Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/b8f9d9-4f25-4818-b33c-b001e5bad017/1/pD4rn7yLR3LPgAB0jEfdQ3s8WY8.mft
File: pD4rn7yLR3LPgAB0jEfdQ3s8WY8.mft (raw, json)
Hash identifier: 2PKng4U9qPsmcIs/mHivPe7y/vi6HvdRI57NoDF8X4E=
Subject key identifier: A0:3B:FD:F9:FF:A5:4E:65:45:62:C0:3D:BA:44:3A:78:7A:C2:BA:97
Authority key identifier: A4:3E:2B:9F:BC:8B:47:72:CF:80:00:74:8C:47:DD:43:7B:3C:59:8F
Certificate issuer: /CN=a43e2b9fbc8b4772cf8000748c47dd437b3c598f
Certificate serial: 0194C42C096D6E0AB8818BAA3586A607E0BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pD4rn7yLR3LPgAB0jEfdQ3s8WY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/b8f9d9-4f25-4818-b33c-b001e5bad017/1/pD4rn7yLR3LPgAB0jEfdQ3s8WY8.mft
Manifest number: 86
Signing time: Sun 02 Feb 2025 01:00:07 +0000
Manifest this update: Sun 02 Feb 2025 01:00:07 +0000
Manifest next update: Mon 03 Feb 2025 01:00:07 +0000
Files and hashes: 1: pD4rn7yLR3LPgAB0jEfdQ3s8WY8.crl (hash: kfkMCM8SsIkAyE+mm6MlXo6whEKVo4AgdUtxKhePbXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/b8f9d9-4f25-4818-b33c-b001e5bad017/1/pD4rn7yLR3LPgAB0jEfdQ3s8WY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/b8f9d9-4f25-4818-b33c-b001e5bad017/1/pD4rn7yLR3LPgAB0jEfdQ3s8WY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/pD4rn7yLR3LPgAB0jEfdQ3s8WY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:09:6d:6e:0a:b8:81:8b:aa:35:86:a6:07:e0:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a43e2b9fbc8b4772cf8000748c47dd437b3c598f
Validity
Not Before: Feb 2 01:00:07 2025 GMT
Not After : Feb 3 01:00:07 2025 GMT
Subject: CN=a03bfdf9ffa54e654562c03dba443a787ac2ba97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:99:f2:48:a9:39:5c:96:e2:9f:82:d9:a1:31:
6e:2e:cb:06:76:fe:e8:22:39:db:27:00:c6:1c:bc:
05:b4:32:93:b0:05:be:6f:4c:16:7d:d0:c8:c8:0c:
d4:12:9d:87:ba:7b:d6:bf:bb:dd:59:9f:7f:0d:41:
71:ba:de:38:af:36:53:c5:9a:48:4f:8a:a1:62:62:
5a:4c:61:c7:4e:ba:bb:32:95:f5:29:22:42:a6:a9:
d8:2c:2e:a7:0d:43:36:ea:ce:11:44:f3:30:39:ae:
c9:56:a6:40:a4:f4:9b:38:f1:54:40:5e:9b:c0:85:
0f:a7:e5:fe:5a:09:09:3d:cb:c7:c9:58:cf:f7:f7:
0f:77:ab:17:11:fb:48:ce:46:ea:0e:c2:6d:bc:c1:
b1:8e:5f:91:1c:61:7e:d4:6d:8c:48:c6:e9:a4:ef:
64:ae:28:10:f7:42:bf:be:2c:23:5a:d3:a0:e2:5a:
ba:c8:13:3f:08:7d:12:c7:e9:6a:9c:e1:80:34:59:
30:fd:68:27:14:48:35:a5:0f:dc:87:3d:2b:65:b9:
75:38:e7:e3:97:74:0d:55:2f:71:33:a7:a8:7d:95:
68:e7:14:32:51:b5:26:fd:3c:0f:e7:6f:9e:ad:c3:
4a:7e:46:fa:23:f2:be:dc:94:fe:a6:70:45:d4:be:
ea:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:3B:FD:F9:FF:A5:4E:65:45:62:C0:3D:BA:44:3A:78:7A:C2:BA:97
X509v3 Authority Key Identifier:
keyid:A4:3E:2B:9F:BC:8B:47:72:CF:80:00:74:8C:47:DD:43:7B:3C:59:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pD4rn7yLR3LPgAB0jEfdQ3s8WY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b8f9d9-4f25-4818-b33c-b001e5bad017/1/pD4rn7yLR3LPgAB0jEfdQ3s8WY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b8f9d9-4f25-4818-b33c-b001e5bad017/1/pD4rn7yLR3LPgAB0jEfdQ3s8WY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:2e:36:d6:6a:da:3d:ea:81:3a:00:77:ea:4c:b6:97:8a:56:
9e:fd:e1:48:6f:4a:0d:b0:15:b6:78:bd:68:11:d5:e6:d8:10:
42:a7:47:d5:ef:cf:46:65:b0:ce:be:6c:d8:d8:e6:2b:90:c0:
4e:02:5d:a6:c1:71:cd:3e:2c:2f:3f:3c:3c:1e:71:fd:4d:f2:
b4:8d:e6:dc:13:f0:ca:e0:7f:95:94:43:25:15:9d:e0:9e:45:
bc:ee:3b:45:4d:44:61:97:61:bf:95:ef:bf:34:6e:98:b8:41:
66:ef:28:b8:a5:2a:d7:aa:92:0e:10:df:0d:04:44:a5:0f:f7:
ec:f0:49:47:a5:4e:f8:12:9b:b5:9a:a7:77:b5:1c:81:83:f0:
16:6a:22:f0:a5:16:00:7c:0c:b5:7e:25:e0:d9:06:5e:f5:d7:
b1:0c:5d:88:75:48:f3:29:65:5b:c5:f3:bc:c6:c5:a0:14:f2:
84:fc:95:fc:d1:72:b4:2a:e5:42:43:3b:b1:e7:cc:74:17:83:
6a:f8:e1:dd:e8:eb:ca:b1:7e:f3:1f:6c:a8:45:f9:99:c1:e3:
e4:91:bd:47:28:82:08:ea:02:3e:6a:0d:d9:67:a0:70:bc:98:
d8:0f:f3:bd:9c:84:80:28:47:fc:ec:04:47:25:15:9e:fb:15:
bb:89:22:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTELAltbgq4gYuqNYamB+C6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0M2UyYjlmYmM4YjQ3NzJjZjgwMDA3NDhjNDdkZDQzN2Iz
YzU5OGYwHhcNMjUwMjAyMDEwMDA3WhcNMjUwMjAzMDEwMDA3WjAzMTEwLwYDVQQD
EyhhMDNiZmRmOWZmYTU0ZTY1NDU2MmMwM2RiYTQ0M2E3ODdhYzJiYTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJnySKk5XJbin4LZoTFuLssGdv7o
IjnbJwDGHLwFtDKTsAW+b0wWfdDIyAzUEp2HunvWv7vdWZ9/DUFxut44rzZTxZpI
T4qhYmJaTGHHTrq7MpX1KSJCpqnYLC6nDUM26s4RRPMwOa7JVqZApPSbOPFUQF6b
wIUPp+X+WgkJPcvHyVjP9/cPd6sXEftIzkbqDsJtvMGxjl+RHGF+1G2MSMbppO9k
rigQ90K/viwjWtOg4lq6yBM/CH0Sx+lqnOGANFkw/WgnFEg1pQ/chz0rZbl1OOfj
l3QNVS9xM6eofZVo5xQyUbUm/TwP52+ercNKfkb6I/K+3JT+pnBF1L7q0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKA7/fn/pU5lRWLAPbpEOnh6wrqXMB8GA1UdIwQY
MBaAFKQ+K5+8i0dyz4AAdIxH3UN7PFmPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcEQ0cm43eUxSM0xQZ0FCMGpFZmRRM3M4V1k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9iOGY5ZDktNGYyNS00ODE4LWIzM2Mt
YjAwMWU1YmFkMDE3LzEvcEQ0cm43eUxSM0xQZ0FCMGpFZmRRM3M4V1k4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS9iOGY5ZDktNGYyNS00ODE4LWIzM2MtYjAwMWU1YmFkMDE3
LzEvcEQ0cm43eUxSM0xQZ0FCMGpFZmRRM3M4V1k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASi421mra
PeqBOgB36ky2l4pWnv3hSG9KDbAVtni9aBHV5tgQQqdH1e/PRmWwzr5s2NjmK5DA
TgJdpsFxzT4sLz88PB5x/U3ytI3m3BPwyuB/lZRDJRWd4J5FvO47RU1EYZdhv5Xv
vzRumLhBZu8ouKUq16qSDhDfDQREpQ/37PBJR6VO+BKbtZqnd7UcgYPwFmoi8KUW
AHwMtX4l4NkGXvXXsQxdiHVI8yllW8XzvMbFoBTyhPyV/NFytCrlQkM7sefMdBeD
avjh3ejryrF+8x9sqEX5mcHj5JG9RyiCCOoCPmoN2WegcLyY2A/zvZyEgChH/OwE
RyUVnvsVu4ki9Q==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:41:24 2025 by rpki-client