Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
File: 02vm8HVADTBaFt3mkOJcvZRkXL4.mft (raw, json)
Hash identifier: Ton+2Wxh7HR0ZVtES596455HfwJFmJrLoKQWhJShSG0=
Subject key identifier: EC:4E:88:07:8B:37:10:59:E6:2A:EB:75:49:14:52:74:20:72:17:2F
Authority key identifier: D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE
Certificate issuer: /CN=d36be6f075400d305a16dde690e25cbd94645cbe
Certificate serial: 019510C71ECE921899DB435AC0A87938B3C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
Manifest number: 13A7
Signing time: Sun 16 Feb 2025 22:00:39 +0000
Manifest this update: Sun 16 Feb 2025 22:00:39 +0000
Manifest next update: Mon 17 Feb 2025 22:00:39 +0000
Files and hashes: 1: 02vm8HVADTBaFt3mkOJcvZRkXL4.crl (hash: 5zZvPRb6HPO+pkjSSajpuw7iJZurMysFyTSuyLWxkcE=)
2: bTRllN3rhV7rnjQJp0rvDHo40Gs.roa (hash: Bx0kFO6OMs0rFfJ2IZkuiIUT2mg/0ptdVSDBzsrl1H8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:1e:ce:92:18:99:db:43:5a:c0:a8:79:38:b3:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d36be6f075400d305a16dde690e25cbd94645cbe
Validity
Not Before: Feb 16 22:00:39 2025 GMT
Not After : Feb 17 22:00:39 2025 GMT
Subject: CN=ec4e88078b371059e62aeb75491452742072172f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e2:95:10:82:7e:1b:31:6d:bc:8c:3d:20:4f:
a5:6d:3f:de:b9:55:9e:eb:21:07:04:90:ba:98:a1:
01:5b:5a:45:bd:d6:f8:af:be:e6:5d:3f:ed:89:cd:
40:fb:c3:ae:68:13:9d:e9:12:fb:6a:02:7f:c2:fd:
78:e1:0f:6f:ce:f3:cb:e2:20:17:31:7b:b4:bb:60:
3c:66:8c:fa:81:60:6a:26:d0:cd:6b:42:96:c8:b8:
c0:00:c7:6b:95:55:79:6a:57:3e:6c:58:29:9d:ee:
fb:af:fb:3c:01:f8:66:35:b2:7a:c0:38:2e:f7:88:
9d:1f:52:4d:f2:96:09:8e:13:fb:4d:d4:d4:8b:34:
1b:cc:cf:a6:84:cd:1c:3e:5b:12:cb:e2:69:ef:79:
a2:32:b8:53:6d:63:37:7d:f8:91:7f:a4:67:9a:27:
68:20:a0:ab:54:7b:9f:e1:d7:3f:c3:2b:8d:a6:64:
02:b5:d7:ca:71:f6:14:1e:d7:c8:70:9e:c3:4e:5a:
b0:86:7d:2a:e1:b1:8f:13:a6:14:dc:fd:c4:af:75:
70:99:a0:9c:7e:08:83:79:53:47:22:b8:79:78:09:
25:6e:fe:4a:5b:27:24:cd:a9:bc:de:f4:c3:a7:4f:
de:ca:35:59:fd:85:b7:67:1e:6b:b3:c2:68:4f:2c:
8d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:4E:88:07:8B:37:10:59:E6:2A:EB:75:49:14:52:74:20:72:17:2F
X509v3 Authority Key Identifier:
keyid:D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:18:1e:1b:a9:97:7e:7e:c3:e6:9b:53:a5:37:68:66:ce:38:
00:1b:1f:bf:33:da:8c:c7:b0:a5:a4:15:39:9b:70:33:c9:3d:
5a:8f:b6:c5:41:5d:24:ed:f1:50:b2:3a:da:cb:77:d3:1e:f2:
a8:ca:22:08:9e:2a:1f:98:bb:34:71:03:ae:70:5f:3d:03:a7:
1a:a9:e4:e0:dd:7c:b1:62:ec:28:43:ac:4d:f2:33:d4:c2:85:
dd:aa:24:e9:4d:86:0a:c7:59:9b:94:f6:37:36:d9:af:6a:fe:
33:84:0b:8a:65:4c:d2:d4:5b:d8:0f:10:bb:96:de:5a:63:fb:
dd:0c:1a:b7:1f:d0:9b:b1:8b:13:c7:4b:f2:c8:b8:88:66:45:
1f:79:10:87:c1:9d:16:ed:15:c5:61:6d:20:5d:79:7d:8a:7d:
cb:a4:c0:13:0e:b6:09:53:1e:93:91:60:ec:8a:e1:94:24:e7:
82:78:73:7e:c8:09:af:0f:89:00:41:66:db:30:d7:ac:9c:98:
ce:0e:af:c8:3f:3c:79:02:b3:99:7c:a6:df:93:df:01:cc:2e:
85:ea:f0:ff:15:3a:cf:55:b4:98:e9:5b:05:39:ef:d9:b1:d7:
b7:0a:b2:90:09:d1:42:4c:5c:52:e2:8b:94:d5:5d:fc:20:18:
b8:e6:67:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQxx7OkhiZ20NawKh5OLPHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNmJlNmYwNzU0MDBkMzA1YTE2ZGRlNjkwZTI1Y2JkOTQ2
NDVjYmUwHhcNMjUwMjE2MjIwMDM5WhcNMjUwMjE3MjIwMDM5WjAzMTEwLwYDVQQD
EyhlYzRlODgwNzhiMzcxMDU5ZTYyYWViNzU0OTE0NTI3NDIwNzIxNzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+KVEIJ+GzFtvIw9IE+lbT/euVWe
6yEHBJC6mKEBW1pFvdb4r77mXT/tic1A+8OuaBOd6RL7agJ/wv144Q9vzvPL4iAX
MXu0u2A8Zoz6gWBqJtDNa0KWyLjAAMdrlVV5alc+bFgpne77r/s8AfhmNbJ6wDgu
94idH1JN8pYJjhP7TdTUizQbzM+mhM0cPlsSy+Jp73miMrhTbWM3ffiRf6Rnmido
IKCrVHuf4dc/wyuNpmQCtdfKcfYUHtfIcJ7DTlqwhn0q4bGPE6YU3P3Er3VwmaCc
fgiDeVNHIrh5eAklbv5KWyckzam83vTDp0/eyjVZ/YW3Zx5rs8JoTyyN3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOxOiAeLNxBZ5irrdUkUUnQgchcvMB8GA1UdIwQY
MBaAFNNr5vB1QA0wWhbd5pDiXL2UZFy+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDJ2bThIVkFEVEJhRnQzbWtPSmN2WlJrWEw0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8wZmRlMzgtZTliOS00YjY5LWI0MTQt
MzBjMWM1YTA4MGQ5LzEvMDJ2bThIVkFEVEJhRnQzbWtPSmN2WlJrWEw0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8wZmRlMzgtZTliOS00YjY5LWI0MTQtMzBjMWM1YTA4MGQ5
LzEvMDJ2bThIVkFEVEJhRnQzbWtPSmN2WlJrWEw0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgxgeG6mX
fn7D5ptTpTdoZs44ABsfvzPajMewpaQVOZtwM8k9Wo+2xUFdJO3xULI62st30x7y
qMoiCJ4qH5i7NHEDrnBfPQOnGqnk4N18sWLsKEOsTfIz1MKF3aok6U2GCsdZm5T2
NzbZr2r+M4QLimVM0tRb2A8Qu5beWmP73Qwatx/Qm7GLE8dL8si4iGZFH3kQh8Gd
Fu0VxWFtIF15fYp9y6TAEw62CVMek5Fg7IrhlCTngnhzfsgJrw+JAEFm2zDXrJyY
zg6vyD88eQKzmXym35PfAcwuherw/xU6z1W0mOlbBTnv2bHXtwqykAnRQkxcUuKL
lNVd/CAYuOZnsA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:21 2025 by rpki-client