Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: 0HP3Zjtk8EHBo8TQXga36yej8JALs/x1jDJTzwd2YN8=
Subject key identifier: A4:D8:51:E4:A5:0A:2B:A7:87:F2:78:87:4F:A5:AB:61:0E:54:0A:B4
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 0194C49A3004F44A92D4B51A2C9ABCACC55E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 1409
Signing time: Sun 02 Feb 2025 03:00:26 +0000
Manifest this update: Sun 02 Feb 2025 03:00:26 +0000
Manifest next update: Mon 03 Feb 2025 03:00:26 +0000
Files and hashes: 1: 2ttxDr4pGnjxuFL3h06WTGhjE60.roa (hash: gb8hbvNo/pcY/swamzsbRwiOgi4eH7YRN51AtOhEfsU=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: Zv+q4MbaKVDTJEiFfANTqQy6oApQnWmyChLNcieTqxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:30:04:f4:4a:92:d4:b5:1a:2c:9a:bc:ac:c5:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Feb 2 03:00:26 2025 GMT
Not After : Feb 3 03:00:26 2025 GMT
Subject: CN=a4d851e4a50a2ba787f278874fa5ab610e540ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:69:16:c7:5a:b9:31:bf:d0:26:cd:07:9b:1a:
11:18:cc:50:38:31:56:b3:6c:8b:00:6a:b6:c5:ea:
5a:c6:0c:c6:f2:f4:35:8f:16:47:65:ae:14:1f:00:
33:28:57:b5:ba:4b:9f:30:e9:6f:ae:89:aa:53:fb:
5a:0c:ce:be:35:32:df:c8:46:50:10:e9:93:fe:13:
8f:09:c1:24:bf:f5:4c:40:83:78:60:2c:25:b4:81:
a2:8c:33:1c:38:fb:d1:f8:9b:b0:89:c2:ef:96:28:
3a:3a:77:ff:28:61:c3:55:e2:e0:ed:77:a3:ee:19:
40:e1:25:43:88:0b:84:1a:39:b0:1c:85:c2:db:68:
d5:79:b6:b4:a7:32:88:e1:ee:a6:df:aa:79:3a:ba:
fe:ca:07:96:55:20:22:b4:2c:9b:70:cc:7e:8d:87:
80:b5:8a:6a:1d:79:2b:c0:7f:61:ec:ee:f6:da:ec:
27:25:f9:f4:3c:68:3e:70:80:fc:7f:1f:9a:e8:91:
f6:bb:ff:24:f7:81:81:30:ff:be:60:ae:7b:06:3e:
e2:7c:9f:05:31:90:29:27:2b:66:1b:74:9c:52:ef:
8c:97:62:9b:60:43:06:5a:c3:5c:57:78:b4:31:f1:
a0:f3:ea:28:04:04:a1:26:ea:e2:cc:24:a5:18:f8:
70:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D8:51:E4:A5:0A:2B:A7:87:F2:78:87:4F:A5:AB:61:0E:54:0A:B4
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:80:66:5e:e0:63:aa:9e:54:8b:1c:c9:fe:5c:90:e6:9d:94:
c3:f7:8d:48:5d:10:69:89:c2:86:5d:ec:ed:ce:ae:a5:63:0d:
d2:6b:4b:9a:e6:d5:c5:bf:e5:f4:75:81:39:34:a4:fe:a1:f6:
7d:ad:dd:e7:72:4a:d3:96:40:e1:d9:10:81:ca:39:7a:96:a2:
82:75:c5:bf:1c:cb:31:6a:36:fe:c0:c9:aa:e4:7a:ed:a2:51:
ff:19:5f:81:89:3a:dd:f9:2c:f9:0d:f5:75:ca:fc:9e:aa:37:
f3:89:2a:9d:3a:63:5f:ef:78:f0:e7:6f:86:40:4a:bc:e7:b1:
56:e6:fc:06:e5:2a:e7:c8:7f:a5:9f:dd:8e:df:ba:4f:98:c1:
11:f6:41:d7:dc:58:8c:4c:76:f2:e4:25:53:b4:52:d2:85:9f:
e0:30:3f:b4:9b:e7:13:35:06:a6:75:dc:f1:f3:a6:dc:97:12:
34:37:18:d8:fd:f7:1b:db:7b:c6:12:e8:5f:19:84:a7:98:5e:
eb:3c:89:72:9b:a8:7d:af:2d:b1:c2:ec:59:58:e5:dd:20:93:
93:20:7e:27:0a:20:f4:14:34:c6:5f:b2:7c:f4:0f:14:8d:b4:
1c:1c:31:22:29:f0:30:98:bf:6c:e1:0a:a2:c8:8b:cb:06:d5:
ce:41:1e:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTEmjAE9EqS1LUaLJq8rMVeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhM2ZlMGI5YzYzMGEzM2UxNzFhMGE1Yzc5M2YzNDBiNDM0
NDY5MzIwHhcNMjUwMjAyMDMwMDI2WhcNMjUwMjAzMDMwMDI2WjAzMTEwLwYDVQQD
EyhhNGQ4NTFlNGE1MGEyYmE3ODdmMjc4ODc0ZmE1YWI2MTBlNTQwYWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWkWx1q5Mb/QJs0HmxoRGMxQODFW
s2yLAGq2xepaxgzG8vQ1jxZHZa4UHwAzKFe1ukufMOlvromqU/taDM6+NTLfyEZQ
EOmT/hOPCcEkv/VMQIN4YCwltIGijDMcOPvR+JuwicLvlig6Onf/KGHDVeLg7Xej
7hlA4SVDiAuEGjmwHIXC22jVeba0pzKI4e6m36p5Orr+ygeWVSAitCybcMx+jYeA
tYpqHXkrwH9h7O722uwnJfn0PGg+cID8fx+a6JH2u/8k94GBMP++YK57Bj7ifJ8F
MZApJytmG3ScUu+Ml2KbYEMGWsNcV3i0MfGg8+ooBAShJurizCSlGPhwVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKTYUeSlCiunh/J4h0+lq2EOVAq0MB8GA1UdIwQY
MBaAFIo/4LnGMKM+FxoKXHk/NAtDRGkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMt
NTNhYWI0MmY0NzZlLzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMtNTNhYWI0MmY0NzZl
LzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAIBmXuBj
qp5UixzJ/lyQ5p2Uw/eNSF0QaYnChl3s7c6upWMN0mtLmubVxb/l9HWBOTSk/qH2
fa3d53JK05ZA4dkQgco5epaignXFvxzLMWo2/sDJquR67aJR/xlfgYk63fks+Q31
dcr8nqo384kqnTpjX+948OdvhkBKvOexVub8BuUq58h/pZ/djt+6T5jBEfZB19xY
jEx28uQlU7RS0oWf4DA/tJvnEzUGpnXc8fOm3JcSNDcY2P33G9t7xhLoXxmEp5he
6zyJcpuofa8tscLsWVjl3SCTkyB+Jwog9BQ0xl+yfPQPFI20HBwxIinwMJi/bOEK
osiLywbVzkEeSA==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:50:39 2025 by rpki-client