Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
File: 0kvL9emk_kMp8iPBFFBykFOPnMI.mft (raw, json)
Hash identifier: 4I4DZV96+zsmyIe5eYXvZ0miZn2a25nZ6sPsMjmAQEw=
Subject key identifier: FF:73:D0:AE:D7:E7:9E:41:56:48:F7:50:2F:AC:FF:59:F8:B3:AC:D6
Authority key identifier: D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
Certificate issuer: /CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Certificate serial: 019510C737F38BEBEBC1F16E155DA062E030
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
Manifest number: 0FA1
Signing time: Sun 16 Feb 2025 22:00:46 +0000
Manifest this update: Sun 16 Feb 2025 22:00:46 +0000
Manifest next update: Mon 17 Feb 2025 22:00:46 +0000
Files and hashes: 1: 0kvL9emk_kMp8iPBFFBykFOPnMI.crl (hash: 7r2YR4yjxfeO3ZbQoe0jW0m8QymBTXPQvWL2xkKZM8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:37:f3:8b:eb:eb:c1:f1:6e:15:5d:a0:62:e0:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Validity
Not Before: Feb 16 22:00:46 2025 GMT
Not After : Feb 17 22:00:46 2025 GMT
Subject: CN=ff73d0aed7e79e415648f7502facff59f8b3acd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e8:c0:cd:2e:34:41:35:f3:9c:05:3c:a5:6a:
fa:8d:0a:06:b3:0b:b3:59:4b:f0:1e:32:79:12:48:
f0:f9:b3:ec:27:e2:94:bc:4a:4f:e4:a8:51:1a:7e:
1f:b5:a8:89:43:f6:b8:ce:35:bd:53:8d:b6:7e:2f:
ef:97:8c:2e:6b:c9:1c:63:c6:3c:6d:dd:87:0f:c1:
c6:e3:38:aa:e5:cd:37:91:26:0f:36:4e:14:bd:a2:
b2:df:88:3e:e5:5e:7d:9f:79:ea:ac:a8:31:13:1c:
14:0a:67:95:37:c0:00:b7:fa:6b:0c:25:e2:77:56:
27:ec:47:c8:79:e0:d0:75:18:ee:89:21:77:ea:14:
74:81:1e:66:57:89:e4:48:93:cd:24:b8:1b:65:96:
80:3d:dc:12:f7:86:ad:6b:e1:92:e9:47:07:1f:f3:
84:d2:4e:aa:0d:97:ae:b9:63:87:f9:c1:34:3a:39:
88:f0:46:4d:27:28:04:21:3b:71:be:3e:54:1d:dc:
5e:63:79:c5:b6:3c:be:3c:81:7c:08:d3:51:d3:20:
58:26:9c:77:38:ea:cb:76:83:0d:ad:8d:81:8f:38:
41:c8:b7:a9:cf:7e:ec:e5:ad:8c:d0:31:e7:a6:24:
81:f0:84:d2:f9:40:91:56:47:ab:ed:31:58:6f:ca:
a8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:73:D0:AE:D7:E7:9E:41:56:48:F7:50:2F:AC:FF:59:F8:B3:AC:D6
X509v3 Authority Key Identifier:
keyid:D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:2a:ed:30:30:4c:91:95:33:2e:14:45:92:08:24:7b:8a:f5:
30:00:67:9f:20:92:e5:24:15:dc:6a:57:7c:2c:8c:bd:21:66:
43:da:ae:eb:0c:3a:32:70:e0:05:f6:98:d3:56:77:b8:5e:47:
10:51:cf:11:56:87:98:65:29:9e:e6:6b:df:da:74:ef:92:13:
c2:9e:79:0f:52:dc:d6:c6:f0:66:e9:45:b4:ee:54:a3:4b:f0:
d4:95:0a:5e:3f:2e:4a:76:39:34:22:aa:08:07:b6:dd:58:d4:
96:a2:e9:8f:c8:15:eb:27:36:94:3e:e7:f1:d9:af:13:13:77:
9f:ed:af:15:38:1a:32:38:4a:e8:7c:cd:7b:03:e7:54:f7:f7:
3f:f3:ae:1d:aa:54:6d:83:b2:ad:1d:5f:fc:a6:14:7c:97:cc:
91:9e:54:fd:1c:af:a9:eb:75:24:c4:43:09:63:dd:18:bd:df:
df:52:a0:f4:a6:db:ae:01:b5:36:3e:be:28:20:ce:a4:f2:ee:
70:35:7a:1f:20:3f:52:2d:e7:53:02:fe:c0:80:60:1a:a5:db:
0d:0e:04:36:01:aa:f7:b0:64:53:08:c9:9c:5e:ab:04:56:41:
9b:16:18:ae:cf:c7:1f:14:a4:df:39:de:0e:7f:47:38:42:fa:
a6:8f:53:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQxzfzi+vrwfFuFV2gYuAwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNGJjYmY1ZTlhNGZlNDMyOWYyMjNjMTE0NTA3MjkwNTM4
ZjljYzIwHhcNMjUwMjE2MjIwMDQ2WhcNMjUwMjE3MjIwMDQ2WjAzMTEwLwYDVQQD
EyhmZjczZDBhZWQ3ZTc5ZTQxNTY0OGY3NTAyZmFjZmY1OWY4YjNhY2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmejAzS40QTXznAU8pWr6jQoGswuz
WUvwHjJ5Ekjw+bPsJ+KUvEpP5KhRGn4ftaiJQ/a4zjW9U422fi/vl4wua8kcY8Y8
bd2HD8HG4ziq5c03kSYPNk4UvaKy34g+5V59n3nqrKgxExwUCmeVN8AAt/prDCXi
d1Yn7EfIeeDQdRjuiSF36hR0gR5mV4nkSJPNJLgbZZaAPdwS94ata+GS6UcHH/OE
0k6qDZeuuWOH+cE0OjmI8EZNJygEITtxvj5UHdxeY3nFtjy+PIF8CNNR0yBYJpx3
OOrLdoMNrY2BjzhByLepz37s5a2M0DHnpiSB8ITS+UCRVker7TFYb8qo7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP9z0K7X555BVkj3UC+s/1n4s6zWMB8GA1UdIwQY
MBaAFNJLy/XppP5DKfIjwRRQcpBTj5zCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9iYzQxYTQtZmM5MS00OTZmLWEyMjUt
MmU2ZTVlNWY1ZDliLzEvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9iYzQxYTQtZmM5MS00OTZmLWEyMjUtMmU2ZTVlNWY1ZDli
LzEvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApSrtMDBM
kZUzLhRFkggke4r1MABnnyCS5SQV3GpXfCyMvSFmQ9qu6ww6MnDgBfaY01Z3uF5H
EFHPEVaHmGUpnuZr39p075ITwp55D1Lc1sbwZulFtO5Uo0vw1JUKXj8uSnY5NCKq
CAe23VjUlqLpj8gV6yc2lD7n8dmvExN3n+2vFTgaMjhK6HzNewPnVPf3P/OuHapU
bYOyrR1f/KYUfJfMkZ5U/Ryvqet1JMRDCWPdGL3f31Kg9KbbrgG1Nj6+KCDOpPLu
cDV6HyA/Ui3nUwL+wIBgGqXbDQ4ENgGq97BkUwjJnF6rBFZBmxYYrs/HHxSk3zne
Dn9HOEL6po9TgQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:46 2025 by rpki-client