Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
File: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft (raw, json)
Hash identifier: DkfPwMCoAAxRlCCuNRzvcHwMdHgTUo7Xup086a3Bj68=
Subject key identifier: 50:3C:36:C1:06:E6:E7:4E:21:AD:DC:C8:3D:AB:53:17:51:53:CB:1B
Authority key identifier: CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
Certificate issuer: /CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Certificate serial: 01952DBF987DBF8EAEA42FD4EC98A4FEB30D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
Manifest number: 18
Signing time: Sat 22 Feb 2025 13:01:25 +0000
Manifest this update: Sat 22 Feb 2025 13:01:25 +0000
Manifest next update: Sun 23 Feb 2025 13:01:25 +0000
Files and hashes: 1: E1mhBRMNKUKpYCp6l6cYmmnl_S8.roa (hash: EfpfXPe85LjuFoEfBPlRSotwGgPrWv2BqUA6Yn79Kmg=)
2: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl (hash: rmwvNFy5dqd17OeIhtG2/MFWtxz/1joHjzSWtw4Vleo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Feb 2025 13:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:2d:bf:98:7d:bf:8e:ae:a4:2f:d4:ec:98:a4:fe:b3:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Validity
Not Before: Feb 22 13:01:25 2025 GMT
Not After : Feb 23 13:01:25 2025 GMT
Subject: CN=503c36c106e6e74e21addcc83dab53175153cb1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0c:47:44:19:90:05:e0:34:cd:06:5b:bc:07:
87:d2:2b:d0:6f:4b:df:e7:58:e3:f4:eb:97:c2:2e:
26:28:d0:3a:bd:e2:49:8f:99:f2:79:07:ad:65:da:
96:c1:ac:54:93:e4:1c:5c:45:ff:a7:d8:ee:e2:50:
31:05:f7:f8:e5:4f:a1:0e:42:ab:c6:a3:7c:85:d3:
8a:d3:cb:01:47:79:1d:94:4a:db:97:73:bd:80:00:
45:20:f9:2d:dd:d7:5f:1e:bd:8a:e1:12:d3:ce:20:
30:38:fa:07:25:f9:41:a6:fc:70:57:a7:20:ce:78:
6e:52:ed:06:5f:13:75:cb:60:f6:d5:15:1c:ca:d5:
31:6d:bc:10:63:0e:a7:79:5e:f7:c8:3d:35:ba:91:
b9:54:f4:28:8d:6d:0f:40:ac:dc:6f:2c:a6:99:0a:
88:67:1f:0a:47:43:de:7e:f8:6a:c9:41:ec:9d:94:
7e:e5:8c:36:5a:16:77:2e:ef:bd:86:9d:78:87:8b:
f7:01:47:f6:2c:ec:ce:09:43:4a:13:21:c0:d1:71:
7a:20:ef:49:81:83:6b:b2:55:16:fa:80:42:70:b5:
fc:bb:3b:70:97:0c:ee:65:0d:7a:63:74:84:b6:9c:
ae:ae:14:53:0c:26:2f:c0:20:2e:b9:f9:6e:8d:40:
86:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:3C:36:C1:06:E6:E7:4E:21:AD:DC:C8:3D:AB:53:17:51:53:CB:1B
X509v3 Authority Key Identifier:
keyid:CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ee:f2:93:64:de:2b:9e:21:15:7c:62:25:64:a0:00:95:35:92:
8d:ba:01:b9:38:b3:fb:7c:5a:2c:49:57:7d:67:d3:5b:91:3f:
82:e8:33:86:80:56:96:a7:1a:0a:3b:a3:d5:1b:c2:51:ea:2e:
23:03:6d:28:28:0f:b1:3f:66:87:68:6a:3d:c9:dd:bb:35:28:
49:df:b0:b3:b2:50:2d:73:87:ec:13:88:45:b5:d1:87:1b:aa:
e9:d2:bd:80:c9:36:b1:af:95:6d:fc:e8:eb:50:dc:8b:27:01:
7a:94:93:5a:e0:22:93:4e:82:a2:9e:f6:4b:75:89:11:99:6a:
00:c9:ff:f8:24:65:51:18:fa:c2:6e:e8:13:f5:ed:36:57:76:
aa:de:29:a2:0b:d2:de:4a:de:48:32:c5:9a:9b:11:29:8a:96:
e4:b5:97:23:79:1f:a7:d5:72:ab:a1:f6:93:52:3a:08:ed:72:
ed:94:f1:3d:ac:3b:df:63:38:6a:5a:ca:e5:5b:ca:5b:25:68:
77:27:77:f2:e7:95:01:16:1c:36:cd:b6:2b:31:61:50:b8:ac:
84:bd:d2:85:0d:14:a1:40:d9:ea:e4:8c:24:66:0f:d3:50:6b:
2c:af:34:5e:8d:23:96:1c:2d:56:f7:9d:58:8f:11:b1:7a:85:
98:8c:79:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUtv5h9v46upC/U7Jik/rMNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiZDdmYzEzZTE4MzZjMzk2Y2NhMjE3ODk3MDRhYjM5ZmQ5
ZTViNjQwHhcNMjUwMjIyMTMwMTI1WhcNMjUwMjIzMTMwMTI1WjAzMTEwLwYDVQQD
Eyg1MDNjMzZjMTA2ZTZlNzRlMjFhZGRjYzgzZGFiNTMxNzUxNTNjYjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgxHRBmQBeA0zQZbvAeH0ivQb0vf
51jj9OuXwi4mKNA6veJJj5nyeQetZdqWwaxUk+QcXEX/p9ju4lAxBff45U+hDkKr
xqN8hdOK08sBR3kdlErbl3O9gABFIPkt3ddfHr2K4RLTziAwOPoHJflBpvxwV6cg
znhuUu0GXxN1y2D21RUcytUxbbwQYw6neV73yD01upG5VPQojW0PQKzcbyymmQqI
Zx8KR0PefvhqyUHsnZR+5Yw2WhZ3Lu+9hp14h4v3AUf2LOzOCUNKEyHA0XF6IO9J
gYNrslUW+oBCcLX8uztwlwzuZQ16Y3SEtpyurhRTDCYvwCAuuflujUCGkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFA8NsEG5udOIa3cyD2rUxdRU8sbMB8GA1UdIwQY
MBaAFMvX/BPhg2w5bMoheJcEqzn9nltkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8yMTRjOWEtMDk1MC00MGQ5LWE1ODYt
ZTM1ZGI1MjU2N2YwLzEveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8yMTRjOWEtMDk1MC00MGQ5LWE1ODYtZTM1ZGI1MjU2N2Yw
LzEveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA7vKTZN4r
niEVfGIlZKAAlTWSjboBuTiz+3xaLElXfWfTW5E/gugzhoBWlqcaCjuj1RvCUeou
IwNtKCgPsT9mh2hqPcnduzUoSd+ws7JQLXOH7BOIRbXRhxuq6dK9gMk2sa+Vbfzo
61DciycBepSTWuAik06Cop72S3WJEZlqAMn/+CRlURj6wm7oE/XtNld2qt4pogvS
3kreSDLFmpsRKYqW5LWXI3kfp9Vyq6H2k1I6CO1y7ZTxPaw732M4alrK5VvKWyVo
dyd38ueVARYcNs22KzFhULishL3ShQ0UoUDZ6uSMJGYP01BrLK80Xo0jlhwtVved
WI8RsXqFmIx5Rw==
-----END CERTIFICATE-----
Generated at Sat Feb 22 21:27:12 2025 by rpki-client