Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: wZ4wYc3lkRa5zU1LMXhC/u07k+UqqHfkXgpagd9Lb1E=
Subject key identifier: 11:E0:DF:B4:DE:0A:A8:B6:A6:80:FD:D4:B9:02:88:31:97:E1:D8:6D
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 019512477F9FDCCE2E387BA0976827150277
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 13AC
Signing time: Mon 17 Feb 2025 05:00:30 +0000
Manifest this update: Mon 17 Feb 2025 05:00:30 +0000
Manifest next update: Tue 18 Feb 2025 05:00:30 +0000
Files and hashes: 1: LgelsY-16hZE8VmZ4UWScnrAkQA.roa (hash: 5MPF2K6ZagDsXMwY0mVJRSAJCcCewM4ZcbU+TqCGJzs=)
2: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: vNRqvmCDlY+p//oNBI1ROZbx6XG13YEO5guezE8VhTc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:7f:9f:dc:ce:2e:38:7b:a0:97:68:27:15:02:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Feb 17 05:00:30 2025 GMT
Not After : Feb 18 05:00:30 2025 GMT
Subject: CN=11e0dfb4de0aa8b6a680fdd4b902883197e1d86d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c6:e1:8e:bd:e0:97:26:78:cf:c6:f8:ff:c3:
2f:9e:59:e7:56:6e:03:5e:3d:c7:21:b0:01:c5:3a:
3f:96:56:d7:6f:45:da:4c:68:3a:9a:cb:fc:da:43:
d3:e2:e9:d4:50:22:06:2c:63:dd:ed:a6:7b:d8:05:
34:46:51:86:30:a0:5f:62:8e:20:12:95:49:ff:23:
de:01:aa:f0:ae:08:aa:c5:49:6b:93:6b:23:44:aa:
58:bd:92:62:43:01:c9:32:7c:8e:c8:3f:b5:b0:bb:
d4:20:e7:fd:69:92:0a:7c:08:24:f5:b8:4e:e7:f5:
6d:03:7c:e5:ad:ca:e1:b8:8e:01:1b:8e:3e:7a:bd:
0e:e3:31:51:be:09:bb:ea:fe:dc:3a:e4:2e:36:9f:
06:70:7f:af:a7:6f:2f:e7:25:86:8e:f9:a3:f4:ac:
96:67:bf:c4:50:08:a3:cc:bd:18:da:81:d9:8e:db:
cb:cf:7a:a9:39:72:b3:b7:cb:e8:72:b6:70:20:73:
b0:9f:dd:61:8f:0c:4c:d9:70:78:9c:bb:06:8f:65:
a3:a1:b1:69:d0:f1:f8:79:ac:87:aa:c5:01:33:0d:
93:07:7c:16:70:2f:fb:85:d4:c3:ed:04:1c:57:51:
71:fd:e5:a8:b1:3f:8d:6d:06:ea:dd:90:65:cd:72:
33:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E0:DF:B4:DE:0A:A8:B6:A6:80:FD:D4:B9:02:88:31:97:E1:D8:6D
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:08:d6:32:c3:da:e4:4b:2a:da:a6:1c:20:a4:5a:d5:f7:71:
64:c2:ba:b7:57:66:87:c7:3d:be:6c:82:de:af:d1:14:37:db:
34:15:40:4b:5b:2d:b9:d1:77:2d:aa:62:85:59:fb:3a:7d:95:
dd:6c:52:a8:99:0c:ab:f8:d9:d5:61:23:07:07:dc:65:19:aa:
c9:52:3d:a0:d4:1e:d8:08:d1:c3:64:c6:0a:e8:e1:ca:c4:62:
4c:57:a7:fa:9e:71:db:9c:47:cc:d5:6b:48:a1:f5:e1:7b:30:
e1:85:a9:27:d3:4c:7a:aa:36:dc:11:01:bc:c6:fa:31:9b:51:
2e:66:08:19:6c:63:f8:e9:88:71:af:9a:43:a4:1e:08:dc:f0:
46:af:65:b6:d2:5f:d2:f2:b8:15:90:04:e2:78:12:48:c6:bf:
43:46:73:37:47:dc:ba:a6:ca:b1:5a:c8:08:d1:87:4a:e6:4b:
32:47:6d:35:e0:87:3e:e0:25:97:94:d8:63:94:15:e8:36:c4:
56:80:4c:e7:1b:ce:7c:5e:b6:8d:76:bf:6a:7c:d8:c0:b9:f9:
e1:25:0c:78:aa:90:3f:06:bf:d9:fd:21:bb:a4:12:5e:73:93:
99:de:29:96:69:6f:0a:22:dc:08:84:1f:3c:6b:fc:ef:7b:39:
bc:f1:e4:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSR3+f3M4uOHugl2gnFQJ3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxOTJjNTJmMzYwYTNhNzJmZTIyNDQxYWMzZmM3ZTBlNTIy
NWVlOTEwHhcNMjUwMjE3MDUwMDMwWhcNMjUwMjE4MDUwMDMwWjAzMTEwLwYDVQQD
EygxMWUwZGZiNGRlMGFhOGI2YTY4MGZkZDRiOTAyODgzMTk3ZTFkODZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMbhjr3glyZ4z8b4/8MvnlnnVm4D
Xj3HIbABxTo/llbXb0XaTGg6msv82kPT4unUUCIGLGPd7aZ72AU0RlGGMKBfYo4g
EpVJ/yPeAarwrgiqxUlrk2sjRKpYvZJiQwHJMnyOyD+1sLvUIOf9aZIKfAgk9bhO
5/VtA3zlrcrhuI4BG44+er0O4zFRvgm76v7cOuQuNp8GcH+vp28v5yWGjvmj9KyW
Z7/EUAijzL0Y2oHZjtvLz3qpOXKzt8vocrZwIHOwn91hjwxM2XB4nLsGj2WjobFp
0PH4eayHqsUBMw2TB3wWcC/7hdTD7QQcV1Fx/eWosT+NbQbq3ZBlzXIzrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBHg37TeCqi2poD91LkCiDGX4dhtMB8GA1UdIwQY
MBaAFDGSxS82Cjpy/iJEGsP8fg5SJe6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81MjRiZmUtYzVhZS00ZjY3LTg0MTMt
Mjc0OGM0MDAyYzJlLzEvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi81MjRiZmUtYzVhZS00ZjY3LTg0MTMtMjc0OGM0MDAyYzJl
LzEvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEQjWMsPa
5Esq2qYcIKRa1fdxZMK6t1dmh8c9vmyC3q/RFDfbNBVAS1studF3LapihVn7On2V
3WxSqJkMq/jZ1WEjBwfcZRmqyVI9oNQe2AjRw2TGCujhysRiTFen+p5x25xHzNVr
SKH14Xsw4YWpJ9NMeqo23BEBvMb6MZtRLmYIGWxj+OmIca+aQ6QeCNzwRq9lttJf
0vK4FZAE4ngSSMa/Q0ZzN0fcuqbKsVrICNGHSuZLMkdtNeCHPuAll5TYY5QV6DbE
VoBM5xvOfF62jXa/anzYwLn54SUMeKqQPwa/2f0hu6QSXnOTmd4plmlvCiLcCIQf
PGv873s5vPHk5g==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:55 2025 by rpki-client