Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: OqMa7LqGauHhfDxNYR6IsPysL/adkZTFlV4G7b5pELw=
Subject key identifier: 23:DD:7C:4B:C0:9D:27:27:30:B9:87:FB:53:C9:D7:94:8E:F8:89:DF
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 019511A27903C04442898A2779D996A5C5D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: FF
Signing time: Mon 17 Feb 2025 02:00:15 +0000
Manifest this update: Mon 17 Feb 2025 02:00:15 +0000
Manifest next update: Tue 18 Feb 2025 02:00:15 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: WmRoFPzFAhf7zKvtNBQKtcUzWIu9z00eBhxAsq+piMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:79:03:c0:44:42:89:8a:27:79:d9:96:a5:c5:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Feb 17 02:00:15 2025 GMT
Not After : Feb 18 02:00:15 2025 GMT
Subject: CN=23dd7c4bc09d272730b987fb53c9d7948ef889df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e1:81:94:cb:35:e2:11:17:cd:c5:20:77:3d:
46:b9:26:cd:c5:2f:ff:d0:78:8f:04:d9:7c:0a:f4:
1f:d4:c8:38:e1:03:30:40:bc:76:98:45:23:28:18:
ac:ec:9c:84:91:9d:69:b5:aa:e8:3e:c8:84:6a:1e:
62:14:29:53:db:11:a6:0b:25:85:a7:b3:44:50:89:
4d:3f:ff:38:91:34:80:d8:66:48:2d:25:df:2c:d6:
25:47:11:61:04:34:05:6e:65:6c:cf:bd:4d:ab:3b:
f9:06:69:3e:16:32:4d:3d:46:a2:9b:74:af:08:b0:
41:42:ab:54:ae:4e:75:6b:31:41:a7:aa:51:5c:19:
fc:99:db:6c:59:b3:fc:7e:0d:cd:cd:11:f8:78:8f:
53:2f:b5:69:fd:50:6c:95:3a:ad:ec:00:31:0b:f7:
59:7c:6f:2b:a5:87:ca:11:22:72:65:f9:0b:f3:6c:
ea:a2:a1:c5:48:87:ec:6c:c0:31:3e:88:99:4d:5c:
49:be:92:37:96:10:60:00:4b:3d:d4:89:ff:0e:dc:
39:98:3f:c9:8d:01:e1:96:6c:8c:43:64:b5:d0:ab:
93:9b:e9:6e:04:71:80:e4:e6:3a:63:ef:b6:b0:cd:
5c:60:dc:6f:20:af:26:cc:33:88:84:54:d0:71:4e:
e9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DD:7C:4B:C0:9D:27:27:30:B9:87:FB:53:C9:D7:94:8E:F8:89:DF
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:d9:1a:1a:56:fd:f8:e4:d7:07:13:0d:a5:1a:bd:c4:79:7b:
1a:e3:23:d0:ef:c1:53:f6:5b:13:68:0f:ab:8a:dc:53:93:81:
ac:1b:ca:2d:d4:10:fe:82:ce:3f:21:6a:fc:80:b5:78:6c:61:
a2:1f:65:5e:fa:2d:a1:cc:65:2d:5c:32:74:fc:22:66:ad:92:
d2:2c:b6:5f:ba:97:76:6f:80:aa:8e:6d:ae:7e:06:a3:64:ac:
44:5c:ff:64:e0:10:ee:52:ff:ce:80:0e:6a:ee:3c:38:ef:c0:
c1:4b:9b:78:2b:95:71:7f:21:51:a4:7d:f8:8b:11:91:5d:1c:
07:a0:4f:55:d8:26:8e:ee:52:7f:5d:6f:1c:71:87:4f:5f:9c:
6f:1a:e6:e8:c6:12:5c:26:ed:49:e8:5a:72:3c:f9:d6:20:83:
26:6c:1e:cc:e1:2a:07:20:ba:1f:6d:85:68:1c:1b:c1:e9:8f:
ab:e1:c3:4e:1e:5a:45:3f:b6:25:a7:18:41:a8:3d:fc:f0:cb:
e5:4c:ed:79:ec:7a:07:50:61:fd:22:b5:c2:90:28:1f:48:6e:
49:b4:0c:90:4f:d7:5f:81:f0:55:70:c3:15:cc:39:aa:da:e2:
95:01:41:8a:9e:4a:14:a3:92:c7:5f:28:a9:23:9b:4d:c9:af:
6e:34:87:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURonkDwERCiYonedmWpcXWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyOGVmMWY0Zjg4Mjc4ZjRkZjE5ZTczZTMzODFjZWNkNzhl
MDY5YzEwHhcNMjUwMjE3MDIwMDE1WhcNMjUwMjE4MDIwMDE1WjAzMTEwLwYDVQQD
EygyM2RkN2M0YmMwOWQyNzI3MzBiOTg3ZmI1M2M5ZDc5NDhlZjg4OWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzeGBlMs14hEXzcUgdz1GuSbNxS//
0HiPBNl8CvQf1Mg44QMwQLx2mEUjKBis7JyEkZ1ptaroPsiEah5iFClT2xGmCyWF
p7NEUIlNP/84kTSA2GZILSXfLNYlRxFhBDQFbmVsz71Nqzv5Bmk+FjJNPUaim3Sv
CLBBQqtUrk51azFBp6pRXBn8mdtsWbP8fg3NzRH4eI9TL7Vp/VBslTqt7AAxC/dZ
fG8rpYfKESJyZfkL82zqoqHFSIfsbMAxPoiZTVxJvpI3lhBgAEs91In/Dtw5mD/J
jQHhlmyMQ2S10KuTm+luBHGA5OY6Y++2sM1cYNxvIK8mzDOIhFTQcU7pzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCPdfEvAnScnMLmH+1PJ15SO+InfMB8GA1UdIwQY
MBaAFLKO8fT4gnj03xnnPjOBzs144GnBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8xZjA1MWItZTczNS00OWI4LWJjNmQt
OWVmMGE1OTkyN2IxLzEvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8xZjA1MWItZTczNS00OWI4LWJjNmQtOWVmMGE1OTkyN2Ix
LzEvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY9kaGlb9
+OTXBxMNpRq9xHl7GuMj0O/BU/ZbE2gPq4rcU5OBrBvKLdQQ/oLOPyFq/IC1eGxh
oh9lXvotocxlLVwydPwiZq2S0iy2X7qXdm+Aqo5trn4Go2SsRFz/ZOAQ7lL/zoAO
au48OO/AwUubeCuVcX8hUaR9+IsRkV0cB6BPVdgmju5Sf11vHHGHT1+cbxrm6MYS
XCbtSehacjz51iCDJmwezOEqByC6H22FaBwbwemPq+HDTh5aRT+2JacYQag9/PDL
5Uzteex6B1Bh/SK1wpAoH0huSbQMkE/XX4HwVXDDFcw5qtrilQFBip5KFKOSx18o
qSObTcmvbjSH1Q==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:55 2025 by rpki-client