Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json)
Hash identifier: YfvnfOx4jC3KcPkXloxsymQ01Kon6v0R6ChJbBxA4J8=
Subject key identifier: 4A:23:DB:C8:E4:F0:8F:77:FD:8D:FF:7A:10:D7:BA:64:6A:47:6D:19
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial: 0195127E289A83915F4770B7555FED2EBCE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
Manifest number: 0952
Signing time: Mon 17 Feb 2025 06:00:12 +0000
Manifest this update: Mon 17 Feb 2025 06:00:12 +0000
Manifest next update: Tue 18 Feb 2025 06:00:12 +0000
Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: QBxgAFBg8YYgMDSlpCD1pD4afoEbLs8gApCo04QLz40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:28:9a:83:91:5f:47:70:b7:55:5f:ed:2e:bc:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
Validity
Not Before: Feb 17 06:00:12 2025 GMT
Not After : Feb 18 06:00:12 2025 GMT
Subject: CN=4a23dbc8e4f08f77fd8dff7a10d7ba646a476d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:40:70:8d:6a:01:68:e0:4d:c2:a5:8b:ce:39:
bb:26:1c:fe:19:18:0e:94:fc:ae:7f:3d:58:e2:f6:
9d:ec:bf:44:52:5e:b3:0a:73:a3:70:4b:6b:b3:98:
dc:cc:13:9e:57:7c:09:96:06:10:0a:2f:fa:1f:86:
24:a5:90:cb:98:c0:42:10:57:0c:fe:66:78:43:00:
39:2a:3b:dd:7f:61:18:ae:5a:d4:9d:41:de:02:18:
44:9e:68:44:9b:01:66:c9:58:73:8f:40:5c:e7:78:
b5:01:ea:f2:6d:a9:5f:6f:a6:17:17:2f:f9:de:35:
2c:8c:78:63:a5:11:57:73:c4:31:98:cb:80:d0:84:
ef:b6:c1:08:cb:4f:6a:62:b4:0c:e5:f2:73:01:ee:
ef:8d:72:fb:5b:a3:39:da:d5:4c:53:30:a0:43:76:
f5:64:32:6c:9c:23:f6:f2:09:c9:94:4c:f2:f4:57:
ac:ed:b6:14:5a:11:1c:67:42:63:21:2f:7a:4b:76:
da:ee:83:ae:7e:0d:70:81:e5:38:0a:e1:71:7f:01:
c1:1b:b9:34:d4:3b:1f:80:1e:59:6e:89:5a:c9:63:
11:2e:c4:9b:c9:63:7a:47:ff:fa:83:45:86:16:62:
65:91:c2:e2:fe:3f:65:71:7c:ae:a9:19:d1:75:68:
bf:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:23:DB:C8:E4:F0:8F:77:FD:8D:FF:7A:10:D7:BA:64:6A:47:6D:19
X509v3 Authority Key Identifier:
keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:3a:5a:17:bb:0b:0c:56:3d:44:66:b2:2c:2b:42:ee:94:02:
db:cf:a9:38:a5:c2:8a:0e:bc:c2:57:83:ac:f4:4c:ad:fb:f8:
e7:1a:bb:77:18:bb:61:e0:dc:d2:2d:cf:04:f2:ec:6e:bf:9c:
97:26:4c:01:17:4f:d9:74:eb:c7:17:e5:58:93:b3:56:d6:52:
07:1e:3d:7b:9c:a7:fa:bd:3a:66:47:ab:81:1e:ea:aa:38:85:
7a:d5:59:7e:28:4a:ec:65:66:13:51:3b:ea:ce:1b:31:4b:bf:
1e:c3:95:e1:b3:9f:8a:87:5b:d9:af:38:da:be:1f:85:de:96:
3e:26:72:32:54:30:bd:f1:9a:5d:f4:70:83:0c:d7:e5:02:a5:
61:6b:f8:3a:2a:d8:ce:8c:00:b7:83:6b:6c:c8:70:53:ee:9a:
a2:7f:1c:80:e4:8f:5a:f7:19:18:f3:b5:33:04:03:15:9a:65:
c7:d1:7f:f2:8c:fb:b5:bc:8e:39:19:d3:9c:40:a7:8f:6a:27:
c8:a2:d8:75:ff:38:cb:8c:6c:fc:d6:dd:e0:2c:90:21:9a:e1:
08:54:dd:1b:dd:eb:12:ba:29:97:d0:b6:6f:e3:76:ce:5f:58:
ec:ea:47:03:74:de:52:b7:d5:d7:d8:76:9e:1f:c9:3d:dc:f2:
93:0f:97:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSfiiag5FfR3C3VV/tLrzmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDU4OWRjZTYzOTgxODcwYTE4NTA5MDZjOGMyZDFkOTY3
NDAwOTYwHhcNMjUwMjE3MDYwMDEyWhcNMjUwMjE4MDYwMDEyWjAzMTEwLwYDVQQD
Eyg0YTIzZGJjOGU0ZjA4Zjc3ZmQ4ZGZmN2ExMGQ3YmE2NDZhNDc2ZDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5kBwjWoBaOBNwqWLzjm7Jhz+GRgO
lPyufz1Y4vad7L9EUl6zCnOjcEtrs5jczBOeV3wJlgYQCi/6H4YkpZDLmMBCEFcM
/mZ4QwA5Kjvdf2EYrlrUnUHeAhhEnmhEmwFmyVhzj0Bc53i1Aerybalfb6YXFy/5
3jUsjHhjpRFXc8QxmMuA0ITvtsEIy09qYrQM5fJzAe7vjXL7W6M52tVMUzCgQ3b1
ZDJsnCP28gnJlEzy9Fes7bYUWhEcZ0JjIS96S3ba7oOufg1wgeU4CuFxfwHBG7k0
1DsfgB5ZbolayWMRLsSbyWN6R//6g0WGFmJlkcLi/j9lcXyuqRnRdWi/OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEoj28jk8I93/Y3/ehDXumRqR20ZMB8GA1UdIwQY
MBaAFNoFidzmOYGHChhQkGyMLR2WdACWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYt
MTRlM2MyMDE3OTY5LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYtMTRlM2MyMDE3OTY5
LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAODpaF7sL
DFY9RGayLCtC7pQC28+pOKXCig68wleDrPRMrfv45xq7dxi7YeDc0i3PBPLsbr+c
lyZMARdP2XTrxxflWJOzVtZSBx49e5yn+r06ZkergR7qqjiFetVZfihK7GVmE1E7
6s4bMUu/HsOV4bOfiodb2a842r4fhd6WPiZyMlQwvfGaXfRwgwzX5QKlYWv4OirY
zowAt4NrbMhwU+6aon8cgOSPWvcZGPO1MwQDFZplx9F/8oz7tbyOORnTnECnj2on
yKLYdf84y4xs/Nbd4CyQIZrhCFTdG93rEropl9C2b+N2zl9Y7OpHA3TeUrfV19h2
nh/JPdzykw+Xow==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:58 2025 by rpki-client