Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: 1gI/6vmV5N3QZR7oJhLGC6jbeWrw9xvGMy3rbfGCxCU=
Subject key identifier: 70:E1:2B:A7:57:FC:2E:D5:09:51:AA:69:D3:CC:DF:50:FF:78:CE:39
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 0194C3F6336EACFF0F26153BB2C4229F36A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 089A
Signing time: Sun 02 Feb 2025 00:01:19 +0000
Manifest this update: Sun 02 Feb 2025 00:01:19 +0000
Manifest next update: Mon 03 Feb 2025 00:01:19 +0000
Files and hashes: 1: OyVcB1brzSxuoeEjBo4fT0W9OFc.roa (hash: sut6tQHQTuBMJAc0/1shERZEk1RWFKSSDeDy5cd5Klo=)
2: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: T6x6epI3AwXANLYgsIECLZ6r6Q5rsryLNtygzUMK/3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f6:33:6e:ac:ff:0f:26:15:3b:b2:c4:22:9f:36:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Feb 2 00:01:19 2025 GMT
Not After : Feb 3 00:01:19 2025 GMT
Subject: CN=70e12ba757fc2ed50951aa69d3ccdf50ff78ce39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:45:5c:d1:b2:0c:90:b5:8e:fa:69:ce:6a:b2:
aa:c0:ec:7c:c6:53:ff:5b:b5:92:a3:60:38:47:4b:
d8:16:df:88:84:b4:4e:10:92:cb:3c:7d:34:f5:87:
62:d9:39:a2:3c:75:ec:a4:7f:8c:8b:8d:5d:ed:e8:
1d:73:d9:dd:d0:2a:d7:f8:1d:da:23:29:31:03:c1:
ad:19:48:f0:fa:83:14:c5:30:df:bc:7a:c4:18:41:
27:e9:c5:8e:0c:4b:06:c9:c3:f8:17:f4:7c:d3:28:
34:53:2b:39:fe:9a:1e:0a:7e:a2:19:b6:ae:9f:c6:
e6:f6:b9:08:dc:ac:30:40:43:fc:1a:3e:da:ee:90:
4e:60:2f:e2:26:a4:35:a5:b9:aa:ef:bb:1c:17:13:
f3:0f:52:39:ef:af:b5:06:3b:f9:9b:1b:8f:f3:48:
50:71:54:14:f8:f0:89:93:b4:13:4d:2f:ba:9d:a8:
36:62:3e:76:88:6a:df:da:c1:43:d0:e7:74:bc:bb:
ac:47:39:f7:6a:94:9d:5e:39:e5:19:e3:00:06:33:
e9:a8:7f:53:ef:81:2c:4e:3a:56:0f:51:ef:a4:8b:
3a:d2:7a:7a:2a:61:45:ff:97:41:55:0a:d3:f2:2e:
13:72:b6:03:50:7c:29:8a:7b:f3:32:40:c5:a7:f7:
e5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E1:2B:A7:57:FC:2E:D5:09:51:AA:69:D3:CC:DF:50:FF:78:CE:39
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:2a:a9:b2:fb:34:99:f8:d8:e7:1b:92:0f:53:f5:ad:26:f0:
6f:bb:53:02:6e:a9:3b:c2:2f:e7:fc:a3:a6:23:a9:7c:83:9c:
35:90:3a:f0:9d:3f:fd:e1:8a:87:17:eb:85:ec:d0:f5:f3:ad:
9a:98:2d:47:ea:0d:56:f6:12:a4:39:3d:18:bd:9c:15:09:22:
ca:ee:ed:93:9e:34:72:79:56:f0:f0:70:58:99:89:91:77:cf:
b6:9e:16:a6:bc:c1:39:b3:16:38:e4:19:68:15:26:43:da:e5:
bb:d5:6e:f2:12:d4:6b:0c:cc:10:4a:7e:a1:80:1c:ad:44:95:
25:0f:f7:9d:0c:f1:9e:54:94:fb:aa:ae:50:5c:64:ca:07:aa:
5c:93:55:4d:bf:80:c2:ec:fb:a1:53:13:b6:06:8b:99:13:6f:
7d:a2:76:81:3a:6e:8f:18:bb:3a:01:e3:16:de:49:fa:7e:c8:
1d:72:9b:aa:f7:f1:ab:4d:c2:40:fc:64:1a:db:63:cf:12:3b:
4d:65:f2:f8:ea:24:12:d0:48:03:99:0e:cf:29:e0:25:5e:b1:
27:a1:c0:ed:51:cb:16:5f:57:7b:d7:92:08:97:b5:0f:20:7a:
f5:8d:06:53:ed:4c:06:b2:da:36:4c:c6:84:96:15:eb:41:a9:
3e:79:4c:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTD9jNurP8PJhU7ssQinzaoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOTQ5ZDJiZDY0ZWUxN2VmNWQ0N2Y5NjNlM2Q1ZDdhOTgy
YjEyYWYwHhcNMjUwMjAyMDAwMTE5WhcNMjUwMjAzMDAwMTE5WjAzMTEwLwYDVQQD
Eyg3MGUxMmJhNzU3ZmMyZWQ1MDk1MWFhNjlkM2NjZGY1MGZmNzhjZTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8kVc0bIMkLWO+mnOarKqwOx8xlP/
W7WSo2A4R0vYFt+IhLROEJLLPH009Ydi2TmiPHXspH+Mi41d7egdc9nd0CrX+B3a
IykxA8GtGUjw+oMUxTDfvHrEGEEn6cWODEsGycP4F/R80yg0Uys5/poeCn6iGbau
n8bm9rkI3KwwQEP8Gj7a7pBOYC/iJqQ1pbmq77scFxPzD1I576+1Bjv5mxuP80hQ
cVQU+PCJk7QTTS+6nag2Yj52iGrf2sFD0Od0vLusRzn3apSdXjnlGeMABjPpqH9T
74EsTjpWD1HvpIs60np6KmFF/5dBVQrT8i4TcrYDUHwpinvzMkDFp/fluwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHDhK6dX/C7VCVGqadPM31D/eM45MB8GA1UdIwQY
MBaAFGyUnSvWTuF+9dR/lj49XXqYKxKvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEt
MjMyZjQ3MDM0OTFmLzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEtMjMyZjQ3MDM0OTFm
LzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbCqpsvs0
mfjY5xuSD1P1rSbwb7tTAm6pO8Iv5/yjpiOpfIOcNZA68J0//eGKhxfrhezQ9fOt
mpgtR+oNVvYSpDk9GL2cFQkiyu7tk540cnlW8PBwWJmJkXfPtp4WprzBObMWOOQZ
aBUmQ9rlu9Vu8hLUawzMEEp+oYAcrUSVJQ/3nQzxnlSU+6quUFxkygeqXJNVTb+A
wuz7oVMTtgaLmRNvfaJ2gTpujxi7OgHjFt5J+n7IHXKbqvfxq03CQPxkGttjzxI7
TWXy+OokEtBIA5kOzyngJV6xJ6HA7VHLFl9Xe9eSCJe1DyB69Y0GU+1MBrLaNkzG
hJYV60GpPnlMtg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 05:47:50 2025 by rpki-client