Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
File: kHpcTqRTtGyByxNtkrkwmxRsPkU.mft (raw, json)
Hash identifier: uqoTeOuM112qAxQc+dC4bGsdxYxd2LLpxyGd3nGyYZ8=
Subject key identifier: 3E:A8:AA:3D:86:57:9D:C4:69:35:CC:CD:F6:D4:BC:92:FE:AB:9F:94
Authority key identifier: 90:7A:5C:4E:A4:53:B4:6C:81:CB:13:6D:92:B9:30:9B:14:6C:3E:45
Certificate issuer: /CN=907a5c4ea453b46c81cb136d92b9309b146c3e45
Certificate serial: 019510C78419E8459283E4C40C111B288161
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
Manifest number: 0761
Signing time: Sun 16 Feb 2025 22:01:05 +0000
Manifest this update: Sun 16 Feb 2025 22:01:05 +0000
Manifest next update: Mon 17 Feb 2025 22:01:05 +0000
Files and hashes: 1: kHpcTqRTtGyByxNtkrkwmxRsPkU.crl (hash: iZl5w3k2Chc8bz+knkQRtjrhatJcQJc6rqf5RCAVe2s=)
2: y00kCOm4x0sTFaBDOqD5L5fES6Y.roa (hash: G4M+BrvsrjKhmQGsYy0izNdpM9hsyiGzIDC7Si8ke98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:84:19:e8:45:92:83:e4:c4:0c:11:1b:28:81:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=907a5c4ea453b46c81cb136d92b9309b146c3e45
Validity
Not Before: Feb 16 22:01:05 2025 GMT
Not After : Feb 17 22:01:05 2025 GMT
Subject: CN=3ea8aa3d86579dc46935cccdf6d4bc92feab9f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:62:11:b8:fa:42:d4:d6:7f:30:82:21:c7:8c:
33:37:0d:0e:4c:d4:0f:69:67:8d:bc:5b:8d:f0:ad:
40:f8:d6:94:bf:a2:dd:1e:c1:04:76:da:07:d4:7a:
86:ab:8d:02:00:ea:74:8b:10:9a:19:0e:8d:0a:49:
6c:c3:14:4e:16:ee:33:c7:42:5e:0c:80:e6:1a:91:
a2:bf:cf:32:60:72:68:a8:e1:6d:a2:2e:dd:41:cf:
04:97:bb:4d:2b:ae:e5:47:6b:9e:ce:f1:8c:ab:3c:
cc:83:90:1f:56:cf:5c:bd:bf:53:b7:b3:3e:fd:dc:
8a:be:88:81:ad:ba:5c:01:9a:81:a0:50:42:cb:18:
33:cc:a7:ba:ad:d6:7c:6a:fe:db:96:eb:ea:d8:cb:
cf:84:33:6c:d9:a7:32:e2:fc:57:91:ea:1f:83:44:
c7:2f:c0:47:11:af:bd:45:29:b3:76:96:a3:78:4e:
f4:8e:11:aa:10:40:36:9a:62:84:40:10:70:d8:ac:
8f:25:b6:6e:88:1a:af:ef:05:b7:3d:cc:04:00:e7:
6c:6c:4d:d9:8c:ff:77:d4:02:3c:f9:fa:cb:ce:eb:
9e:bb:ea:c9:73:b1:af:7d:15:18:58:3d:a2:38:a1:
aa:20:8b:aa:0a:64:40:f3:6f:06:1c:a9:8f:07:e7:
6a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A8:AA:3D:86:57:9D:C4:69:35:CC:CD:F6:D4:BC:92:FE:AB:9F:94
X509v3 Authority Key Identifier:
keyid:90:7A:5C:4E:A4:53:B4:6C:81:CB:13:6D:92:B9:30:9B:14:6C:3E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:b0:17:c8:d2:bc:1a:16:5a:a4:61:93:fa:a7:f0:99:21:2d:
e6:16:51:33:94:f3:38:c8:80:99:f8:8e:60:32:66:e2:13:fd:
69:48:65:b8:9e:44:16:93:86:24:d8:3a:c1:50:78:79:0d:46:
78:68:7d:d7:54:9e:bd:ff:78:12:24:b1:58:2c:67:b8:e6:e1:
e1:27:45:fa:8e:6c:29:4d:d0:cb:38:6c:e3:88:1b:d0:5a:b1:
38:36:e9:d7:1e:60:2e:cb:38:bf:76:c9:40:df:28:1d:ef:20:
30:81:36:3b:0d:25:19:fb:f3:c0:69:b8:5c:04:fe:ca:38:6d:
82:ef:a3:00:f3:8f:71:aa:29:f2:b1:a9:5c:46:26:1c:23:ad:
70:52:7e:88:c8:81:be:4f:a7:e4:2b:18:95:88:6d:60:c1:4a:
2e:14:15:61:38:ba:32:5c:e5:5c:91:cd:4e:bb:99:9d:32:68:
67:5b:76:32:9f:07:ad:16:07:86:b7:4d:c7:b3:0a:38:7d:2d:
07:bf:66:60:e2:98:b9:c6:80:08:86:db:2f:a4:82:6d:97:26:
ed:30:1a:f8:68:0b:6e:24:0e:df:9c:ee:d2:34:bd:82:8b:8f:
1e:13:3a:d1:61:d8:a6:8b:c6:5f:d0:fb:16:25:56:b2:19:d9:
42:f8:96:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQx4QZ6EWSg+TEDBEbKIFhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwN2E1YzRlYTQ1M2I0NmM4MWNiMTM2ZDkyYjkzMDliMTQ2
YzNlNDUwHhcNMjUwMjE2MjIwMTA1WhcNMjUwMjE3MjIwMTA1WjAzMTEwLwYDVQQD
EygzZWE4YWEzZDg2NTc5ZGM0NjkzNWNjY2RmNmQ0YmM5MmZlYWI5Zjk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmIRuPpC1NZ/MIIhx4wzNw0OTNQP
aWeNvFuN8K1A+NaUv6LdHsEEdtoH1HqGq40CAOp0ixCaGQ6NCklswxROFu4zx0Je
DIDmGpGiv88yYHJoqOFtoi7dQc8El7tNK67lR2uezvGMqzzMg5AfVs9cvb9Tt7M+
/dyKvoiBrbpcAZqBoFBCyxgzzKe6rdZ8av7bluvq2MvPhDNs2acy4vxXkeofg0TH
L8BHEa+9RSmzdpajeE70jhGqEEA2mmKEQBBw2KyPJbZuiBqv7wW3PcwEAOdsbE3Z
jP931AI8+frLzuueu+rJc7GvfRUYWD2iOKGqIIuqCmRA828GHKmPB+dq1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD6oqj2GV53EaTXMzfbUvJL+q5+UMB8GA1UdIwQY
MBaAFJB6XE6kU7RsgcsTbZK5MJsUbD5FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0hwY1RxUlR0R3lCeXhOdGtya3dteFJzUGtVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS84NjlmNjItN2EyZS00MTc1LTkyMDIt
YjJhMmI4Yjg0N2I5LzEva0hwY1RxUlR0R3lCeXhOdGtya3dteFJzUGtVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS84NjlmNjItN2EyZS00MTc1LTkyMDItYjJhMmI4Yjg0N2I5
LzEva0hwY1RxUlR0R3lCeXhOdGtya3dteFJzUGtVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABbAXyNK8
GhZapGGT+qfwmSEt5hZRM5TzOMiAmfiOYDJm4hP9aUhluJ5EFpOGJNg6wVB4eQ1G
eGh911Sevf94EiSxWCxnuObh4SdF+o5sKU3Qyzhs44gb0FqxODbp1x5gLss4v3bJ
QN8oHe8gMIE2Ow0lGfvzwGm4XAT+yjhtgu+jAPOPcaop8rGpXEYmHCOtcFJ+iMiB
vk+n5CsYlYhtYMFKLhQVYTi6MlzlXJHNTruZnTJoZ1t2Mp8HrRYHhrdNx7MKOH0t
B79mYOKYucaACIbbL6SCbZcm7TAa+GgLbiQO35zu0jS9gouPHhM60WHYpovGX9D7
FiVWshnZQviWUA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:29 2025 by rpki-client