Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
File: ss0DX6sYpLeCYURWP2DniYpO8PE.mft (raw, json)
Hash identifier: sgQs7N2DQ/Wc2yAOUrBK/MDWhNkWU9DS46O13edjRxI=
Subject key identifier: 91:BC:A6:97:22:24:3A:3B:D8:39:C8:2C:6F:D3:35:02:0F:8E:64:A5
Authority key identifier: B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
Certificate issuer: /CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Certificate serial: 019511D963595BAD0F6A8C502D05190B4651
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
Manifest number: 0F73
Signing time: Mon 17 Feb 2025 03:00:14 +0000
Manifest this update: Mon 17 Feb 2025 03:00:14 +0000
Manifest next update: Tue 18 Feb 2025 03:00:14 +0000
Files and hashes: 1: 8ioI1P3WjfVGZeocJzXjV25zEAM.roa (hash: R5/GZ5yigab2BnvLmrfCDXR0klk9Au0FN2fkvOAY+V4=)
2: ss0DX6sYpLeCYURWP2DniYpO8PE.crl (hash: lYu0IlYtbVTDCV3TRFh6nT/1GhHHkovQQpIO+tfB9xQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:63:59:5b:ad:0f:6a:8c:50:2d:05:19:0b:46:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Validity
Not Before: Feb 17 03:00:14 2025 GMT
Not After : Feb 18 03:00:14 2025 GMT
Subject: CN=91bca69722243a3bd839c82c6fd335020f8e64a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0a:85:a8:4d:95:ac:02:75:7a:4e:e8:33:28:
d3:99:10:bb:da:5c:b2:a7:d2:bd:88:fc:c4:96:01:
c4:c8:7e:77:58:be:a8:fd:c1:61:57:c2:2c:80:49:
28:e3:d8:7b:a1:93:0d:03:e6:2e:7a:9a:95:85:69:
c7:70:ef:4e:b0:fb:11:73:14:92:f6:0a:c4:75:60:
74:ad:ef:09:7b:70:4a:ce:70:76:62:1a:ef:ca:62:
c8:e2:a1:74:4b:a2:0c:99:02:fb:3e:0f:3d:80:fb:
8f:a1:a4:8a:6e:aa:cf:5d:57:7a:42:e1:66:72:5d:
bc:59:fc:ce:89:18:52:48:05:08:6b:75:c4:e9:85:
25:2d:8d:b5:25:d0:da:d1:c6:bf:20:b9:c8:4f:0b:
5e:5a:f1:63:67:0e:19:f6:b2:7d:32:29:c7:1e:f4:
91:d4:6e:ab:14:bd:d4:b5:2e:6c:7e:4c:b3:2d:93:
48:b6:46:2a:b7:38:e7:0d:7d:e5:1b:cd:5e:d2:82:
30:b0:75:1b:fc:b9:86:06:98:ca:f7:72:1c:1d:75:
2d:8c:15:cc:18:20:06:18:c9:5b:77:65:d6:0a:6d:
7e:16:3c:81:29:09:d1:0e:69:e4:fa:56:ca:b7:34:
80:31:03:9d:fd:95:bc:94:1a:74:4e:5b:34:87:a1:
bd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:BC:A6:97:22:24:3A:3B:D8:39:C8:2C:6F:D3:35:02:0F:8E:64:A5
X509v3 Authority Key Identifier:
keyid:B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:01:df:30:80:58:0f:c1:ed:a8:65:53:b3:44:e3:0c:e6:c8:
a7:03:40:ac:e4:0f:0d:35:5a:f1:4a:0d:ca:37:1a:2d:4a:6b:
e6:83:75:72:25:f9:da:16:eb:61:e3:63:02:40:82:e8:db:cd:
9c:79:fd:87:fd:ca:36:d3:1b:41:d6:1b:31:6d:0f:6c:3f:7d:
3c:b7:2e:80:b0:fd:75:f5:02:f0:20:e5:86:b3:09:a3:87:9b:
0c:13:61:27:c1:78:ce:7f:60:c4:08:4a:e4:e3:be:cf:d1:93:
34:64:94:b0:53:9e:43:1b:ad:7f:8c:90:37:42:f9:c9:c7:dc:
89:0e:7d:6e:60:5f:e0:82:e3:d0:67:cd:1e:1c:f3:e3:bf:7d:
2f:f8:46:b7:80:aa:ab:4b:33:4a:bf:c2:a4:23:74:c5:6c:c4:
3e:52:eb:d3:68:7e:ce:08:83:65:90:3d:26:75:8d:b2:f2:7c:
bb:19:c0:e3:69:ca:47:70:bf:0b:db:1b:15:e6:50:75:cf:1c:
37:8d:f4:e6:9d:ff:c5:f1:13:f3:12:81:6b:6f:2c:15:1e:21:
12:d3:2f:36:23:f6:21:82:83:b5:7e:85:d4:3d:de:07:fd:52:
ad:23:eb:47:0c:49:4a:e0:f4:e8:0a:d4:09:7f:c3:0d:7d:58:
0f:d1:1a:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUR2WNZW60PaoxQLQUZC0ZRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyY2QwMzVmYWIxOGE0Yjc4MjYxNDQ1NjNmNjBlNzg5OGE0
ZWYwZjEwHhcNMjUwMjE3MDMwMDE0WhcNMjUwMjE4MDMwMDE0WjAzMTEwLwYDVQQD
Eyg5MWJjYTY5NzIyMjQzYTNiZDgzOWM4MmM2ZmQzMzUwMjBmOGU2NGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3QqFqE2VrAJ1ek7oMyjTmRC72lyy
p9K9iPzElgHEyH53WL6o/cFhV8IsgEko49h7oZMNA+YuepqVhWnHcO9OsPsRcxSS
9grEdWB0re8Je3BKznB2YhrvymLI4qF0S6IMmQL7Pg89gPuPoaSKbqrPXVd6QuFm
cl28WfzOiRhSSAUIa3XE6YUlLY21JdDa0ca/ILnITwteWvFjZw4Z9rJ9MinHHvSR
1G6rFL3UtS5sfkyzLZNItkYqtzjnDX3lG81e0oIwsHUb/LmGBpjK93IcHXUtjBXM
GCAGGMlbd2XWCm1+FjyBKQnRDmnk+lbKtzSAMQOd/ZW8lBp0Tls0h6G9FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJG8ppciJDo72DnILG/TNQIPjmSlMB8GA1UdIwQY
MBaAFLLNA1+rGKS3gmFEVj9g54mKTvDxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3MwRFg2c1lwTGVDWVVSV1AyRG5pWXBPOFBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zMzE1NGItMjk0MS00ZjcwLTgxMzMt
ZDQ4NDUwNTIxZGQ5LzEvc3MwRFg2c1lwTGVDWVVSV1AyRG5pWXBPOFBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8zMzE1NGItMjk0MS00ZjcwLTgxMzMtZDQ4NDUwNTIxZGQ5
LzEvc3MwRFg2c1lwTGVDWVVSV1AyRG5pWXBPOFBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlQHfMIBY
D8HtqGVTs0TjDObIpwNArOQPDTVa8UoNyjcaLUpr5oN1ciX52hbrYeNjAkCC6NvN
nHn9h/3KNtMbQdYbMW0PbD99PLcugLD9dfUC8CDlhrMJo4ebDBNhJ8F4zn9gxAhK
5OO+z9GTNGSUsFOeQxutf4yQN0L5ycfciQ59bmBf4ILj0GfNHhzz4799L/hGt4Cq
q0szSr/CpCN0xWzEPlLr02h+zgiDZZA9JnWNsvJ8uxnA42nKR3C/C9sbFeZQdc8c
N4305p3/xfET8xKBa28sFR4hEtMvNiP2IYKDtX6F1D3eB/1SrSPrRwxJSuD06ArU
CX/DDX1YD9Ea1w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:21 2025 by rpki-client