Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
File: lf0DtfNbMXtNMv8aSywXuzdsIeE.mft (raw, json)
Hash identifier: +x5KUq1TH2v9FcNqz2AedITZ+i/2TjRhiKE1dYtF4eg=
Subject key identifier: 41:1A:15:C9:8C:C2:32:17:F6:F4:40:C8:3E:9E:66:39:57:9A:B0:99
Authority key identifier: 95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
Certificate issuer: /CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Certificate serial: 01951090029C3B8DD6C04CD4E5AA5F8C9E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
Manifest number: 1063
Signing time: Sun 16 Feb 2025 21:00:28 +0000
Manifest this update: Sun 16 Feb 2025 21:00:28 +0000
Manifest next update: Mon 17 Feb 2025 21:00:28 +0000
Files and hashes: 1: LZt4gb-xWjsUFFEJJlr5snAnfj4.roa (hash: iVanuwhOVMx/ABZHooPm82UQY207412XKo2wvn51IRE=)
2: lf0DtfNbMXtNMv8aSywXuzdsIeE.crl (hash: nENMBNBvX3TYmH9QePOLVpE6aliJ4qCwrFeW2XqJxCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:90:02:9c:3b:8d:d6:c0:4c:d4:e5:aa:5f:8c:9e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Validity
Not Before: Feb 16 21:00:28 2025 GMT
Not After : Feb 17 21:00:28 2025 GMT
Subject: CN=411a15c98cc23217f6f440c83e9e6639579ab099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e9:33:ba:5d:5d:94:29:95:c2:c1:12:ee:fa:
7b:d1:d0:8c:35:f8:a8:b9:12:3e:a1:36:1a:da:26:
8c:ee:61:b7:15:81:f1:30:fe:b9:f4:f6:22:47:ac:
61:65:14:bc:14:57:06:32:9d:d4:48:d8:83:3e:3b:
7c:ba:da:67:34:c2:7c:14:45:12:b9:33:63:20:e8:
32:6a:b8:3b:5c:11:76:b9:e3:9e:f3:0e:a6:fd:d4:
ee:76:24:41:67:d4:a7:7c:ae:6b:96:a8:42:b0:32:
7f:2c:1b:73:20:79:7d:fe:53:27:85:7c:37:98:de:
54:b3:99:aa:10:4f:9e:1a:ec:6d:b7:b2:19:55:14:
54:c4:53:98:59:19:5f:05:2a:4e:1d:04:8b:06:f6:
3b:40:c4:96:3a:9a:f4:24:24:bf:3d:4a:94:63:fe:
de:57:bd:58:f1:cb:42:24:00:97:91:30:59:9b:0a:
2e:89:81:db:69:08:b9:2c:c4:60:02:28:09:6f:ee:
fc:c8:1f:99:46:0b:96:de:e1:9a:93:8d:11:60:70:
30:b8:e0:5c:f3:64:a6:a0:f0:ea:73:3f:09:48:99:
84:00:55:b9:2d:a5:29:27:9d:e6:a2:bc:e1:93:cc:
c1:83:0c:6c:8b:19:c4:9b:c8:91:fd:2b:4c:80:ab:
a6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1A:15:C9:8C:C2:32:17:F6:F4:40:C8:3E:9E:66:39:57:9A:B0:99
X509v3 Authority Key Identifier:
keyid:95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:8f:81:9d:cc:08:4a:b9:8e:7c:66:7a:cf:b1:bc:80:05:61:
f3:6c:bf:cc:2a:6c:4e:f2:c5:5e:5e:0a:79:91:bf:01:8f:ba:
2f:60:4f:56:12:f2:70:29:bb:5b:38:d8:9d:36:69:c7:e8:fb:
36:bb:04:37:d6:ab:9b:1e:69:0b:66:4a:e6:7f:c4:43:f2:d1:
de:93:d3:0d:3a:d1:e9:22:9d:1a:24:46:5c:78:a5:33:a4:12:
c6:c5:ed:b5:6e:80:88:fd:7b:59:38:33:2e:f2:37:84:e4:4b:
0a:d8:6e:3e:36:c7:29:3f:74:52:e2:ce:3a:eb:7c:38:c6:47:
27:e8:7d:cb:3e:01:b1:84:26:91:30:2f:c9:9d:6e:80:78:96:
d3:57:6b:e3:7d:ce:c3:58:41:16:15:ed:f5:07:75:fe:8e:50:
29:0c:8f:75:ad:5a:c0:1c:48:26:48:41:0c:96:54:79:7d:0b:
d9:82:b9:f6:26:6f:52:45:55:a2:df:c0:00:44:98:62:a8:e7:
b2:b9:13:d2:56:99:c9:d2:37:38:24:4a:27:ea:7d:4a:38:6f:
4c:aa:d8:62:f6:76:dd:75:b6:d9:04:25:1b:d9:6b:dd:6c:c3:
2f:5b:17:6d:9d:88:dd:6b:56:b1:0c:ee:de:89:9f:94:19:68:
5c:7a:a4:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQkAKcO43WwEzU5apfjJ57MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ZmQwM2I1ZjM1YjMxN2I0ZDMyZmYxYTRiMmMxN2JiMzc2
YzIxZTEwHhcNMjUwMjE2MjEwMDI4WhcNMjUwMjE3MjEwMDI4WjAzMTEwLwYDVQQD
Eyg0MTFhMTVjOThjYzIzMjE3ZjZmNDQwYzgzZTllNjYzOTU3OWFiMDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoekzul1dlCmVwsES7vp70dCMNfio
uRI+oTYa2iaM7mG3FYHxMP659PYiR6xhZRS8FFcGMp3USNiDPjt8utpnNMJ8FEUS
uTNjIOgyarg7XBF2ueOe8w6m/dTudiRBZ9SnfK5rlqhCsDJ/LBtzIHl9/lMnhXw3
mN5Us5mqEE+eGuxtt7IZVRRUxFOYWRlfBSpOHQSLBvY7QMSWOpr0JCS/PUqUY/7e
V71Y8ctCJACXkTBZmwouiYHbaQi5LMRgAigJb+78yB+ZRguW3uGak40RYHAwuOBc
82SmoPDqcz8JSJmEAFW5LaUpJ53morzhk8zBgwxsixnEm8iR/StMgKumZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEEaFcmMwjIX9vRAyD6eZjlXmrCZMB8GA1UdIwQY
MBaAFJX9A7XzWzF7TTL/GkssF7s3bCHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGYwRHRmTmJNWHROTXY4YVN5d1h1emRzSWVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9mOWQwZTktYmRhNC00MmIyLThlN2Et
ZDYwZjQ0YTkzNGIxLzEvbGYwRHRmTmJNWHROTXY4YVN5d1h1emRzSWVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9mOWQwZTktYmRhNC00MmIyLThlN2EtZDYwZjQ0YTkzNGIx
LzEvbGYwRHRmTmJNWHROTXY4YVN5d1h1emRzSWVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe4+BncwI
SrmOfGZ6z7G8gAVh82y/zCpsTvLFXl4KeZG/AY+6L2BPVhLycCm7WzjYnTZpx+j7
NrsEN9armx5pC2ZK5n/EQ/LR3pPTDTrR6SKdGiRGXHilM6QSxsXttW6AiP17WTgz
LvI3hORLCthuPjbHKT90UuLOOut8OMZHJ+h9yz4BsYQmkTAvyZ1ugHiW01dr433O
w1hBFhXt9Qd1/o5QKQyPda1awBxIJkhBDJZUeX0L2YK59iZvUkVVot/AAESYYqjn
srkT0laZydI3OCRKJ+p9SjhvTKrYYvZ23XW22QQlG9lr3WzDL1sXbZ2I3WtWsQzu
3omflBloXHqkzA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:24 2025 by rpki-client