Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
File: aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json)
Hash identifier: C2Y7UoZVliHmydCgLummgxrNQByXXEo98vGU8pdek5s=
Subject key identifier: A7:07:A6:AD:33:2C:4C:A2:63:58:49:C0:F5:8D:0D:ED:CA:24:0B:88
Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
Certificate issuer: /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Certificate serial: 01951090054CFD02206B129CBF201E7AFB59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
Manifest number: 0EB8
Signing time: Sun 16 Feb 2025 21:00:28 +0000
Manifest this update: Sun 16 Feb 2025 21:00:28 +0000
Manifest next update: Mon 17 Feb 2025 21:00:28 +0000
Files and hashes: 1: 8criSeClq2Eu3zzop6X6ae-0yfY.roa (hash: nOinS53G7GkxN9bqxtcws3EdTvx5t+9T2IsaBWfXBg8=)
2: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: kgVhKvbujOgzuxzXLgY1ly/u+3NJledQ64vEjiqhEms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:90:05:4c:fd:02:20:6b:12:9c:bf:20:1e:7a:fb:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Validity
Not Before: Feb 16 21:00:28 2025 GMT
Not After : Feb 17 21:00:28 2025 GMT
Subject: CN=a707a6ad332c4ca2635849c0f58d0dedca240b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:bc:a6:cf:30:23:72:e6:c9:34:8f:46:27:08:
52:f2:0c:c3:fb:06:da:ee:7d:45:47:14:d1:e8:cc:
13:41:4b:9d:48:c7:0f:e0:24:29:5f:f3:67:2b:fb:
77:30:d2:18:54:bc:91:d3:2b:e3:d3:54:23:30:ff:
ce:0b:64:cf:f8:e6:b7:6a:e5:0a:4d:4b:d3:12:a8:
84:03:ff:fa:a2:4b:ce:b8:cc:be:2e:86:09:38:a6:
52:81:3e:0c:44:7e:63:8c:43:c1:e7:ad:6f:2b:f0:
b1:12:8f:2f:f9:63:a6:e3:9d:7a:fc:9b:2c:8e:51:
e2:3e:51:c2:f7:db:13:73:b3:04:e0:f9:32:08:b0:
9b:87:22:c9:42:e0:50:fe:d6:a3:61:c9:c0:c0:e3:
d6:93:e0:64:e1:40:cb:d6:af:56:fd:5e:3b:4d:1a:
32:d6:75:74:54:a9:b8:d6:de:ba:2a:a5:b8:8b:8f:
79:74:86:56:cb:d9:a2:7e:f2:c6:e6:d2:71:ee:08:
08:38:29:d1:a4:95:0d:be:94:95:6b:3d:6d:f2:62:
dc:b0:29:7e:81:04:51:9c:c4:7d:82:ae:0f:4e:f5:
51:28:2e:f7:19:10:f7:2f:cc:e2:cc:d0:a5:e2:83:
f9:e6:29:e0:64:38:27:9a:c1:f7:9b:21:e0:4f:ca:
da:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:07:A6:AD:33:2C:4C:A2:63:58:49:C0:F5:8D:0D:ED:CA:24:0B:88
X509v3 Authority Key Identifier:
keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:51:1e:c6:0a:69:d2:b2:72:75:0e:bf:62:43:95:8d:02:a6:
97:72:a9:65:0b:ea:2e:7b:82:34:e1:83:6b:d8:e6:54:58:9c:
a6:26:f6:bf:e7:4e:a3:ea:be:1b:b9:80:07:cc:8b:dc:31:fd:
f0:d6:89:82:e9:33:cd:4d:0d:ef:14:c2:28:fb:16:43:1e:62:
3c:ba:e6:5e:f3:d3:45:2e:24:b9:6c:5d:d3:03:15:72:5d:3e:
29:7a:25:0b:29:b3:66:01:b7:24:7b:05:62:81:e3:77:53:5f:
16:b1:88:16:10:63:39:e3:8a:86:72:32:0b:23:3e:a0:c1:ef:
94:9b:0c:82:f5:6b:23:c3:1e:a6:9a:77:1b:5f:bc:7a:8a:99:
85:63:26:8c:b4:63:5a:fc:12:3a:21:cb:30:d2:fa:3d:90:da:
38:88:04:22:5f:d4:bb:85:a5:40:e5:ff:f9:9f:11:8a:98:d6:
87:72:b7:31:45:d1:43:a8:e3:3c:e2:92:d5:36:13:60:00:98:
24:c8:67:5d:53:a6:28:77:f9:ee:d1:e5:9e:20:c6:2f:90:d9:
38:6e:a5:06:88:ad:53:ce:6d:6f:48:14:7b:3b:95:dd:6d:83:
3e:97:35:45:de:ef:96:02:ca:40:f0:f8:a8:a0:c1:11:f1:f7:
08:cb:e0:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQkAVM/QIgaxKcvyAeevtZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ODU0YTU3YWIwZDhhM2M5MjJjOGY2YTc5YWE4ZmU4YTZh
MmMwOWUwHhcNMjUwMjE2MjEwMDI4WhcNMjUwMjE3MjEwMDI4WjAzMTEwLwYDVQQD
EyhhNzA3YTZhZDMzMmM0Y2EyNjM1ODQ5YzBmNThkMGRlZGNhMjQwYjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3bymzzAjcubJNI9GJwhS8gzD+wba
7n1FRxTR6MwTQUudSMcP4CQpX/NnK/t3MNIYVLyR0yvj01QjMP/OC2TP+Oa3auUK
TUvTEqiEA//6okvOuMy+LoYJOKZSgT4MRH5jjEPB561vK/CxEo8v+WOm4516/Jss
jlHiPlHC99sTc7ME4PkyCLCbhyLJQuBQ/tajYcnAwOPWk+Bk4UDL1q9W/V47TRoy
1nV0VKm41t66KqW4i495dIZWy9mifvLG5tJx7ggIOCnRpJUNvpSVaz1t8mLcsCl+
gQRRnMR9gq4PTvVRKC73GRD3L8zizNCl4oP55ingZDgnmsH3myHgT8raUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKcHpq0zLEyiY1hJwPWNDe3KJAuIMB8GA1UdIwQY
MBaAFGmFSlerDYo8kiyPanmqj+imosCeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQt
NTIzOGIwMzU0NWNhLzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQtNTIzOGIwMzU0NWNh
LzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASlEexgpp
0rJydQ6/YkOVjQKml3KpZQvqLnuCNOGDa9jmVFicpib2v+dOo+q+G7mAB8yL3DH9
8NaJgukzzU0N7xTCKPsWQx5iPLrmXvPTRS4kuWxd0wMVcl0+KXolCymzZgG3JHsF
YoHjd1NfFrGIFhBjOeOKhnIyCyM+oMHvlJsMgvVrI8Meppp3G1+8eoqZhWMmjLRj
WvwSOiHLMNL6PZDaOIgEIl/Uu4WlQOX/+Z8RipjWh3K3MUXRQ6jjPOKS1TYTYACY
JMhnXVOmKHf57tHlniDGL5DZOG6lBoitU85tb0gUezuV3W2DPpc1Rd7vlgLKQPD4
qKDBEfH3CMvgtA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:03 2025 by rpki-client