0c:47:02:b9:65:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Feb 16 21:00:10 2025 GMT
Not After : Feb 17 21:00:10 2025 GMT
Subject: CN=1396863b691030f17acd215cfae0b5b9692c12fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1e:b6:73:27:98:58:57:52:9f:9f:7a:03:eb:
41:a8:fc:8f:70:30:b0:e8:5f:90:dc:c6:ec:a3:aa:
6c:d7:2f:0f:25:64:09:76:84:37:e6:df:7c:33:91:
ba:58:31:52:eb:b1:70:0e:c7:fa:fc:e8:61:fd:09:
96:41:84:58:ef:7c:e1:1f:be:61:1f:83:79:79:fc:
2e:a5:f0:bf:c0:07:13:db:f8:af:89:d9:6d:d9:1b:
a9:50:cb:da:fa:d6:77:d1:fc:0c:a0:a7:fc:dd:57:
89:ff:a3:f5:a9:4c:be:66:14:64:4d:56:e5:e8:66:
90:52:a9:9b:d0:9c:c5:4b:bd:26:3c:49:fc:7e:57:
32:20:47:b0:68:b5:be:28:88:cb:0f:78:7f:d5:93:
75:0b:ad:89:03:18:7e:39:fe:6f:e9:44:3d:fc:7f:
18:96:d2:dd:32:fa:90:a0:5b:80:c2:88:20:4a:14:
00:dc:26:ff:83:04:e6:ba:6f:4f:5b:2f:28:9d:1c:
a7:6a:af:bb:1a:6f:aa:93:40:3c:bd:c7:3e:13:55:
44:22:c7:99:5c:2b:ef:05:5c:c7:82:56:6f:f0:8e:
56:25:17:9c:7b:ae:e9:b7:9e:99:e5:47:b5:70:66:
29:f9:ec:17:eb:b9:53:10:6c:04:6b:b9:4c:6b:dd:
45:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:96:86:3B:69:10:30:F1:7A:CD:21:5C:FA:E0:B5:B9:69:2C:12:FE
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:b5:bc:4f:f8:1e:ca:0c:72:27:7d:0b:b1:67:52:6c:36:a1:
4f:7d:bd:1d:20:e5:1e:af:f6:83:6d:1f:9a:42:1b:12:7a:11:
a2:88:e8:6a:3b:9c:f8:73:f8:ed:77:4f:96:1f:39:04:89:aa:
4c:cc:76:ec:c2:e1:23:e8:21:b1:e4:f5:23:c6:df:b2:55:2c:
89:9b:d5:82:72:c2:15:6f:54:e1:7a:7c:87:7c:77:76:50:a4:
4f:8b:a1:8e:c7:73:3f:bd:5e:59:59:57:c6:58:26:e7:c1:b7:
ea:1a:ce:29:85:1d:b5:25:f0:8c:29:59:95:2c:28:d5:36:78:
bc:d4:ca:a1:da:f3:8c:3b:e0:f7:86:1f:c2:9e:89:8b:5b:81:
16:03:44:04:46:3a:9a:c8:a6:ed:fe:12:43:c5:24:a3:d9:b7:
31:89:09:5d:a1:ad:b2:5a:1e:f5:16:39:33:1a:f4:09:37:86:
25:82:a4:71:24:6d:ab:6d:4a:55:48:b1:67:6e:24:ae:96:2f:
39:78:af:fb:9f:2a:42:84:fa:93:aa:1c:6d:07:47:f1:bb:92:
9c:c2:7c:e0:13:9f:77:c9:73:e0:ac:7d:39:e6:3d:2d:31:24:
15:10:33:0d:9a:c7:ec:8b:63:9a:c5:a8:52:c1:e8:23:fe:c9:
bc:b7:f4:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQj7yBJcCIz41TDEcCuWUgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiNmEyM2EyZmQxYTA5NTYzNzhhMzdkNGZjZTI1OWRmMmJk
Nzk0YTcwHhcNMjUwMjE2MjEwMDEwWhcNMjUwMjE3MjEwMDEwWjAzMTEwLwYDVQQD
EygxMzk2ODYzYjY5MTAzMGYxN2FjZDIxNWNmYWUwYjViOTY5MmMxMmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyR62cyeYWFdSn596A+tBqPyPcDCw
6F+Q3Mbso6ps1y8PJWQJdoQ35t98M5G6WDFS67FwDsf6/Ohh/QmWQYRY73zhH75h
H4N5efwupfC/wAcT2/ividlt2RupUMva+tZ30fwMoKf83VeJ/6P1qUy+ZhRkTVbl
6GaQUqmb0JzFS70mPEn8flcyIEewaLW+KIjLD3h/1ZN1C62JAxh+Of5v6UQ9/H8Y
ltLdMvqQoFuAwoggShQA3Cb/gwTmum9PWy8onRynaq+7Gm+qk0A8vcc+E1VEIseZ
XCvvBVzHglZv8I5WJRece67pt56Z5Ue1cGYp+ewX67lTEGwEa7lMa91FTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBOWhjtpEDDxes0hXPrgtblpLBL+MB8GA1UdIwQY
MBaAFItqI6L9GglWN4o31PziWd8r15SnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTJvam92MGFDVlkzaWpmVV9PSlozeXZYbEtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9mOTFiMmMtYzVmZS00NjI1LWExODAt
OWE0NmVkNWI0MmRiLzEvaTJvam92MGFDVlkzaWpmVV9PSlozeXZYbEtjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9mOTFiMmMtYzVmZS00NjI1LWExODAtOWE0NmVkNWI0MmRi
LzEvaTJvam92MGFDVlkzaWpmVV9PSlozeXZYbEtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvLW8T/ge
ygxyJ30LsWdSbDahT329HSDlHq/2g20fmkIbEnoRoojoajuc+HP47XdPlh85BImq
TMx27MLhI+ghseT1I8bfslUsiZvVgnLCFW9U4Xp8h3x3dlCkT4uhjsdzP71eWVlX
xlgm58G36hrOKYUdtSXwjClZlSwo1TZ4vNTKodrzjDvg94Yfwp6Ji1uBFgNEBEY6
msim7f4SQ8Uko9m3MYkJXaGtsloe9RY5Mxr0CTeGJYKkcSRtq21KVUixZ24krpYv
OXiv+58qQoT6k6ocbQdH8buSnMJ84BOfd8lz4Kx9OeY9LTEkFRAzDZrH7ItjmsWo
UsHoI/7JvLf0jQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:06 2025 by rpki-client