Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
File: AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft (raw, json)
Hash identifier: 7vt7UAK7IAbLpNn58c7oadpa01nK387ufl9nlBRFOfA=
Subject key identifier: C1:3F:32:BF:4A:82:10:BF:14:C1:86:75:88:CC:5E:1B:51:A4:CC:04
Authority key identifier: 01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
Certificate issuer: /CN=017c90654653ac150028562b32431491b52147d1
Certificate serial: 01951135451F853996F87C9466D33BD61E56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
Manifest number: 0C35
Signing time: Mon 17 Feb 2025 00:00:58 +0000
Manifest this update: Mon 17 Feb 2025 00:00:58 +0000
Manifest next update: Tue 18 Feb 2025 00:00:58 +0000
Files and hashes: 1: AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl (hash: W+hdr5IwIJw8y1DJSCOfz7oQi8oUMIwXFXlM6Yr8lCw=)
2: L2lE8nOnlyxmaD3x1ZRACrDCMP8.roa (hash: ZXu28qkdGNNh4liAxQWetF6CZII1uCDb6IiGf6WW5Vw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:45:1f:85:39:96:f8:7c:94:66:d3:3b:d6:1e:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=017c90654653ac150028562b32431491b52147d1
Validity
Not Before: Feb 17 00:00:58 2025 GMT
Not After : Feb 18 00:00:58 2025 GMT
Subject: CN=c13f32bf4a8210bf14c1867588cc5e1b51a4cc04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b5:d2:fd:eb:d2:62:53:50:8d:c6:bb:94:02:
7b:dd:dc:9b:01:7c:b9:c5:8a:1c:76:d5:6d:e1:ea:
a6:09:5e:e3:0e:fc:6e:57:e0:0e:f6:c2:b4:77:70:
5b:99:24:20:93:f9:6f:d1:b6:d9:f1:c8:f8:d4:e3:
3f:69:48:f7:c5:7b:35:94:79:cf:5a:9b:12:44:89:
a7:06:bb:86:b6:ec:4a:07:0b:d5:7a:53:77:e6:3e:
1c:0e:2a:11:c1:41:58:a8:5e:c8:1d:8a:d4:b8:6b:
ac:6e:e2:3c:fa:70:d8:25:f6:15:62:c4:e6:99:e0:
60:63:31:7d:78:90:29:bc:f9:c4:bb:4f:b4:5d:fe:
12:b1:60:c7:34:7c:4b:f0:0b:50:95:b7:6d:62:4c:
7f:29:26:1e:4f:67:71:5b:3a:f4:4b:f8:a5:80:47:
d9:cc:06:ff:40:61:cd:00:20:86:1f:c7:0b:cb:7b:
3e:e3:38:aa:6c:80:5b:86:e2:c5:14:8f:19:ff:e7:
a3:a3:f9:9b:f6:c9:e0:7c:80:4f:e2:93:4a:4a:86:
62:88:c1:9e:81:84:f0:e1:96:35:24:11:18:65:21:
4d:49:9c:9e:1d:e6:97:a0:00:23:56:26:bc:66:88:
4d:c6:12:6c:90:2b:25:79:85:6a:e8:e1:83:08:93:
01:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3F:32:BF:4A:82:10:BF:14:C1:86:75:88:CC:5E:1B:51:A4:CC:04
X509v3 Authority Key Identifier:
keyid:01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:2e:95:11:45:db:57:6b:6c:4b:e8:e4:84:95:d8:63:c4:eb:
d4:2a:4c:25:b2:8c:b1:77:e4:5b:88:d0:e4:98:91:9c:f2:6a:
3e:2e:fe:67:f3:d3:4c:59:f0:5c:ba:2e:10:8f:be:f1:49:1d:
de:ba:d7:0f:31:ff:04:7c:a2:e2:cb:b2:9c:cd:04:82:d9:72:
98:c0:c2:6b:55:85:82:98:79:0d:0b:07:88:12:11:23:1b:1d:
c2:e9:8f:f9:44:dd:94:27:89:be:38:34:89:68:e7:f7:f6:89:
af:8e:7d:33:09:e7:ce:0a:cf:40:34:73:71:d5:a8:bd:e1:99:
fe:71:5b:ab:f7:8c:8f:6f:6d:ee:9e:86:a5:cb:a0:0f:67:c9:
e5:02:b8:0e:70:db:60:5a:35:7d:95:06:87:7f:9d:59:6e:b8:
fe:69:fa:68:e4:3a:84:37:2b:e5:13:30:73:52:36:fe:5b:1f:
31:27:8c:b2:62:89:d6:b1:49:bc:82:47:20:70:c1:52:f9:d0:
04:4a:23:ed:86:93:f6:24:28:17:ca:08:8a:fe:a3:3b:ec:1c:
65:89:94:0c:ce:6e:5a:b7:4a:e3:f6:29:39:87:50:ad:2f:9b:
da:e9:8b:c3:71:eb:68:71:7a:7b:d8:3d:69:ba:42:1f:4c:c0:
a3:7a:3e:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNUUfhTmW+HyUZtM71h5WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxN2M5MDY1NDY1M2FjMTUwMDI4NTYyYjMyNDMxNDkxYjUy
MTQ3ZDEwHhcNMjUwMjE3MDAwMDU4WhcNMjUwMjE4MDAwMDU4WjAzMTEwLwYDVQQD
EyhjMTNmMzJiZjRhODIxMGJmMTRjMTg2NzU4OGNjNWUxYjUxYTRjYzA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjrXS/evSYlNQjca7lAJ73dybAXy5
xYocdtVt4eqmCV7jDvxuV+AO9sK0d3BbmSQgk/lv0bbZ8cj41OM/aUj3xXs1lHnP
WpsSRImnBruGtuxKBwvVelN35j4cDioRwUFYqF7IHYrUuGusbuI8+nDYJfYVYsTm
meBgYzF9eJApvPnEu0+0Xf4SsWDHNHxL8AtQlbdtYkx/KSYeT2dxWzr0S/ilgEfZ
zAb/QGHNACCGH8cLy3s+4ziqbIBbhuLFFI8Z/+ejo/mb9sngfIBP4pNKSoZiiMGe
gYTw4ZY1JBEYZSFNSZyeHeaXoAAjVia8ZohNxhJskCsleYVq6OGDCJMBmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFME/Mr9KghC/FMGGdYjMXhtRpMwEMB8GA1UdIwQY
MBaAFAF8kGVGU6wVAChWKzJDFJG1IUfRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8zNWI3ZTUtODg2NC00NzU5LWJiODYt
NzAxM2E2YzQzOTg1LzEvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8zNWI3ZTUtODg2NC00NzU5LWJiODYtNzAxM2E2YzQzOTg1
LzEvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdi6VEUXb
V2tsS+jkhJXYY8Tr1CpMJbKMsXfkW4jQ5JiRnPJqPi7+Z/PTTFnwXLouEI++8Ukd
3rrXDzH/BHyi4suynM0EgtlymMDCa1WFgph5DQsHiBIRIxsdwumP+UTdlCeJvjg0
iWjn9/aJr459MwnnzgrPQDRzcdWoveGZ/nFbq/eMj29t7p6GpcugD2fJ5QK4DnDb
YFo1fZUGh3+dWW64/mn6aOQ6hDcr5RMwc1I2/lsfMSeMsmKJ1rFJvIJHIHDBUvnQ
BEoj7YaT9iQoF8oIiv6jO+wcZYmUDM5uWrdK4/YpOYdQrS+b2umLw3HraHF6e9g9
abpCH0zAo3o+Gg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:17 2025 by rpki-client