Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
File: qYW1Uh0gkBiCR48PCUGWLD6clPo.mft (raw, json)
Hash identifier: Pa5sn93PaS/3QUrXkDl+L7j7/r38KoHh36vHU91fkYg=
Subject key identifier: 0B:26:16:B4:59:38:E0:4B:BE:A8:4A:32:47:AB:5C:2B:16:81:09:32
Authority key identifier: A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
Certificate issuer: /CN=a985b5521d20901882478f0f0941962c3e9c94fa
Certificate serial: 0194C50838FEFDD6CBC6B9849D2BB5A376B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
Manifest number: B5
Signing time: Sun 02 Feb 2025 05:00:37 +0000
Manifest this update: Sun 02 Feb 2025 05:00:37 +0000
Manifest next update: Mon 03 Feb 2025 05:00:37 +0000
Files and hashes: 1: 5AKIjXxvlD1ejPdjcCa3GKRo67k.roa (hash: tQg1Hre7Hi5yVH1kQPOYLNbXNBUZ5paMSfhayTmbmmc=)
2: qYW1Uh0gkBiCR48PCUGWLD6clPo.crl (hash: 9MhS/SYcVIhcso71wnGG0r7gy/C+zxEwcujI4lp/4Zg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:08:38:fe:fd:d6:cb:c6:b9:84:9d:2b:b5:a3:76:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a985b5521d20901882478f0f0941962c3e9c94fa
Validity
Not Before: Feb 2 05:00:37 2025 GMT
Not After : Feb 3 05:00:37 2025 GMT
Subject: CN=0b2616b45938e04bbea84a3247ab5c2b16810932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:3d:e9:ff:3d:d1:7b:ed:68:4f:30:e0:7c:1a:
e4:53:29:1e:f8:c0:98:17:6d:5b:fa:f9:4d:aa:e4:
67:ff:ca:f7:44:f3:fa:e4:f8:0f:5c:9a:a7:4b:97:
02:ef:93:16:82:5e:3b:c4:82:bd:2a:a5:55:e0:09:
5d:16:9b:45:f5:43:75:07:bb:6a:da:45:f3:21:ab:
92:c1:bb:7e:0e:bd:1a:c5:c5:fc:02:f5:43:12:1a:
9a:3a:c4:dc:81:26:58:d2:ec:52:ee:db:a4:ba:77:
b2:7c:14:4a:5e:11:d2:76:64:d2:9e:49:e3:cb:e5:
0c:dd:39:a1:bc:00:71:32:54:1c:a5:b2:34:75:0d:
91:09:e4:fe:72:37:28:f4:9f:3e:1c:ab:55:bb:6a:
83:1a:71:b8:10:d6:5c:4e:70:51:16:54:73:84:a4:
c7:9b:6e:6c:6d:84:8c:34:0f:84:da:e9:f6:04:2b:
75:8b:09:09:e8:56:6e:ac:2d:ec:6a:d4:b2:7c:54:
4e:f8:8b:d5:07:d7:b9:5b:83:45:c0:e3:43:e9:f5:
04:b2:9d:fa:8e:bb:b5:99:c2:22:d9:71:d5:8d:a8:
3f:32:9b:3b:2d:1d:8e:94:23:6a:dc:59:6c:45:ca:
78:28:3c:5c:b2:fa:a4:82:de:dd:22:c5:34:90:7e:
84:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:26:16:B4:59:38:E0:4B:BE:A8:4A:32:47:AB:5C:2B:16:81:09:32
X509v3 Authority Key Identifier:
keyid:A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:b0:b0:ae:ed:ce:05:44:49:3a:64:73:5b:01:14:3c:f6:ad:
b2:4b:df:4f:76:55:4f:70:86:f4:95:9c:e6:54:b9:0b:7b:a7:
67:2a:32:60:63:f0:e0:22:b2:9c:91:f9:af:e9:52:80:9f:b5:
ec:6a:4f:01:a9:d6:4c:39:44:6c:f8:96:72:9d:97:3f:f9:b7:
7d:1f:d8:93:d4:19:90:f7:b3:96:d9:37:8c:05:53:e8:da:44:
0f:56:27:9d:a2:4d:e1:eb:1c:a9:b1:e5:6a:52:47:d5:7d:56:
83:bd:de:6f:1c:fd:ec:7c:f7:88:41:65:98:b7:b8:eb:5b:ad:
fa:cd:57:1d:f2:e1:4d:af:f8:86:20:be:54:f4:0b:bf:27:41:
9a:d4:67:d6:9a:e4:ef:ca:ca:13:dc:fa:c0:5f:e7:76:83:48:
b9:a5:b3:4d:fa:fc:d2:53:b2:3e:02:fa:e9:a8:e6:b5:3b:a7:
a4:bd:81:34:44:44:b4:3b:30:ae:70:03:83:84:c2:b8:bd:ad:
67:5d:d4:80:a1:06:18:8f:7b:30:4c:70:1e:06:39:c3:37:ac:
c5:f1:ce:0c:ef:c8:f2:24:bd:bb:f8:51:46:13:97:d3:12:a5:
d7:c8:43:7e:e4:53:a0:33:54:95:d7:8e:38:52:20:33:40:2f:
3f:05:b9:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTFCDj+/dbLxrmEnSu1o3ayMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5ODViNTUyMWQyMDkwMTg4MjQ3OGYwZjA5NDE5NjJjM2U5
Yzk0ZmEwHhcNMjUwMjAyMDUwMDM3WhcNMjUwMjAzMDUwMDM3WjAzMTEwLwYDVQQD
EygwYjI2MTZiNDU5MzhlMDRiYmVhODRhMzI0N2FiNWMyYjE2ODEwOTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/T3p/z3Re+1oTzDgfBrkUyke+MCY
F21b+vlNquRn/8r3RPP65PgPXJqnS5cC75MWgl47xIK9KqVV4AldFptF9UN1B7tq
2kXzIauSwbt+Dr0axcX8AvVDEhqaOsTcgSZY0uxS7tukuneyfBRKXhHSdmTSnknj
y+UM3TmhvABxMlQcpbI0dQ2RCeT+cjco9J8+HKtVu2qDGnG4ENZcTnBRFlRzhKTH
m25sbYSMNA+E2un2BCt1iwkJ6FZurC3satSyfFRO+IvVB9e5W4NFwOND6fUEsp36
jru1mcIi2XHVjag/Mps7LR2OlCNq3FlsRcp4KDxcsvqkgt7dIsU0kH6ERQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAsmFrRZOOBLvqhKMkerXCsWgQkyMB8GA1UdIwQY
MBaAFKmFtVIdIJAYgkePDwlBliw+nJT6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS83ZmZiM2UtOGE0Yy00MGI3LTg3NmUt
NjAwM2Q1YWVlZDFmLzEvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS83ZmZiM2UtOGE0Yy00MGI3LTg3NmUtNjAwM2Q1YWVlZDFm
LzEvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJLCwru3O
BURJOmRzWwEUPPatskvfT3ZVT3CG9JWc5lS5C3unZyoyYGPw4CKynJH5r+lSgJ+1
7GpPAanWTDlEbPiWcp2XP/m3fR/Yk9QZkPezltk3jAVT6NpED1YnnaJN4escqbHl
alJH1X1Wg73ebxz97Hz3iEFlmLe461ut+s1XHfLhTa/4hiC+VPQLvydBmtRn1prk
78rKE9z6wF/ndoNIuaWzTfr80lOyPgL66ajmtTunpL2BNEREtDswrnADg4TCuL2t
Z13UgKEGGI97MExwHgY5wzesxfHODO/I8iS9u/hRRhOX0xKl18hDfuRToDNUldeO
OFIgM0AvPwW5dQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:43:15 2025 by rpki-client