Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
File: i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft (raw, json)
Hash identifier: Cv0g/YlT1yC9FaRtadJRe/eHgoBX5jHa6d6nvW/9TPY=
Subject key identifier: 05:07:89:31:AF:52:E4:36:93:01:86:4C:20:49:C3:B6:96:04:28:87
Authority key identifier: 8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52
Certificate issuer: /CN=8b7be7a47606ab38391fb21542b5f4061f02a852
Certificate serial: 019510C7C166B7ED8E7571FEF0B1ED3743AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
Manifest number: 0ACF
Signing time: Sun 16 Feb 2025 22:01:21 +0000
Manifest this update: Sun 16 Feb 2025 22:01:21 +0000
Manifest next update: Mon 17 Feb 2025 22:01:21 +0000
Files and hashes: 1: i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl (hash: z+F4FfXsUVqOBZXInooiBMdm0op2tSDtkau9k7lzc1A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:c1:66:b7:ed:8e:75:71:fe:f0:b1:ed:37:43:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b7be7a47606ab38391fb21542b5f4061f02a852
Validity
Not Before: Feb 16 22:01:21 2025 GMT
Not After : Feb 17 22:01:21 2025 GMT
Subject: CN=05078931af52e4369301864c2049c3b696042887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4c:11:72:1b:89:4d:52:e7:4b:cc:18:c4:a0:
7f:0c:ea:7b:b8:5d:47:e1:ea:30:a2:8d:e6:5c:0b:
e3:a7:c5:ea:e7:d5:b6:82:79:ef:e0:0f:b1:8d:76:
51:98:24:ec:bc:74:7a:bd:24:c1:e3:f3:df:35:4a:
6d:53:06:d7:4e:18:10:b3:41:d9:b9:64:26:e4:df:
37:e8:6b:d6:4c:77:13:32:4f:e1:06:72:00:30:37:
3a:fa:72:ef:cd:4e:52:fd:69:84:f1:39:6b:00:d2:
27:70:70:45:27:82:dc:37:b7:54:c9:03:c2:7e:1e:
03:53:79:2e:9c:5c:9d:64:24:b9:db:f8:a2:cb:10:
a9:f1:b8:ef:56:04:71:14:da:3d:c1:93:1c:49:88:
65:4c:47:32:31:03:79:4b:de:6b:eb:f7:61:e5:ec:
54:2c:a4:8a:99:b7:12:e7:3b:df:89:e4:55:35:81:
b9:56:f2:11:f7:6a:5f:0b:2d:67:2b:12:bb:b9:be:
b6:ec:44:7e:65:bc:13:1f:be:7e:87:e4:44:b5:07:
54:f6:6f:aa:59:32:89:7a:78:0a:89:d1:ab:86:9f:
87:8a:ae:73:00:f8:a0:90:76:df:4a:35:f5:2d:36:
46:bb:d2:27:b3:ed:fc:7b:3c:b0:70:e3:70:57:f2:
44:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:07:89:31:AF:52:E4:36:93:01:86:4C:20:49:C3:B6:96:04:28:87
X509v3 Authority Key Identifier:
keyid:8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:a6:c1:69:ca:f6:f6:e9:16:d0:59:0c:83:de:a7:f0:49:5a:
43:8a:25:22:7c:fa:da:3f:80:a0:a3:65:55:26:f9:25:4c:e7:
52:66:4a:8c:45:eb:14:28:aa:1b:d9:3b:61:d9:5d:d1:e5:98:
f5:2e:aa:ff:9c:e8:82:a8:04:a1:83:2a:86:bd:6b:71:ca:c7:
d0:ad:99:1a:dd:1c:32:1d:17:72:67:8c:72:3b:23:c5:0e:c8:
6a:24:88:b7:2d:3b:15:79:71:b5:c3:bb:c6:6d:d8:c2:a1:73:
10:e6:25:51:ef:83:a2:17:a6:07:8f:5c:db:3e:d7:9d:62:96:
25:75:09:7c:b1:8e:ee:a2:c6:04:1a:74:55:d2:a4:2d:21:da:
47:a8:e2:f6:cd:45:db:9c:58:b1:a7:de:5c:48:82:c7:76:60:
80:d2:5e:4a:15:dc:20:b8:d7:69:92:fa:08:51:f7:f9:2e:fe:
3b:16:90:3b:6b:4d:4a:89:42:48:43:ef:db:36:4e:1e:69:ae:
d1:a1:d4:1b:a7:3e:3a:c3:34:60:75:6e:58:0b:af:dd:98:bd:
58:c7:d7:77:9a:7b:4b:c2:32:7e:b7:7d:8d:31:5d:57:c6:cd:
c6:f2:4c:7b:d9:58:78:74:45:29:b5:5d:55:c6:16:04:d5:e7:
74:93:ce:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQx8Fmt+2OdXH+8LHtN0OrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiN2JlN2E0NzYwNmFiMzgzOTFmYjIxNTQyYjVmNDA2MWYw
MmE4NTIwHhcNMjUwMjE2MjIwMTIxWhcNMjUwMjE3MjIwMTIxWjAzMTEwLwYDVQQD
EygwNTA3ODkzMWFmNTJlNDM2OTMwMTg2NGMyMDQ5YzNiNjk2MDQyODg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2UwRchuJTVLnS8wYxKB/DOp7uF1H
4eowoo3mXAvjp8Xq59W2gnnv4A+xjXZRmCTsvHR6vSTB4/PfNUptUwbXThgQs0HZ
uWQm5N836GvWTHcTMk/hBnIAMDc6+nLvzU5S/WmE8TlrANIncHBFJ4LcN7dUyQPC
fh4DU3kunFydZCS52/iiyxCp8bjvVgRxFNo9wZMcSYhlTEcyMQN5S95r6/dh5exU
LKSKmbcS5zvfieRVNYG5VvIR92pfCy1nKxK7ub627ER+ZbwTH75+h+REtQdU9m+q
WTKJengKidGrhp+Hiq5zAPigkHbfSjX1LTZGu9Ins+38ezywcONwV/JErwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAUHiTGvUuQ2kwGGTCBJw7aWBCiHMB8GA1UdIwQY
MBaAFIt756R2Bqs4OR+yFUK19AYfAqhSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTN2bnBIWUdxemc1SDdJVlFyWDBCaDhDcUZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yNDdjNWQtYTI3Mi00ODJiLTljOGUt
MzdmZTM5NWQ0MmYwLzEvaTN2bnBIWUdxemc1SDdJVlFyWDBCaDhDcUZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8yNDdjNWQtYTI3Mi00ODJiLTljOGUtMzdmZTM5NWQ0MmYw
LzEvaTN2bnBIWUdxemc1SDdJVlFyWDBCaDhDcUZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAabBacr2
9ukW0FkMg96n8ElaQ4olInz62j+AoKNlVSb5JUznUmZKjEXrFCiqG9k7Ydld0eWY
9S6q/5zogqgEoYMqhr1rccrH0K2ZGt0cMh0XcmeMcjsjxQ7IaiSIty07FXlxtcO7
xm3YwqFzEOYlUe+DohemB49c2z7XnWKWJXUJfLGO7qLGBBp0VdKkLSHaR6ji9s1F
25xYsafeXEiCx3ZggNJeShXcILjXaZL6CFH3+S7+OxaQO2tNSolCSEPv2zZOHmmu
0aHUG6c+OsM0YHVuWAuv3Zi9WMfXd5p7S8Iyfrd9jTFdV8bNxvJMe9lYeHRFKbVd
VcYWBNXndJPODw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:40 2025 by rpki-client