Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json)
Hash identifier: BHBZLRFn1ZaaFEI0QiyfKpGNID/UmuOCNXkY40cy+c4=
Subject key identifier: 04:DB:55:63:58:70:10:D2:CC:B4:58:6A:4F:41:18:93:75:8B:4D:20
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 019510C75178270EE79A407DB6AECA882384
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
Manifest number: 13E8
Signing time: Sun 16 Feb 2025 22:00:52 +0000
Manifest this update: Sun 16 Feb 2025 22:00:52 +0000
Manifest next update: Mon 17 Feb 2025 22:00:52 +0000
Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: K4AeHhgq+5Gmc7uWDX7/Zx7PWThuf3CVhLHaqbzY/I0=)
2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:51:78:27:0e:e7:9a:40:7d:b6:ae:ca:88:23:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Feb 16 22:00:52 2025 GMT
Not After : Feb 17 22:00:52 2025 GMT
Subject: CN=04db5563587010d2ccb4586a4f411893758b4d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b9:26:e8:b9:63:88:20:3b:43:df:d1:32:ed:
1d:83:8c:65:dd:06:69:95:d9:1e:70:b6:a1:0f:0a:
a7:44:00:1a:c4:a6:c6:86:3c:81:40:42:76:6a:c5:
0e:73:06:ea:d6:18:9f:31:7e:1d:5b:a0:69:29:41:
35:2c:be:94:d6:56:ce:67:22:6c:ca:10:51:ed:a4:
05:86:c8:2b:47:b8:19:3d:3d:cd:0f:63:f1:45:ac:
29:64:1e:8c:7f:b3:46:8a:ee:81:ec:e4:6f:35:fc:
dc:4a:91:e0:90:5f:6a:73:24:93:cb:8d:aa:8f:ad:
46:fe:f2:25:0d:de:f5:93:da:d2:10:f7:da:ba:e9:
0f:93:b5:2f:e1:3b:67:c7:d7:69:03:6b:f7:91:c9:
7b:c0:e4:aa:ca:17:28:17:e7:5b:61:e8:39:da:26:
27:e3:db:d4:50:53:a4:54:ed:a6:f9:35:6b:48:ad:
0a:a7:24:59:57:bb:e3:92:d9:32:4f:d0:80:86:66:
9b:d7:04:0b:28:75:2d:53:dc:84:e7:58:e1:d3:24:
23:b4:c5:12:ce:69:1c:8c:1b:04:47:2e:c2:7c:87:
28:4c:f7:b8:a0:41:da:46:97:ec:fb:fa:1a:29:3a:
3c:4b:46:03:ee:f9:2b:b7:77:65:17:31:a3:fd:df:
2e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:DB:55:63:58:70:10:D2:CC:B4:58:6A:4F:41:18:93:75:8B:4D:20
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:00:2b:7d:86:4f:f2:65:4a:0e:eb:c7:eb:23:4a:86:8b:fb:
88:2a:ac:5e:3e:1d:b6:f8:c9:5f:9a:c4:b1:05:b1:21:38:94:
c0:25:d7:9c:35:22:4f:fd:00:66:4e:13:85:eb:72:56:69:72:
31:be:8e:e8:0b:fb:0e:e4:4b:9c:3d:33:25:5b:12:84:27:28:
a7:5d:19:9f:76:eb:56:5f:77:8c:39:d5:2b:ff:33:23:0d:6e:
57:a2:7f:3e:15:b3:a1:d4:7e:fe:66:9d:35:9f:23:59:6f:a8:
92:b0:02:fb:8d:64:53:9a:5c:a5:a0:90:d2:2d:42:91:e6:84:
a0:40:74:52:4e:09:72:d2:75:b6:d5:c6:18:36:53:62:18:6e:
bb:0d:aa:6d:93:08:79:1e:17:4d:1d:0c:fe:15:6d:e0:82:22:
8c:90:b3:39:69:4c:fb:a1:61:91:cb:d2:37:9d:2c:6d:e3:4d:
d9:e2:66:d2:89:0b:33:10:d9:77:91:eb:96:d6:3a:d3:98:a0:
36:37:bb:69:08:ff:7f:3c:9c:2f:8f:d2:8a:23:93:5f:52:0e:
fc:bf:8e:01:e6:cc:0a:ff:89:20:de:b5:5c:56:19:dd:36:9b:
37:27:e0:2e:31:0e:cf:2e:79:05:2b:cd:03:6d:3d:fa:14:6f:
5d:30:32:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQx1F4Jw7nmkB9tq7KiCOEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiZWJkMzNkNGNkNDU0NjVlZmE1MGZhYTgyNGZiODEyYzQx
NzNhMjcwHhcNMjUwMjE2MjIwMDUyWhcNMjUwMjE3MjIwMDUyWjAzMTEwLwYDVQQD
EygwNGRiNTU2MzU4NzAxMGQyY2NiNDU4NmE0ZjQxMTg5Mzc1OGI0ZDIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7km6LljiCA7Q9/RMu0dg4xl3QZp
ldkecLahDwqnRAAaxKbGhjyBQEJ2asUOcwbq1hifMX4dW6BpKUE1LL6U1lbOZyJs
yhBR7aQFhsgrR7gZPT3ND2PxRawpZB6Mf7NGiu6B7ORvNfzcSpHgkF9qcySTy42q
j61G/vIlDd71k9rSEPfauukPk7Uv4Ttnx9dpA2v3kcl7wOSqyhcoF+dbYeg52iYn
49vUUFOkVO2m+TVrSK0KpyRZV7vjktkyT9CAhmab1wQLKHUtU9yE51jh0yQjtMUS
zmkcjBsERy7CfIcoTPe4oEHaRpfs+/oaKTo8S0YD7vkrt3dlFzGj/d8u4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFATbVWNYcBDSzLRYak9BGJN1i00gMB8GA1UdIwQY
MBaAFBvr0z1M1FRl76UPqoJPuBLEFzonMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDkt
OGFiNWViNTU4NDczLzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDktOGFiNWViNTU4NDcz
LzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbwArfYZP
8mVKDuvH6yNKhov7iCqsXj4dtvjJX5rEsQWxITiUwCXXnDUiT/0AZk4ThetyVmly
Mb6O6Av7DuRLnD0zJVsShCcop10Zn3brVl93jDnVK/8zIw1uV6J/PhWzodR+/mad
NZ8jWW+okrAC+41kU5pcpaCQ0i1CkeaEoEB0Uk4JctJ1ttXGGDZTYhhuuw2qbZMI
eR4XTR0M/hVt4IIijJCzOWlM+6FhkcvSN50sbeNN2eJm0okLMxDZd5HrltY605ig
Nje7aQj/fzycL4/SiiOTX1IO/L+OAebMCv+JIN61XFYZ3TabNyfgLjEOzy55BSvN
A209+hRvXTAy4Q==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:05 2025 by rpki-client