Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: GGF4GkY+UqI4Fm7kSJsQaPX+vCBgLRGMJfDJuHlnF74=
Subject key identifier: BD:65:D4:6C:DC:69:90:5D:2E:A8:DB:81:F5:32:7C:AA:48:67:9E:13
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 0194C3F61DB7A535E5F63C7B2BD09E91AA29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 7C
Signing time: Sun 02 Feb 2025 00:01:14 +0000
Manifest this update: Sun 02 Feb 2025 00:01:14 +0000
Manifest next update: Mon 03 Feb 2025 00:01:14 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: 6Y6y6wQlevts777zN6NjEi7MlkA43bOap7YlrD/M7nY=)
2: 5XHmlHMatoj7HuqzW-xKZFCBoCk.roa (hash: 2LwcEFXQBzd4wv+NbYjPLMlRT/J2wftX73OmJ3FhceM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f6:1d:b7:a5:35:e5:f6:3c:7b:2b:d0:9e:91:aa:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Feb 2 00:01:14 2025 GMT
Not After : Feb 3 00:01:14 2025 GMT
Subject: CN=bd65d46cdc69905d2ea8db81f5327caa48679e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:54:54:0b:e4:31:a4:b4:97:c3:9d:53:c5:69:
bf:4d:3b:b4:ff:52:72:19:04:25:ff:d6:07:b7:40:
60:ab:fa:33:9d:15:02:6c:41:6e:0c:87:84:52:60:
ff:a2:53:71:5f:dd:88:81:1c:3e:ea:41:31:d5:3e:
a8:97:f4:af:21:97:f4:fb:16:59:a8:72:61:74:a0:
59:d5:13:bf:c1:5b:69:64:e6:1c:7e:7c:d4:18:cd:
97:06:bd:0b:d3:5c:88:0d:e0:73:3a:f4:d1:7d:47:
6b:8b:31:c2:52:ea:1b:ce:79:c5:20:bc:9f:7f:3b:
57:59:12:1d:b0:bc:9c:70:6a:42:43:74:47:00:1a:
8a:16:de:80:b0:42:04:06:12:fb:f3:87:9b:ab:01:
34:df:11:7f:55:31:9d:75:e3:77:bb:7d:7e:18:c7:
84:f9:4f:f9:3b:84:7f:c5:f0:90:5b:ba:8c:08:9e:
f4:02:d2:8f:e6:60:6f:7a:f7:8c:83:d0:00:e8:80:
59:e7:32:5b:08:a0:73:96:4b:1c:4e:df:3e:71:95:
77:1c:38:a0:25:bf:98:03:18:ed:f8:b8:c4:3c:a0:
77:84:03:2c:b3:b1:5c:ff:4f:68:aa:7c:5d:db:67:
e8:45:87:18:62:27:fa:c6:10:b6:e8:bd:d0:81:f0:
b2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:65:D4:6C:DC:69:90:5D:2E:A8:DB:81:F5:32:7C:AA:48:67:9E:13
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:06:18:4e:f3:46:34:2f:03:f8:4d:2d:55:5e:6f:68:0a:12:
82:1d:d4:71:b9:3b:cd:ea:e9:6f:62:40:76:52:8f:a4:24:d0:
a6:b0:0b:81:42:de:54:23:e6:7f:c0:7f:b5:74:17:55:8c:43:
eb:8c:1e:c6:31:2e:e1:1a:f2:92:8c:cc:ec:c0:cc:e7:8d:1b:
4d:c5:e2:6c:37:e2:a7:5d:ac:6d:b4:f2:fd:78:21:d1:b2:f6:
4a:67:ad:70:68:c0:1a:a2:d0:46:9f:e3:45:27:17:5d:cf:31:
d0:bc:1a:19:36:9b:cb:55:cf:88:28:7e:e3:43:dc:a8:3a:b5:
8c:f1:47:8d:21:94:1d:ba:26:62:53:1a:05:42:0c:1c:11:4d:
56:52:b8:5a:ff:cb:11:29:2b:2b:85:c0:45:9f:ea:6b:96:19:
d1:5c:c0:78:68:e0:50:21:16:05:37:4c:bd:18:a6:51:5d:f7:
35:35:23:5d:14:f3:7c:c8:fb:0e:c4:89:91:48:63:2e:f1:3e:
14:9f:44:84:56:9a:90:fe:92:d0:6b:be:70:b2:e7:12:59:1b:
22:26:60:94:fc:15:8e:a3:09:98:13:28:56:02:76:8e:2a:7a:
6c:33:d7:ba:3e:9d:af:4c:5c:aa:8a:6d:82:fe:9c:7b:be:af:
80:fa:b8:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTD9h23pTXl9jx7K9CekaopMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwZjE0YjhhMDhjYjVmODA1N2Q0OGIwM2U1M2Y0NThiOGUx
ZmVlZDYwHhcNMjUwMjAyMDAwMTE0WhcNMjUwMjAzMDAwMTE0WjAzMTEwLwYDVQQD
EyhiZDY1ZDQ2Y2RjNjk5MDVkMmVhOGRiODFmNTMyN2NhYTQ4Njc5ZTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2VRUC+QxpLSXw51TxWm/TTu0/1Jy
GQQl/9YHt0Bgq/oznRUCbEFuDIeEUmD/olNxX92IgRw+6kEx1T6ol/SvIZf0+xZZ
qHJhdKBZ1RO/wVtpZOYcfnzUGM2XBr0L01yIDeBzOvTRfUdrizHCUuobznnFILyf
fztXWRIdsLyccGpCQ3RHABqKFt6AsEIEBhL784ebqwE03xF/VTGddeN3u31+GMeE
+U/5O4R/xfCQW7qMCJ70AtKP5mBveveMg9AA6IBZ5zJbCKBzlkscTt8+cZV3HDig
Jb+YAxjt+LjEPKB3hAMss7Fc/09oqnxd22foRYcYYif6xhC26L3QgfCy/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL1l1GzcaZBdLqjbgfUyfKpIZ54TMB8GA1UdIwQY
MBaAFNDxS4oIy1+AV9SLA+U/RYuOH+7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFBGTGlnakxYNEJYMUlzRDVUOUZpNDRmN3RZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8yMWJkYmItODU2Zi00MWRkLWFhZDkt
MDY2ZGRmMzJiZmNjLzEvMFBGTGlnakxYNEJYMUlzRDVUOUZpNDRmN3RZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC8yMWJkYmItODU2Zi00MWRkLWFhZDktMDY2ZGRmMzJiZmNj
LzEvMFBGTGlnakxYNEJYMUlzRDVUOUZpNDRmN3RZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANAYYTvNG
NC8D+E0tVV5vaAoSgh3Ucbk7zerpb2JAdlKPpCTQprALgULeVCPmf8B/tXQXVYxD
64wexjEu4RrykozM7MDM540bTcXibDfip12sbbTy/Xgh0bL2SmetcGjAGqLQRp/j
RScXXc8x0LwaGTaby1XPiCh+40PcqDq1jPFHjSGUHbomYlMaBUIMHBFNVlK4Wv/L
ESkrK4XARZ/qa5YZ0VzAeGjgUCEWBTdMvRimUV33NTUjXRTzfMj7DsSJkUhjLvE+
FJ9EhFaakP6S0Gu+cLLnElkbIiZglPwVjqMJmBMoVgJ2jip6bDPXuj6dr0xcqopt
gv6ce76vgPq44Q==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:02 2025 by rpki-client