Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
File: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft (raw, json)
Hash identifier: Fk3qHUtgg03b38w2DlruY14Efto4xQ+8FTBmT8XCFlY=
Subject key identifier: A2:45:7B:21:58:30:67:4C:0B:63:93:04:DE:04:ED:60:59:45:F8:27
Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7
Certificate serial: 019510FDD65BC874FE3E59B4A7B98C8D19D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
Manifest number: 10A1
Signing time: Sun 16 Feb 2025 23:00:25 +0000
Manifest this update: Sun 16 Feb 2025 23:00:25 +0000
Manifest next update: Mon 17 Feb 2025 23:00:25 +0000
Files and hashes: 1: KhThgn0FLgtxgLmV5WuQd88UjJs.roa (hash: UVyvP36EKpZylxYZtY94LC7cB1Xoy48Pim7visCwDUs=)
2: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl (hash: TDxclKeWF0I2UXmrAbHG9pNndBzfRGsW5VN9K6VqI7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:d6:5b:c8:74:fe:3e:59:b4:a7:b9:8c:8d:19:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7
Validity
Not Before: Feb 16 23:00:25 2025 GMT
Not After : Feb 17 23:00:25 2025 GMT
Subject: CN=a2457b215830674c0b639304de04ed605945f827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:be:2e:49:3c:5c:e2:70:c1:53:c7:da:cb:0a:
df:e3:cb:cb:ee:43:5f:a7:da:6c:ad:f9:62:1e:31:
12:e4:ec:f5:b5:b0:55:85:67:f1:73:83:db:c5:1e:
63:94:7d:ca:ca:92:61:91:81:c1:a1:89:37:fb:76:
78:72:99:a2:78:be:35:ff:bf:d5:ce:84:1d:96:74:
4e:50:98:19:09:55:8e:11:5e:11:3a:ca:c7:cb:52:
3a:1c:40:81:15:e8:ef:4d:bb:2a:7c:b8:5a:87:10:
48:93:1e:8e:b0:f4:84:31:7c:c4:9b:9d:29:81:f5:
da:09:7f:77:5e:79:8c:bf:4d:87:c1:fc:7d:2a:ae:
bb:61:a1:ff:b3:ae:9b:2b:1b:ed:f6:64:40:b7:7b:
22:25:b2:9e:6a:5b:ba:fe:c3:c3:d1:f8:1d:19:ce:
3a:0a:5f:3e:d9:f4:46:7a:07:90:66:d0:9e:c7:ea:
2d:36:69:d6:4b:b0:86:de:fc:fb:fc:17:cc:b4:48:
bc:af:dd:ac:8c:56:80:78:a3:67:66:f9:9e:a1:91:
a9:14:9f:52:22:79:ff:73:26:67:27:e0:2c:09:48:
1d:77:a2:8f:f5:87:ab:98:be:f1:0b:cf:12:d7:f1:
f9:52:2f:02:6e:18:b1:1c:a9:7b:72:98:69:cc:25:
37:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:45:7B:21:58:30:67:4C:0B:63:93:04:DE:04:ED:60:59:45:F8:27
X509v3 Authority Key Identifier:
keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:47:7e:ac:10:5f:29:78:13:c1:11:67:62:61:09:a2:2d:68:
03:08:c5:59:ea:6b:c3:65:c0:d1:88:54:93:79:e2:d6:29:cf:
37:75:3c:8c:f2:8e:53:a0:0f:52:c6:43:15:78:85:6b:40:0a:
18:61:ec:e9:4b:3c:1c:a1:0e:c0:14:ef:fc:0b:c0:36:7b:13:
97:5d:c1:07:98:0b:ec:ac:45:d9:f3:a4:4c:90:3e:a9:9a:aa:
c3:c5:2f:d6:6a:f3:75:e9:c3:e2:ee:74:fd:d2:fc:64:3e:30:
71:ac:32:b6:1c:e6:1b:33:77:2b:88:89:f5:53:c6:f6:1c:f8:
fd:57:b2:1b:ca:3e:43:61:e7:89:d3:a8:69:4f:85:3f:54:97:
e0:76:42:a3:3a:ce:ab:18:36:dd:82:9a:16:47:06:a5:36:a9:
43:c1:1f:26:9f:f5:c9:6f:51:62:fc:5e:9d:f6:16:db:dd:5b:
bf:01:cd:c1:9f:9e:41:27:8a:f6:dd:b1:36:6b:61:5e:2a:9f:
1b:8f:e3:19:d2:fa:c7:11:24:97:a7:5d:6f:6b:bb:cf:07:e1:
50:6d:ed:9b:5b:99:19:f3:08:de:21:60:d9:23:be:f0:48:f9:
ba:0c:48:69:a6:7c:97:f4:ff:7d:53:0c:fa:63:b6:22:43:29:
77:bf:1e:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQ/dZbyHT+Plm0p7mMjRnWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjMzI4NzU2ZGVjZThmMjlmOTdmNDFiODFhMDg3ZGI1MjRl
MTU5YjcwHhcNMjUwMjE2MjMwMDI1WhcNMjUwMjE3MjMwMDI1WjAzMTEwLwYDVQQD
EyhhMjQ1N2IyMTU4MzA2NzRjMGI2MzkzMDRkZTA0ZWQ2MDU5NDVmODI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApr4uSTxc4nDBU8faywrf48vL7kNf
p9psrfliHjES5Oz1tbBVhWfxc4PbxR5jlH3KypJhkYHBoYk3+3Z4cpmieL41/7/V
zoQdlnROUJgZCVWOEV4ROsrHy1I6HECBFejvTbsqfLhahxBIkx6OsPSEMXzEm50p
gfXaCX93XnmMv02Hwfx9Kq67YaH/s66bKxvt9mRAt3siJbKealu6/sPD0fgdGc46
Cl8+2fRGegeQZtCex+otNmnWS7CG3vz7/BfMtEi8r92sjFaAeKNnZvmeoZGpFJ9S
Inn/cyZnJ+AsCUgdd6KP9YermL7xC88S1/H5Ui8CbhixHKl7cphpzCU3zQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKJFeyFYMGdMC2OTBN4E7WBZRfgnMB8GA1UdIwQY
MBaAFKwyh1bezo8p+X9BuBoIfbUk4Vm3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckRLSFZ0N09qeW41ZjBHNEdnaDl0U1RoV2JjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9mYjc4YWQtOTE4ZS00NGMyLTk1MDEt
MDI0YWQ0ZmIzNzA4LzEvckRLSFZ0N09qeW41ZjBHNEdnaDl0U1RoV2JjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9mYjc4YWQtOTE4ZS00NGMyLTk1MDEtMDI0YWQ0ZmIzNzA4
LzEvckRLSFZ0N09qeW41ZjBHNEdnaDl0U1RoV2JjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWUd+rBBf
KXgTwRFnYmEJoi1oAwjFWeprw2XA0YhUk3ni1inPN3U8jPKOU6APUsZDFXiFa0AK
GGHs6Us8HKEOwBTv/AvANnsTl13BB5gL7KxF2fOkTJA+qZqqw8Uv1mrzdenD4u50
/dL8ZD4wcawythzmGzN3K4iJ9VPG9hz4/VeyG8o+Q2HnidOoaU+FP1SX4HZCozrO
qxg23YKaFkcGpTapQ8EfJp/1yW9RYvxenfYW291bvwHNwZ+eQSeK9t2xNmthXiqf
G4/jGdL6xxEkl6ddb2u7zwfhUG3tm1uZGfMI3iFg2SO+8Ej5ugxIaaZ8l/T/fVMM
+mO2IkMpd78etQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:27 2025 by rpki-client