Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
File: iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft (raw, json)
Hash identifier: BkVW7wFX7fRosN+uw2GASj8FSGMBoYJnjQj9n7OEyBE=
Subject key identifier: 34:DC:23:71:EC:7B:66:F8:BE:E9:A8:BE:45:32:CB:CC:E9:6E:1C:22
Authority key identifier: 88:E8:82:BF:96:4F:70:92:C4:3C:DC:F7:55:0D:E9:56:2C:26:A0:28
Certificate issuer: /CN=88e882bf964f7092c43cdcf7550de9562c26a028
Certificate serial: 0194C3BE62865ADAE47D26BA84EEA556B864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
Manifest number: 7E
Signing time: Sat 01 Feb 2025 23:00:21 +0000
Manifest this update: Sat 01 Feb 2025 23:00:21 +0000
Manifest next update: Sun 02 Feb 2025 23:00:21 +0000
Files and hashes: 1: UZVUY94sqKLEh0icWoOQh0bntwI.roa (hash: vpvG9SY3H1VjvlXeI35sSNyZFm3fdFFooAVPM0TU2c0=)
2: iOiCv5ZPcJLEPNz3VQ3pViwmoCg.crl (hash: pXzqTzaUV6LPCasoHmUfWTrlRBbJc6H96rx5zQcSS5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:62:86:5a:da:e4:7d:26:ba:84:ee:a5:56:b8:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e882bf964f7092c43cdcf7550de9562c26a028
Validity
Not Before: Feb 1 23:00:21 2025 GMT
Not After : Feb 2 23:00:21 2025 GMT
Subject: CN=34dc2371ec7b66f8bee9a8be4532cbcce96e1c22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:35:53:70:15:d3:e6:a6:cf:c3:be:10:f8:2e:
87:bd:10:e5:ef:8a:55:a1:74:1e:9b:40:95:02:67:
bb:d2:e9:97:d1:ab:98:f2:43:4b:df:5e:7c:7a:b6:
3c:2a:53:79:0d:7b:e3:92:d7:b0:92:b7:4e:f2:e4:
70:32:6e:87:ee:82:15:9c:2b:15:ff:27:7f:5b:8d:
40:52:ff:b2:fe:5d:b9:df:88:16:2f:ef:e0:b9:3e:
3d:cd:54:0c:40:e9:c3:42:61:47:69:f4:d0:54:a3:
21:18:3b:58:6f:19:bf:4b:50:97:ab:37:d8:ad:d0:
a8:72:67:e1:47:7e:58:9e:67:74:9c:0d:78:72:04:
81:07:5d:a3:c1:0b:c0:b3:bb:e2:4c:f5:e7:cb:e7:
13:a6:aa:0a:2c:3f:a3:d8:76:32:dd:74:9f:18:d2:
08:79:ec:a8:94:7e:be:4d:77:df:89:73:36:5e:cd:
3e:9a:8f:2e:a7:c5:d9:db:e0:cd:62:dc:d2:bb:98:
84:0a:55:eb:e6:0c:cc:7c:ea:b5:16:b5:b6:9a:9d:
32:de:e1:92:af:d6:b6:53:13:77:87:fe:f8:e9:e5:
10:72:99:0b:78:2f:d9:66:a7:a8:4a:fe:9f:d2:f2:
2e:0e:ab:4a:d5:5d:27:6c:4d:02:b6:a8:4f:56:e9:
e1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DC:23:71:EC:7B:66:F8:BE:E9:A8:BE:45:32:CB:CC:E9:6E:1C:22
X509v3 Authority Key Identifier:
keyid:88:E8:82:BF:96:4F:70:92:C4:3C:DC:F7:55:0D:E9:56:2C:26:A0:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:46:8f:3b:fa:cd:07:20:43:eb:76:f6:f8:d8:29:d0:30:57:
d7:f6:ab:8c:d8:ca:3a:27:e6:3a:ab:c0:35:2a:8b:8d:ba:c3:
42:fd:b6:f3:d5:38:e8:11:78:f1:c8:ac:3d:b4:80:06:66:9e:
a0:fa:f4:19:48:75:91:ba:eb:20:6d:06:af:af:18:59:c8:81:
d4:e4:45:54:73:bd:89:b9:0a:6a:26:32:77:08:97:fb:14:64:
6e:8c:54:43:9a:1d:38:43:c7:41:a6:eb:94:49:cd:e1:39:f7:
12:c5:29:53:cb:b1:87:a9:04:47:c2:ca:55:a9:83:7b:ef:fd:
57:af:f0:cc:0f:e5:2a:e6:ac:51:6d:d2:09:53:40:fe:d2:bc:
59:c8:7b:59:6a:ae:fa:e0:4b:3d:34:09:94:1c:78:96:05:88:
73:b0:43:26:4c:ac:ee:ec:81:5c:de:54:58:ca:5d:bc:96:ae:
db:14:8c:29:ce:c9:d4:2f:ae:50:55:6f:fe:cb:cf:cf:c3:64:
fd:33:28:40:fb:6e:c6:9b:bd:90:b8:cb:ad:fd:1c:e2:1c:b9:
c4:c8:b6:6f:8f:9b:77:51:f4:3d:b2:14:85:44:86:8c:6e:cd:
3b:16:49:5a:23:74:ee:fa:c0:76:18:8c:3d:7f:4d:00:fe:cc:
8d:df:83:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDvmKGWtrkfSa6hO6lVrhkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZTg4MmJmOTY0ZjcwOTJjNDNjZGNmNzU1MGRlOTU2MmMy
NmEwMjgwHhcNMjUwMjAxMjMwMDIxWhcNMjUwMjAyMjMwMDIxWjAzMTEwLwYDVQQD
EygzNGRjMjM3MWVjN2I2NmY4YmVlOWE4YmU0NTMyY2JjY2U5NmUxYzIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzVTcBXT5qbPw74Q+C6HvRDl74pV
oXQem0CVAme70umX0auY8kNL3158erY8KlN5DXvjktewkrdO8uRwMm6H7oIVnCsV
/yd/W41AUv+y/l2534gWL+/guT49zVQMQOnDQmFHafTQVKMhGDtYbxm/S1CXqzfY
rdCocmfhR35Ynmd0nA14cgSBB12jwQvAs7viTPXny+cTpqoKLD+j2HYy3XSfGNII
eeyolH6+TXffiXM2Xs0+mo8up8XZ2+DNYtzSu5iEClXr5gzMfOq1FrW2mp0y3uGS
r9a2UxN3h/746eUQcpkLeC/ZZqeoSv6f0vIuDqtK1V0nbE0CtqhPVunhMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDTcI3Hse2b4vumovkUyy8zpbhwiMB8GA1UdIwQY
MBaAFIjogr+WT3CSxDzc91UN6VYsJqAoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaU9pQ3Y1WlBjSkxFUE56M1ZRM3BWaXdtb0NnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9jYmZmOGYtMGZjYi00ODdkLTgxMTUt
ZGU3NTkwZjNmNmI4LzEvaU9pQ3Y1WlBjSkxFUE56M1ZRM3BWaXdtb0NnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9jYmZmOGYtMGZjYi00ODdkLTgxMTUtZGU3NTkwZjNmNmI4
LzEvaU9pQ3Y1WlBjSkxFUE56M1ZRM3BWaXdtb0NnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB0aPO/rN
ByBD63b2+Ngp0DBX1/arjNjKOifmOqvANSqLjbrDQv2289U46BF48cisPbSABmae
oPr0GUh1kbrrIG0Gr68YWciB1ORFVHO9ibkKaiYydwiX+xRkboxUQ5odOEPHQabr
lEnN4Tn3EsUpU8uxh6kER8LKVamDe+/9V6/wzA/lKuasUW3SCVNA/tK8Wch7WWqu
+uBLPTQJlBx4lgWIc7BDJkys7uyBXN5UWMpdvJau2xSMKc7J1C+uUFVv/svPz8Nk
/TMoQPtuxpu9kLjLrf0c4hy5xMi2b4+bd1H0PbIUhUSGjG7NOxZJWiN07vrAdhiM
PX9NAP7Mjd+DUQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:00:27 2025 by rpki-client