Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft
File: orEujfOr1VWfnPloCvZd0WWJ3oY.mft (raw, json)
Hash identifier: wA6K6go55H1FRJ+LhjUmnTjbJFpoM3WEsAs/z9LP2QA=
Subject key identifier: 56:3D:CB:21:1C:8A:9B:77:BD:30:4E:D3:EB:55:33:E7:2F:59:C9:AB
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 01951134FF107D04AA9216C1E1DC1B05B62F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft
Manifest number: 1457
Signing time: Mon 17 Feb 2025 00:00:40 +0000
Manifest this update: Mon 17 Feb 2025 00:00:40 +0000
Manifest next update: Tue 18 Feb 2025 00:00:40 +0000
Files and hashes: 1: 7Msd020-lTb3NDPu0wOtsvEU5Dk.roa (hash: dfVqgLyKdA37ClDslcVfTHo3hZAFTQ8SdbwI91UsZXc=)
2: OcAvtCfGeHAKogvTrE4zVIYXhXs.roa (hash: ytTb8Vp57MsWC+qg8DRVK13nEW8nfvpJJgza5MGPgYA=)
3: UTD25HSfDCitfEF77H0gTbBbKYg.roa (hash: JlSU0P58p4ohrtWd9vf+kXPT1uTSHo3mBZt0nA+3jpA=)
4: aEWr6-EqtkKVBn1aiC7rHdjKt8Y.roa (hash: crXyg1I0M6v1iZUeG0Vpk1mS5J8AlR2ziEDMO6PLwNs=)
5: hnuqfuqQFfls7WsQI7eQEfSUik0.roa (hash: 4glBckXjWMe5XR/kJnErYQjsYivbggBDZAVbZrhZteQ=)
6: i7sGnx93z5ToyiS1WZHxfFDOt2Y.roa (hash: zbLGd9ly7dB9bjJgAy7rLwK61cdvZID5dUKiv5voqUg=)
7: orEujfOr1VWfnPloCvZd0WWJ3oY.crl (hash: kdx0H5lq0vRcuEdAFrpVkqjC7pQFhAN+jIQRUEL0xko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft
rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:ff:10:7d:04:aa:92:16:c1:e1:dc:1b:05:b6:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Feb 17 00:00:40 2025 GMT
Not After : Feb 18 00:00:40 2025 GMT
Subject: CN=563dcb211c8a9b77bd304ed3eb5533e72f59c9ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cb:cf:7d:02:ce:84:15:2b:49:19:e7:56:c2:
8d:f2:08:30:89:01:cc:b3:56:25:46:5f:7d:6b:ea:
bd:62:58:71:bf:b9:03:36:e8:b5:39:48:f4:be:69:
15:2a:f3:b4:c9:0c:50:ae:40:de:0b:01:0b:d7:d5:
92:3d:b7:a5:00:f1:2d:03:8d:83:bf:01:f4:26:48:
e8:4c:0e:54:16:d2:8c:c7:75:d9:e4:e2:c4:88:4c:
95:dd:a2:a4:67:ac:06:1a:2e:61:76:08:fb:de:90:
40:28:cd:0d:ce:2d:c6:bd:42:5d:be:85:7c:3e:e1:
6f:e6:03:95:f6:8f:1e:63:0d:e2:b9:a6:5f:42:9e:
4b:25:18:54:60:d0:2a:51:28:de:9c:d2:39:1a:d2:
67:8b:4c:74:ea:5f:4e:91:b5:98:3b:0d:51:45:a2:
36:ac:7b:89:b8:f8:ee:f6:a8:7a:27:b6:31:a8:7e:
6d:df:95:06:35:57:e0:4c:9f:35:c5:54:ec:88:0b:
8f:ce:20:80:46:a9:b3:f8:4c:67:1e:72:01:fb:98:
18:26:8d:56:dc:f4:f8:6f:e5:e6:8b:12:1e:01:64:
e6:c0:50:03:77:82:b6:80:ba:b9:2d:1b:4e:a6:44:
04:1a:04:1c:d0:99:b4:a6:01:a5:5f:e4:e3:5c:ca:
a4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:3D:CB:21:1C:8A:9B:77:BD:30:4E:D3:EB:55:33:E7:2F:59:C9:AB
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:3e:d6:75:27:26:13:10:69:6c:81:7d:e6:84:6a:3b:b9:67:
4f:93:86:ca:2a:a4:72:76:9b:8b:ab:68:17:97:ae:b4:d3:79:
7d:26:bc:61:bb:a8:d1:93:b5:8c:d8:9f:f0:30:68:57:90:76:
c6:8e:f8:89:35:22:24:5e:b6:94:5f:52:d0:09:eb:6a:81:a9:
4b:05:6c:66:21:e2:44:32:82:c1:81:d6:3a:0d:03:04:cc:c3:
c9:89:b4:42:4b:aa:57:ce:94:3e:2b:8b:33:a5:1e:d9:c9:ea:
b0:e2:6c:78:a0:0c:18:e5:2c:ed:c0:0a:08:e5:9d:d8:0b:ba:
e4:ba:1c:da:ce:9b:87:21:64:64:c3:a6:bc:a1:5e:24:48:8a:
36:29:04:6c:45:fd:3d:a1:f3:1a:79:cc:8f:73:ad:5a:3c:26:
06:80:78:9e:84:9f:66:54:dc:11:c4:1d:3d:69:d1:00:02:0f:
de:e0:cb:e3:d0:e8:d9:61:fd:a0:1b:07:46:5b:f4:53:80:b2:
1c:2a:5c:ef:c8:eb:da:09:02:7a:4f:52:55:17:2f:af:4d:5b:
ad:91:66:12:6f:0b:6f:1e:67:a7:cc:e8:da:f8:b6:d3:68:7d:
cc:43:13:66:b8:60:14:48:11:81:77:59:33:39:af:fd:a9:75:
ae:cd:91:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNP8QfQSqkhbB4dwbBbYvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyYjEyZThkZjNhYmQ1NTU5ZjljZjk2ODBhZjY1ZGQxNjU4
OWRlODYwHhcNMjUwMjE3MDAwMDQwWhcNMjUwMjE4MDAwMDQwWjAzMTEwLwYDVQQD
Eyg1NjNkY2IyMTFjOGE5Yjc3YmQzMDRlZDNlYjU1MzNlNzJmNTljOWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18vPfQLOhBUrSRnnVsKN8ggwiQHM
s1YlRl99a+q9Ylhxv7kDNui1OUj0vmkVKvO0yQxQrkDeCwEL19WSPbelAPEtA42D
vwH0JkjoTA5UFtKMx3XZ5OLEiEyV3aKkZ6wGGi5hdgj73pBAKM0Nzi3GvUJdvoV8
PuFv5gOV9o8eYw3iuaZfQp5LJRhUYNAqUSjenNI5GtJni0x06l9OkbWYOw1RRaI2
rHuJuPju9qh6J7YxqH5t35UGNVfgTJ81xVTsiAuPziCARqmz+ExnHnIB+5gYJo1W
3PT4b+XmixIeAWTmwFADd4K2gLq5LRtOpkQEGgQc0Jm0pgGlX+TjXMqk4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFY9yyEcipt3vTBO0+tVM+cvWcmrMB8GA1UdIwQY
MBaAFKKxLo3zq9VVn5z5aAr2XdFlid6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9lYzQ0ZWEtZWY0My00YjNhLWE2OWEt
YjRjYjYzN2RhOGMzLzEvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9lYzQ0ZWEtZWY0My00YjNhLWE2OWEtYjRjYjYzN2RhOGMz
LzEvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdz7WdScm
ExBpbIF95oRqO7lnT5OGyiqkcnabi6toF5eutNN5fSa8Ybuo0ZO1jNif8DBoV5B2
xo74iTUiJF62lF9S0AnraoGpSwVsZiHiRDKCwYHWOg0DBMzDyYm0QkuqV86UPiuL
M6Ue2cnqsOJseKAMGOUs7cAKCOWd2Au65Loc2s6bhyFkZMOmvKFeJEiKNikEbEX9
PaHzGnnMj3OtWjwmBoB4noSfZlTcEcQdPWnRAAIP3uDL49Do2WH9oBsHRlv0U4Cy
HCpc78jr2gkCek9SVRcvr01brZFmEm8Lbx5np8zo2vi202h9zEMTZrhgFEgRgXdZ
Mzmv/al1rs2RjA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:56 2025 by rpki-client