Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
File: ttaENqdjOfZxRBz71QrUAdPAD_8.mft (raw, json)
Hash identifier: aD+WBoFD5DZy3PkEzDqfu0qr4tCwmmlo1tYCKf5M/QM=
Subject key identifier: 3A:E3:4F:3F:F4:B4:64:2F:CD:7C:39:7B:A7:88:44:A5:1E:9B:3D:6E
Authority key identifier: B6:D6:84:36:A7:63:39:F6:71:44:1C:FB:D5:0A:D4:01:D3:C0:0F:FF
Certificate issuer: /CN=b6d68436a76339f671441cfbd50ad401d3c00fff
Certificate serial: 0194C463928E8C26D6A5FE9F4A04370277B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
Manifest number: 1199
Signing time: Sun 02 Feb 2025 02:00:47 +0000
Manifest this update: Sun 02 Feb 2025 02:00:47 +0000
Manifest next update: Mon 03 Feb 2025 02:00:47 +0000
Files and hashes: 1: HROKUTUR5gMY3n6zglHSVCbZS_I.roa (hash: w0BOZ7icboJC4/TfINzPR6MRHeR0gZCuXliuxuy25YQ=)
2: ttaENqdjOfZxRBz71QrUAdPAD_8.crl (hash: 1QNBgT3fL+XrQHL9mXYkJ+OsBYcIREbY+c7wLdEDZVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:92:8e:8c:26:d6:a5:fe:9f:4a:04:37:02:77:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d68436a76339f671441cfbd50ad401d3c00fff
Validity
Not Before: Feb 2 02:00:47 2025 GMT
Not After : Feb 3 02:00:47 2025 GMT
Subject: CN=3ae34f3ff4b4642fcd7c397ba78844a51e9b3d6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:88:52:f9:c1:b5:54:e1:8e:e2:ee:ba:1a:44:
b4:c3:5e:ee:a5:67:78:30:ee:64:cf:e3:1b:06:18:
69:45:b6:8e:98:f9:20:57:16:ac:7b:c0:55:95:8e:
d7:eb:99:21:29:59:f6:df:60:e1:99:78:1a:26:a8:
9e:f1:81:f4:36:fa:b3:a9:ff:cc:3a:61:b4:71:e2:
9e:f5:1c:a3:e5:64:26:6b:ec:f3:10:e0:80:9e:b2:
9a:cf:36:e5:97:9f:2f:1a:95:d3:3d:6d:a0:2d:7f:
98:3a:d8:98:61:ed:73:89:2f:70:0e:3c:74:52:68:
f9:44:7d:6a:85:6f:49:4d:83:22:a2:c2:07:13:8d:
b3:b5:d4:68:16:9b:9b:5d:4b:dc:ee:61:b1:62:31:
03:47:8e:b7:69:9b:61:12:67:db:43:56:19:ae:f5:
2e:08:31:bd:f6:6c:c4:30:93:97:85:e8:ea:d8:e9:
72:3c:4c:ba:19:c9:b4:65:3d:52:62:13:d4:23:73:
2c:ac:16:5e:b7:e6:ac:8a:7b:22:1d:1c:b6:60:91:
52:65:29:b4:e6:a0:db:0d:84:34:29:39:f1:23:b7:
0a:7c:f9:f3:ec:ec:4c:bf:9f:98:cb:71:ea:c8:bd:
c3:6c:a9:7b:53:d5:8a:6f:7e:a4:f8:1e:82:76:f0:
e0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E3:4F:3F:F4:B4:64:2F:CD:7C:39:7B:A7:88:44:A5:1E:9B:3D:6E
X509v3 Authority Key Identifier:
keyid:B6:D6:84:36:A7:63:39:F6:71:44:1C:FB:D5:0A:D4:01:D3:C0:0F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:8d:a2:88:ca:51:f6:da:8e:a8:da:e7:2b:8a:0f:e5:8c:3b:
7d:a4:98:aa:6c:22:3c:58:bc:f8:75:23:b6:cd:29:1c:a4:75:
c6:b1:33:51:94:5f:29:ec:a3:30:8a:4c:be:f0:70:6f:b7:7f:
95:42:d6:b2:e6:53:4c:d3:7e:c9:be:9d:10:31:b7:e9:76:a1:
08:39:53:fc:0b:4e:4e:15:dd:3a:b1:3a:14:f4:66:c6:4a:d6:
bb:50:a3:ae:53:63:e7:df:a6:11:db:d2:94:1b:f4:ec:1f:a3:
88:ed:5b:92:49:cf:21:7a:e8:40:ac:91:72:dd:c4:60:6f:39:
7a:eb:b2:0e:b1:bf:db:1e:5d:c8:b9:fd:01:72:95:98:7a:a1:
5f:e6:29:3c:b1:d4:82:aa:b2:9f:8c:56:70:f5:fc:7b:c4:f7:
8e:fe:51:4e:4b:d7:cc:b6:1e:89:9b:08:24:d2:f1:8a:c4:3e:
80:8d:87:47:6f:d3:04:c2:35:0c:bf:a2:33:96:8d:1c:67:ca:
a4:5d:26:c4:6f:7b:fa:b4:94:7c:cf:ec:c3:f5:09:ef:a0:29:
e2:c6:37:14:a2:c2:40:da:6a:43:e8:96:cb:4e:80:de:57:02:
73:46:82:30:c9:0c:86:34:cf:71:2d:6f:32:dd:bd:b0:11:b0:
4b:8d:ba:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTEY5KOjCbWpf6fSgQ3AnewMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2ZDY4NDM2YTc2MzM5ZjY3MTQ0MWNmYmQ1MGFkNDAxZDNj
MDBmZmYwHhcNMjUwMjAyMDIwMDQ3WhcNMjUwMjAzMDIwMDQ3WjAzMTEwLwYDVQQD
EygzYWUzNGYzZmY0YjQ2NDJmY2Q3YzM5N2JhNzg4NDRhNTFlOWIzZDZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4hS+cG1VOGO4u66GkS0w17upWd4
MO5kz+MbBhhpRbaOmPkgVxase8BVlY7X65khKVn232DhmXgaJqie8YH0Nvqzqf/M
OmG0ceKe9Ryj5WQma+zzEOCAnrKazzbll58vGpXTPW2gLX+YOtiYYe1ziS9wDjx0
Umj5RH1qhW9JTYMiosIHE42ztdRoFpubXUvc7mGxYjEDR463aZthEmfbQ1YZrvUu
CDG99mzEMJOXhejq2OlyPEy6Gcm0ZT1SYhPUI3MsrBZet+asinsiHRy2YJFSZSm0
5qDbDYQ0KTnxI7cKfPnz7OxMv5+Yy3HqyL3DbKl7U9WKb36k+B6CdvDg0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDrjTz/0tGQvzXw5e6eIRKUemz1uMB8GA1UdIwQY
MBaAFLbWhDanYzn2cUQc+9UK1AHTwA//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHRhRU5xZGpPZlp4UkJ6NzFRclVBZFBBRF84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS84NGE1ZGQtNWNmMi00ODU3LWJkOTMt
M2M3MTFhMTVmYTVjLzEvdHRhRU5xZGpPZlp4UkJ6NzFRclVBZFBBRF84Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS84NGE1ZGQtNWNmMi00ODU3LWJkOTMtM2M3MTFhMTVmYTVj
LzEvdHRhRU5xZGpPZlp4UkJ6NzFRclVBZFBBRF84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN42iiMpR
9tqOqNrnK4oP5Yw7faSYqmwiPFi8+HUjts0pHKR1xrEzUZRfKeyjMIpMvvBwb7d/
lULWsuZTTNN+yb6dEDG36XahCDlT/AtOThXdOrE6FPRmxkrWu1CjrlNj59+mEdvS
lBv07B+jiO1bkknPIXroQKyRct3EYG85euuyDrG/2x5dyLn9AXKVmHqhX+YpPLHU
gqqyn4xWcPX8e8T3jv5RTkvXzLYeiZsIJNLxisQ+gI2HR2/TBMI1DL+iM5aNHGfK
pF0mxG97+rSUfM/sw/UJ76Ap4sY3FKLCQNpqQ+iWy06A3lcCc0aCMMkMhjTPcS1v
Mt29sBGwS426wg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:50 2025 by rpki-client