Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
File: 3DC4_dBG72WGgJfwNrinyFVyqtA.mft (raw, json)
Hash identifier: EYh26mg4mqBPQxKkiRBM4yiWXxEby1fm1QE8Bley5lk=
Subject key identifier: 3A:BA:90:E4:A5:14:B9:A2:DD:43:BA:8E:DA:F2:D4:B3:31:2D:36:57
Authority key identifier: DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
Certificate issuer: /CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Certificate serial: 01951135105DCBB3BED23701F44D984CA232
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
Manifest number: 1453
Signing time: Mon 17 Feb 2025 00:00:45 +0000
Manifest this update: Mon 17 Feb 2025 00:00:45 +0000
Manifest next update: Tue 18 Feb 2025 00:00:45 +0000
Files and hashes: 1: 3DC4_dBG72WGgJfwNrinyFVyqtA.crl (hash: YFUmbJ5L4JBR1bFRxxRM+rE6qath83NNaphblgsOut4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:10:5d:cb:b3:be:d2:37:01:f4:4d:98:4c:a2:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Validity
Not Before: Feb 17 00:00:45 2025 GMT
Not After : Feb 18 00:00:45 2025 GMT
Subject: CN=3aba90e4a514b9a2dd43ba8edaf2d4b3312d3657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:99:30:97:1e:30:56:74:ef:2a:ee:ef:61:b5:
27:cb:bd:f4:92:19:94:bc:c2:e1:55:53:6a:aa:34:
8c:85:82:32:ad:cc:c2:9b:6d:81:d9:17:30:37:4e:
9f:7e:62:75:2d:7f:f3:b9:6b:21:4f:6a:f2:c1:73:
00:02:54:e1:5e:2c:e3:d1:fd:f8:56:62:f0:37:da:
d2:1d:80:2a:4e:39:7d:c3:db:d5:6a:66:40:38:71:
2f:a7:92:cf:2d:75:a4:16:e6:33:2a:c3:64:07:40:
92:a3:37:26:eb:6b:0c:f6:2f:7b:ed:8a:0f:0c:75:
6f:3e:86:6b:2b:d7:39:0e:85:f0:74:9e:d2:1a:a9:
51:9e:00:39:a6:73:e9:14:94:50:b9:f1:b2:f9:16:
6a:c4:8c:21:16:43:52:53:ec:15:0d:0e:7a:b3:1d:
a0:c2:a6:96:ed:f1:36:0f:59:bc:d7:e3:be:c4:6f:
9b:ad:fd:16:9b:a6:41:46:45:03:41:62:08:a0:12:
93:bd:fa:ae:f6:55:80:c4:69:d3:99:ba:ea:e2:6a:
44:9f:4d:fb:c4:d0:2d:1a:05:c8:d5:6a:84:4c:dc:
88:d1:56:3c:4f:b5:88:04:52:23:a2:69:cc:3c:cc:
56:9f:3b:d7:b9:4e:8b:55:d3:0d:6d:91:c3:f9:74:
7d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BA:90:E4:A5:14:B9:A2:DD:43:BA:8E:DA:F2:D4:B3:31:2D:36:57
X509v3 Authority Key Identifier:
keyid:DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:4c:00:36:83:b2:49:16:d7:ce:f0:66:06:2e:db:f9:45:a8:
96:7d:01:f3:bd:fe:06:b2:17:1e:ea:6b:b4:2d:0b:2a:39:8f:
f3:c9:23:b0:9a:1d:eb:b3:df:7f:c3:f5:7c:b5:ec:3a:9b:9c:
30:0d:f3:9b:88:51:a2:a7:1e:34:70:de:f2:1b:5d:f5:13:79:
94:0c:db:e4:dd:b5:52:dc:0d:d9:22:26:43:0b:98:1d:36:6e:
54:97:06:f8:15:76:1f:18:f1:a2:26:69:af:95:3e:ee:e3:12:
90:a4:66:6f:83:c9:2d:66:a1:39:b1:b6:bc:34:dc:f6:8c:e9:
df:d4:89:d3:71:88:1b:05:ea:e0:2b:b0:0b:cc:fe:cf:92:1a:
77:af:22:cf:bc:3b:75:85:3e:65:dc:bb:d5:0e:71:79:a1:d9:
0d:20:fc:08:19:4d:5e:0c:29:76:a6:7d:95:e3:8c:d1:31:c0:
49:6f:e2:80:d5:45:82:91:21:dc:bc:9d:e9:45:24:8e:91:ab:
b2:36:2a:d4:79:50:47:17:2d:29:11:9f:66:db:87:78:fb:98:
9e:61:56:ac:d3:4b:29:9b:f3:37:62:3d:f6:1a:30:d4:87:95:
d2:3d:26:71:03:4f:88:76:da:55:93:81:a9:21:5a:88:5c:c2:
f7:17:8f:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNRBdy7O+0jcB9E2YTKIyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMzBiOGZkZDA0NmVmNjU4NjgwOTdmMDM2YjhhN2M4NTU3
MmFhZDAwHhcNMjUwMjE3MDAwMDQ1WhcNMjUwMjE4MDAwMDQ1WjAzMTEwLwYDVQQD
EygzYWJhOTBlNGE1MTRiOWEyZGQ0M2JhOGVkYWYyZDRiMzMxMmQzNjU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Jkwlx4wVnTvKu7vYbUny730khmU
vMLhVVNqqjSMhYIyrczCm22B2RcwN06ffmJ1LX/zuWshT2rywXMAAlThXizj0f34
VmLwN9rSHYAqTjl9w9vVamZAOHEvp5LPLXWkFuYzKsNkB0CSozcm62sM9i977YoP
DHVvPoZrK9c5DoXwdJ7SGqlRngA5pnPpFJRQufGy+RZqxIwhFkNSU+wVDQ56sx2g
wqaW7fE2D1m81+O+xG+brf0Wm6ZBRkUDQWIIoBKTvfqu9lWAxGnTmbrq4mpEn037
xNAtGgXI1WqETNyI0VY8T7WIBFIjomnMPMxWnzvXuU6LVdMNbZHD+XR9WQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDq6kOSlFLmi3UO6jtry1LMxLTZXMB8GA1UdIwQY
MBaAFNwwuP3QRu9lhoCX8Da4p8hVcqrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYt
MjlhMGFhNmM0YWQxLzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYtMjlhMGFhNmM0YWQx
LzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGkwANoOy
SRbXzvBmBi7b+UWoln0B873+BrIXHuprtC0LKjmP88kjsJod67Pff8P1fLXsOpuc
MA3zm4hRoqceNHDe8htd9RN5lAzb5N21UtwN2SImQwuYHTZuVJcG+BV2HxjxoiZp
r5U+7uMSkKRmb4PJLWahObG2vDTc9ozp39SJ03GIGwXq4CuwC8z+z5Iad68iz7w7
dYU+Zdy71Q5xeaHZDSD8CBlNXgwpdqZ9leOM0THASW/igNVFgpEh3Lyd6UUkjpGr
sjYq1HlQRxctKRGfZtuHePuYnmFWrNNLKZvzN2I99how1IeV0j0mcQNPiHbaVZOB
qSFaiFzC9xePKQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:16 2025 by rpki-client