Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/qMbzkzUMd1mMEhrNPJL3BIV274k.mft
File: qMbzkzUMd1mMEhrNPJL3BIV274k.mft (raw, json)
Hash identifier: 2PPehGFa1hJ2pyWMdNAYilCncAnlBm6x6b1gOOKxR7g=
Subject key identifier: C3:AC:7A:8A:80:69:3D:3B:64:72:0E:36:DF:1F:ED:E1:CF:A4:AE:A0
Authority key identifier: A8:C6:F3:93:35:0C:77:59:8C:12:1A:CD:3C:92:F7:04:85:76:EF:89
Certificate issuer: /CN=a8c6f393350c77598c121acd3c92f7048576ef89
Certificate serial: 019510C6AD65B09BAF3FF194AD76478A3139
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qMbzkzUMd1mMEhrNPJL3BIV274k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/qMbzkzUMd1mMEhrNPJL3BIV274k.mft
Manifest number: 0B8C
Signing time: Sun 16 Feb 2025 22:00:10 +0000
Manifest this update: Sun 16 Feb 2025 22:00:10 +0000
Manifest next update: Mon 17 Feb 2025 22:00:10 +0000
Files and hashes: 1: eOh7otVHHrYHGXBG7XugLjFkG3I.roa (hash: jBij6Zpdi8PdzGdFEr+QptijCvWCfUOl+3jki1c2vMs=)
2: lCDqNprGOb5vTF01oJ8hwQqZCRE.roa (hash: mFZkrlVA4mVLiefirb6z2hXCAJmumM9YtxbYwU/yy10=)
3: qMbzkzUMd1mMEhrNPJL3BIV274k.crl (hash: EQVraz8MwkYPxvCZjFi0QoeYxK0CVJWd078gWrZ5X1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/qMbzkzUMd1mMEhrNPJL3BIV274k.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/qMbzkzUMd1mMEhrNPJL3BIV274k.mft
rsync://rpki.ripe.net/repository/DEFAULT/qMbzkzUMd1mMEhrNPJL3BIV274k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:ad:65:b0:9b:af:3f:f1:94:ad:76:47:8a:31:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8c6f393350c77598c121acd3c92f7048576ef89
Validity
Not Before: Feb 16 22:00:10 2025 GMT
Not After : Feb 17 22:00:10 2025 GMT
Subject: CN=c3ac7a8a80693d3b64720e36df1fede1cfa4aea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a3:c2:a5:6a:57:fd:bf:b8:c7:02:47:25:2f:
5b:d9:87:45:78:12:92:40:93:bd:e1:ae:b9:b3:7a:
f8:35:81:be:c0:f3:22:67:e6:4b:78:9e:a5:e5:b4:
54:c2:1b:88:6f:7e:bf:51:37:b0:ab:58:72:8f:59:
7f:54:c1:26:b4:96:7d:c7:dd:53:26:79:82:7f:55:
dd:21:3e:5e:c8:84:33:b3:41:2f:4e:a7:e7:1c:f6:
b7:2a:12:80:64:30:34:6e:ca:c9:e7:c8:68:19:5a:
fb:f5:f4:00:bd:91:de:2f:d3:e1:a1:54:71:bd:b2:
85:9c:b0:d2:21:9b:bf:48:08:d3:9e:74:19:f4:a2:
19:b9:4a:bf:7c:c9:f4:cc:1d:da:a1:4f:5c:d0:a1:
9e:4b:77:9e:95:03:b2:97:aa:84:aa:97:ad:21:04:
34:a2:3d:de:79:5a:24:bc:80:fd:65:b1:3f:b8:9c:
22:73:47:72:3b:d1:94:ee:95:c1:c4:ff:c7:ff:bc:
96:a0:0c:79:9f:0b:be:f1:6c:39:a4:51:b5:04:03:
ae:4f:5b:c3:ca:09:7e:63:76:ee:9b:fb:2d:2f:d5:
26:7b:b3:81:a8:a6:8b:78:cd:2a:2e:45:79:35:29:
e0:b9:94:dd:f4:94:1c:1d:7d:db:c5:63:5d:e0:ab:
d8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AC:7A:8A:80:69:3D:3B:64:72:0E:36:DF:1F:ED:E1:CF:A4:AE:A0
X509v3 Authority Key Identifier:
keyid:A8:C6:F3:93:35:0C:77:59:8C:12:1A:CD:3C:92:F7:04:85:76:EF:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qMbzkzUMd1mMEhrNPJL3BIV274k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/qMbzkzUMd1mMEhrNPJL3BIV274k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/qMbzkzUMd1mMEhrNPJL3BIV274k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:ba:63:bc:15:d9:27:a8:1f:f3:50:1f:f4:50:67:a2:66:7a:
65:ec:fb:6e:23:9c:7e:a4:f5:4b:79:03:3f:80:70:42:c1:ec:
d0:4d:e9:f3:13:84:fe:6f:37:a5:69:2f:72:24:ec:22:b1:13:
7f:cc:b6:ad:d9:0b:cb:2b:55:90:75:7b:b9:88:f2:1b:95:b7:
37:57:92:cd:f4:a9:3b:18:f9:17:0e:c1:57:74:98:ca:4a:f5:
71:21:e6:64:cd:2f:2a:8c:7a:43:06:77:e2:3f:84:eb:64:1c:
4f:f9:a9:09:39:9c:a7:fd:24:6b:39:e1:6b:d1:e2:1d:ea:00:
be:a9:86:9f:25:10:a5:25:e6:3a:e0:c0:b2:4e:42:7c:40:f9:
33:9d:8d:c9:84:cc:c9:45:04:b2:6a:ce:cb:27:05:bd:93:a6:
85:b1:e1:7e:16:6e:b8:bc:93:3b:b8:53:79:8f:42:84:2b:4d:
2c:7f:d2:15:88:72:7a:68:42:a9:69:3f:6d:54:01:98:c4:15:
b0:2a:d4:ee:75:a1:54:4f:37:2a:a2:20:de:47:f6:be:32:52:
37:dd:74:63:33:c1:60:c2:d5:af:d7:97:e9:9c:0f:f7:b7:dc:
0f:1d:fd:2e:21:30:10:bb:0a:97:ef:41:ef:f9:d5:c7:2f:a9:
9d:fb:ea:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQxq1lsJuvP/GUrXZHijE5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4YzZmMzkzMzUwYzc3NTk4YzEyMWFjZDNjOTJmNzA0ODU3
NmVmODkwHhcNMjUwMjE2MjIwMDEwWhcNMjUwMjE3MjIwMDEwWjAzMTEwLwYDVQQD
EyhjM2FjN2E4YTgwNjkzZDNiNjQ3MjBlMzZkZjFmZWRlMWNmYTRhZWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaPCpWpX/b+4xwJHJS9b2YdFeBKS
QJO94a65s3r4NYG+wPMiZ+ZLeJ6l5bRUwhuIb36/UTewq1hyj1l/VMEmtJZ9x91T
JnmCf1XdIT5eyIQzs0EvTqfnHPa3KhKAZDA0bsrJ58hoGVr79fQAvZHeL9PhoVRx
vbKFnLDSIZu/SAjTnnQZ9KIZuUq/fMn0zB3aoU9c0KGeS3eelQOyl6qEqpetIQQ0
oj3eeVokvID9ZbE/uJwic0dyO9GU7pXBxP/H/7yWoAx5nwu+8Ww5pFG1BAOuT1vD
ygl+Y3bum/stL9Ume7OBqKaLeM0qLkV5NSnguZTd9JQcHX3bxWNd4KvYVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMOseoqAaT07ZHIONt8f7eHPpK6gMB8GA1UdIwQY
MBaAFKjG85M1DHdZjBIazTyS9wSFdu+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcU1iemt6VU1kMW1NRWhyTlBKTDNCSVYyNzRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS83MDllMDctNDdkNS00NzIwLWI3Nzct
YzZiY2EwMWIyZmY4LzEvcU1iemt6VU1kMW1NRWhyTlBKTDNCSVYyNzRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS83MDllMDctNDdkNS00NzIwLWI3NzctYzZiY2EwMWIyZmY4
LzEvcU1iemt6VU1kMW1NRWhyTlBKTDNCSVYyNzRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXLpjvBXZ
J6gf81Af9FBnomZ6Zez7biOcfqT1S3kDP4BwQsHs0E3p8xOE/m83pWkvciTsIrET
f8y2rdkLyytVkHV7uYjyG5W3N1eSzfSpOxj5Fw7BV3SYykr1cSHmZM0vKox6QwZ3
4j+E62QcT/mpCTmcp/0kaznha9HiHeoAvqmGnyUQpSXmOuDAsk5CfED5M52NyYTM
yUUEsmrOyycFvZOmhbHhfhZuuLyTO7hTeY9ChCtNLH/SFYhyemhCqWk/bVQBmMQV
sCrU7nWhVE83KqIg3kf2vjJSN910YzPBYMLVr9eX6ZwP97fcDx39LiEwELsKl+9B
7/nVxy+pnfvqEA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:47 2025 by rpki-client