Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json)
Hash identifier: GP5E37ICmK35Ba+TNlpDM8wi/WIoNtPFuMOYsFqo0f8=
Subject key identifier: EC:F1:BE:E4:90:48:62:09:07:C0:D3:A5:2B:22:E2:50:1B:62:C8:37
Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Certificate serial: 019511D994AD5A9C8CAEA23F7922E1915DCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 03:00:26 +0000
Manifest this update: Mon 17 Feb 2025 03:00:26 +0000
Manifest next update: Tue 18 Feb 2025 03:00:26 +0000
Files and hashes: 1: Rg68-pzrr6gfhWgypMVfmtoKlgk.roa (hash: XpZ2I1CGwPpi3ah3Tduh3EFNHBVZBFc6didgCWOzzG4=)
2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: PKf1XTJOIxc2BVRre0fWQmd6xg/X76XfEO7VVdniayg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:94:ad:5a:9c:8c:ae:a2:3f:79:22:e1:91:5d:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Validity
Not Before: Feb 17 03:00:26 2025 GMT
Not After : Feb 18 03:00:26 2025 GMT
Subject: CN=ecf1bee49048620907c0d3a52b22e2501b62c837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2d:0c:cf:fa:1a:86:84:23:9d:80:de:e7:e3:
0c:cf:cf:16:25:88:87:e8:8e:cf:9f:21:ea:46:cf:
43:1f:3f:2f:ed:fc:80:d5:3c:3c:e8:a4:c9:45:54:
0a:9b:18:a6:18:2b:dc:2e:73:b3:09:2e:e9:85:ef:
a3:4a:a9:65:ca:98:27:e0:0b:51:58:44:9b:6e:58:
a7:32:c3:60:19:91:92:2e:87:41:2a:50:b3:7b:b1:
c1:da:7b:28:37:1f:1a:51:4f:39:db:f7:d9:d3:dc:
74:90:01:b9:43:8b:d7:7f:19:0e:04:14:95:74:50:
be:a6:44:5d:54:bb:29:d9:c5:8c:fe:6c:24:32:5c:
a5:29:78:65:5c:7f:1f:b9:c4:35:16:01:8d:4d:d3:
d0:47:4c:6a:a7:74:36:4f:f2:49:8e:9e:43:31:3d:
88:4e:e1:6c:d4:a5:d5:d4:d3:40:50:7d:ad:bc:dd:
87:64:7b:f8:7c:6a:a0:7d:a2:38:71:dd:a0:ac:ea:
42:9b:d4:d4:16:cd:52:43:02:65:03:b0:fd:0b:c6:
03:15:10:d7:27:19:d0:d8:ab:22:9b:4d:96:02:79:
b8:4d:50:bc:c2:7a:87:fd:74:4f:95:a0:31:b0:d6:
6f:92:6b:69:58:71:4e:58:84:a2:2a:cf:b9:b3:bf:
da:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F1:BE:E4:90:48:62:09:07:C0:D3:A5:2B:22:E2:50:1B:62:C8:37
X509v3 Authority Key Identifier:
keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:cd:30:6a:8a:d4:38:90:06:57:3a:b3:6f:27:b7:d8:35:91:
50:d1:e3:35:74:c5:e2:69:66:7c:34:c6:12:69:6c:2c:5f:3f:
79:24:b2:b8:07:d3:af:48:74:0d:24:10:86:23:0a:5f:7e:b2:
d8:14:d9:c9:26:8f:5d:ef:31:ce:d5:74:d1:d9:89:9a:4f:a3:
76:bd:95:bf:64:52:ed:da:7b:5c:40:6e:91:b6:72:99:42:df:
50:7b:ad:8a:2b:a6:10:06:07:37:6f:e5:14:3d:a9:e1:78:aa:
ef:a8:fe:70:bd:58:d7:21:9e:4a:78:eb:01:f3:ce:f4:99:9d:
fd:07:1e:6c:32:7c:77:04:8c:c2:9f:bb:06:a3:77:b6:3b:33:
dd:1d:d2:d2:50:67:79:d5:53:8c:43:7b:78:92:90:a8:fa:38:
da:68:7b:83:60:00:cb:0b:7c:5b:0f:27:c0:6e:e4:9c:7e:c3:
08:7e:6c:85:e1:3c:a8:d6:97:9a:f6:6f:97:8d:95:62:d0:0f:
c0:b9:de:62:60:a5:5a:06:bf:18:60:3c:10:32:82:bf:ad:25:
ea:73:f3:20:db:b9:0e:a2:a6:44:a6:d8:82:c9:23:15:06:8a:
c8:49:50:63:23:92:a8:90:f0:c7:17:80:b1:a0:d4:46:78:35:
de:7a:b1:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUR2ZStWpyMrqI/eSLhkV3PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0M2I5N2ExZDIxZjYzN2I1NDkxMzBmMDg1N2E2ODFjYzdm
Njg4NGMwHhcNMjUwMjE3MDMwMDI2WhcNMjUwMjE4MDMwMDI2WjAzMTEwLwYDVQQD
EyhlY2YxYmVlNDkwNDg2MjA5MDdjMGQzYTUyYjIyZTI1MDFiNjJjODM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0i0Mz/oahoQjnYDe5+MMz88WJYiH
6I7PnyHqRs9DHz8v7fyA1Tw86KTJRVQKmximGCvcLnOzCS7phe+jSqllypgn4AtR
WESbblinMsNgGZGSLodBKlCze7HB2nsoNx8aUU852/fZ09x0kAG5Q4vXfxkOBBSV
dFC+pkRdVLsp2cWM/mwkMlylKXhlXH8fucQ1FgGNTdPQR0xqp3Q2T/JJjp5DMT2I
TuFs1KXV1NNAUH2tvN2HZHv4fGqgfaI4cd2grOpCm9TUFs1SQwJlA7D9C8YDFRDX
JxnQ2Ksim02WAnm4TVC8wnqH/XRPlaAxsNZvkmtpWHFOWISiKs+5s7/a2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOzxvuSQSGIJB8DTpSsi4lAbYsg3MB8GA1UdIwQY
MBaAFLQ7l6HSH2N7VJEw8IV6aBzH9ohMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0Yjkt
MDQ2NGU5NDVmMWNjLzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0YjktMDQ2NGU5NDVmMWNj
LzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhs0waorU
OJAGVzqzbye32DWRUNHjNXTF4mlmfDTGEmlsLF8/eSSyuAfTr0h0DSQQhiMKX36y
2BTZySaPXe8xztV00dmJmk+jdr2Vv2RS7dp7XEBukbZymULfUHutiiumEAYHN2/l
FD2p4Xiq76j+cL1Y1yGeSnjrAfPO9Jmd/QcebDJ8dwSMwp+7BqN3tjsz3R3S0lBn
edVTjEN7eJKQqPo42mh7g2AAywt8Ww8nwG7knH7DCH5sheE8qNaXmvZvl42VYtAP
wLneYmClWga/GGA8EDKCv60l6nPzINu5DqKmRKbYgskjFQaKyElQYyOSqJDwxxeA
saDURng13nqx0A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:44 2025 by rpki-client