Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
File: kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json)
Hash identifier: ygrVfmyOuHALuKSDlep3DrhyBOqTnt9HhQ7ugnSVx/s=
Subject key identifier: 0E:A7:F1:7D:0E:4D:7F:F1:26:2F:5F:91:48:56:A5:A2:D0:A9:6C:2A
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 01950F46266B79DA2B2EC2D9363CC634B1E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
Manifest number: 0849
Signing time: Sun 16 Feb 2025 15:00:10 +0000
Manifest this update: Sun 16 Feb 2025 15:00:10 +0000
Manifest next update: Mon 17 Feb 2025 15:00:10 +0000
Files and hashes: 1: REM4mLJG7EnsBgBtsv162D0wKhg.roa (hash: lvlcTJIeXHpqeTqGfZTwiMwS8+bWAY5YDqELcR5epC0=)
2: Tkqht9ZvM7aeuWPx5RB29sIJQsY.roa (hash: GjW60rpkATBwTZcA2wdYPAVMSlJOCTBR0jsl1OrgYgE=)
3: XddNSlbeSdL2BDOBSBtXKwmbrLQ.roa (hash: YTwv2DMMu/UpDiaZkqxeVtYaDul2+Oka8KEh6z36NkA=)
4: b10-uyzSDsE84X1NxkfqXsdCqjM.roa (hash: 656/1JM/Gtv27/XvapYOtDJ81ebQFKIEF9n9ARvTwoo=)
5: bXzPu6L2HXchD9ZujQmLXPM_bDM.roa (hash: KqR406WMI/nRws1aNrGcGP+z2vKLl1H8bxnYaFt2+LA=)
6: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: r8tteV7UUvKhly24zdBBfDoFskTDrF1w0nd3d7NAdZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0f:46:26:6b:79:da:2b:2e:c2:d9:36:3c:c6:34:b1:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Feb 16 15:00:10 2025 GMT
Not After : Feb 17 15:00:10 2025 GMT
Subject: CN=0ea7f17d0e4d7ff1262f5f914856a5a2d0a96c2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a2:4b:cd:67:82:24:b6:a0:01:6e:80:c2:31:
ec:26:72:6a:2a:ff:4b:1f:5a:d7:16:e6:f8:2e:d6:
08:f4:fe:08:7c:c9:b3:27:51:dc:64:4c:8e:15:1c:
ef:82:37:f6:72:59:2a:95:a4:73:bd:43:44:96:91:
9c:42:a7:9a:bf:2d:b3:be:ed:e7:03:9e:9a:f8:b7:
2a:14:70:2c:c9:bc:16:80:2c:cb:ba:a0:a8:38:b4:
df:65:0c:17:81:14:fc:be:38:ad:26:31:27:60:e2:
22:6d:15:19:1e:7b:12:ca:9c:9e:e0:82:be:1c:1c:
68:48:6b:67:47:48:a8:c6:90:12:56:61:c8:6b:7d:
86:ed:40:bc:05:54:35:44:f6:29:22:f6:12:ef:f4:
4c:2d:62:71:fe:32:8b:87:86:bf:52:43:dc:01:77:
10:00:c4:b3:ba:36:7c:49:cd:52:c5:bc:3c:8a:4e:
05:c3:3f:9c:7a:ae:e1:29:95:c8:e9:e9:0f:b9:2c:
8c:17:58:5e:87:e4:8a:fc:69:fc:a4:7f:01:19:41:
32:94:32:a1:47:b2:c3:80:b3:19:23:58:ea:91:2a:
0e:d8:38:f4:f9:8c:75:83:f2:40:9e:f8:da:fe:21:
38:7d:d7:05:da:00:fd:46:5b:13:ed:b0:ad:53:a5:
be:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A7:F1:7D:0E:4D:7F:F1:26:2F:5F:91:48:56:A5:A2:D0:A9:6C:2A
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:d7:5c:0d:eb:8e:07:ed:57:94:03:7b:26:b6:4c:90:4d:ab:
f9:fa:7a:78:fb:eb:ec:d6:54:8e:9f:57:15:fc:1f:c7:9b:22:
18:e3:59:27:42:24:fd:1f:a5:3a:cc:9a:12:61:76:53:eb:20:
65:d9:3e:32:b3:f8:d1:a0:b4:f8:4a:6c:63:fa:79:49:57:18:
d3:e5:7b:34:be:53:70:a8:03:36:1d:b5:00:d7:9b:2c:a8:aa:
fc:67:aa:a2:72:29:5f:35:68:11:e2:ab:40:05:93:5d:72:7d:
a8:5a:80:c0:d2:5c:a1:b9:49:4f:bf:24:1c:2d:c5:df:a3:f3:
a1:16:b2:b9:aa:af:b3:c1:33:ac:88:72:99:f0:1d:9f:49:31:
f9:44:dc:fe:fc:dd:c9:6e:51:d6:64:b7:26:8c:c5:ae:d3:79:
54:08:76:4e:b9:3f:0d:fa:c8:89:57:75:42:15:b4:10:6d:f3:
af:af:9c:52:3b:ae:8c:af:77:b1:41:71:ae:9d:40:a1:55:6d:
3e:4d:32:95:85:06:2c:bb:54:29:1d:3f:9c:77:d7:cf:9a:0b:
c0:8e:23:d2:e3:0d:0c:16:26:5e:37:a4:3f:e5:4d:b6:a8:d7:
f4:a7:01:c9:7b:2e:2f:29:98:c4:d0:54:9f:3b:ab:28:ad:6d:
e8:46:e8:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUPRiZredorLsLZNjzGNLHkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMzgxYmM5NjlkZTZhZGMzZDFkZGMwZWI4OWJkZWVhY2U5
ODA1Y2QwHhcNMjUwMjE2MTUwMDEwWhcNMjUwMjE3MTUwMDEwWjAzMTEwLwYDVQQD
EygwZWE3ZjE3ZDBlNGQ3ZmYxMjYyZjVmOTE0ODU2YTVhMmQwYTk2YzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjKJLzWeCJLagAW6AwjHsJnJqKv9L
H1rXFub4LtYI9P4IfMmzJ1HcZEyOFRzvgjf2clkqlaRzvUNElpGcQqeavy2zvu3n
A56a+LcqFHAsybwWgCzLuqCoOLTfZQwXgRT8vjitJjEnYOIibRUZHnsSypye4IK+
HBxoSGtnR0ioxpASVmHIa32G7UC8BVQ1RPYpIvYS7/RMLWJx/jKLh4a/UkPcAXcQ
AMSzujZ8Sc1Sxbw8ik4Fwz+ceq7hKZXI6ekPuSyMF1heh+SK/Gn8pH8BGUEylDKh
R7LDgLMZI1jqkSoO2Dj0+Yx1g/JAnvja/iE4fdcF2gD9RlsT7bCtU6W+0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA6n8X0OTX/xJi9fkUhWpaLQqWwqMB8GA1UdIwQY
MBaAFJE4G8lp3mrcPR3cDrib3urOmAXNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mMzU0MDYtZDhjNC00ZjVjLTkyYWMt
MjU2ZGE5NWQxMzQ1LzEva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9mMzU0MDYtZDhjNC00ZjVjLTkyYWMtMjU2ZGE5NWQxMzQ1
LzEva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa9dcDeuO
B+1XlAN7JrZMkE2r+fp6ePvr7NZUjp9XFfwfx5siGONZJ0Ik/R+lOsyaEmF2U+sg
Zdk+MrP40aC0+EpsY/p5SVcY0+V7NL5TcKgDNh21ANebLKiq/GeqonIpXzVoEeKr
QAWTXXJ9qFqAwNJcoblJT78kHC3F36PzoRayuaqvs8EzrIhymfAdn0kx+UTc/vzd
yW5R1mS3JozFrtN5VAh2Trk/DfrIiVd1QhW0EG3zr6+cUjuujK93sUFxrp1AoVVt
Pk0ylYUGLLtUKR0/nHfXz5oLwI4j0uMNDBYmXjekP+VNtqjX9KcByXsuLymYxNBU
nzurKK1t6EboGQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:49 2025 by rpki-client