Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: oVORT+VfAqyxhOVzeoAF9J5QgU0DPTwRqDmKSuBE92w=
Subject key identifier: C1:BD:C2:15:7A:85:3F:45:11:4A:8E:EB:36:E4:1E:B3:C0:B7:2B:EF
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 01951247870E084716A571E8422378B43C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 1458
Signing time: Mon 17 Feb 2025 05:00:32 +0000
Manifest this update: Mon 17 Feb 2025 05:00:32 +0000
Manifest next update: Tue 18 Feb 2025 05:00:32 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: D2UsJDZordsQ9Marp534V/DZ65v3UykFBnReilBKoG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:87:0e:08:47:16:a5:71:e8:42:23:78:b4:3c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Feb 17 05:00:32 2025 GMT
Not After : Feb 18 05:00:32 2025 GMT
Subject: CN=c1bdc2157a853f45114a8eeb36e41eb3c0b72bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f4:64:82:8b:0f:15:cd:61:76:cd:41:ee:0c:
e9:bf:b5:4e:9e:da:94:2a:db:3f:b6:b9:eb:95:fd:
fc:ea:ce:2f:a9:a1:f4:4e:46:81:d8:a6:e8:6b:2f:
6e:82:8e:d8:9c:46:29:54:de:e0:db:f9:08:75:42:
3f:1b:2e:1f:b5:54:59:1f:d9:ef:ca:06:2d:62:ff:
18:b9:6a:23:82:f9:5f:b4:7b:9c:02:f1:db:1c:7c:
54:76:f3:a0:4a:2c:dd:7f:7a:8c:7c:4a:16:af:ec:
44:b0:7c:50:e0:6d:07:14:88:bc:8c:fb:93:5a:84:
28:34:e8:c9:c8:8b:5e:fb:f0:49:3b:a8:35:4c:6a:
3e:43:02:41:81:3c:34:8f:bc:fa:10:13:ee:ac:0d:
73:46:d0:c8:21:8f:d5:79:a7:75:2d:c3:59:3b:64:
88:60:4f:67:34:ca:3e:d7:06:d5:e7:e7:f4:ab:fb:
e5:eb:5f:5e:c2:b3:1c:42:16:c5:b1:d2:51:2c:cf:
df:a2:ab:aa:d9:65:c7:2b:a4:54:69:04:f6:01:a3:
24:78:a0:c7:84:63:c6:a0:df:fd:f2:db:1d:b7:c5:
83:2a:ec:94:17:d1:5e:2c:75:02:1c:07:0b:98:5c:
65:58:26:00:1c:8f:76:58:0f:2d:83:16:ac:80:57:
19:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BD:C2:15:7A:85:3F:45:11:4A:8E:EB:36:E4:1E:B3:C0:B7:2B:EF
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:50:e1:0c:76:12:6c:e6:43:7d:77:60:02:f9:44:b3:d5:34:
0f:64:dc:52:e0:05:56:0d:5a:9b:f0:a1:cd:c3:1c:74:7c:21:
ba:a5:a1:e0:c8:13:7b:0c:11:b9:e4:6c:88:12:9c:d1:3a:76:
a4:d1:06:70:3b:3e:cc:65:02:08:20:d8:8c:5b:3e:52:36:02:
b3:41:76:2e:45:ce:07:e7:46:d8:e6:b0:41:57:fc:1e:19:82:
88:12:5c:41:d3:46:e6:87:5a:59:32:7b:b7:95:a1:68:18:5e:
2b:cc:a9:6e:4a:4a:09:aa:33:58:ad:66:ae:0a:e0:68:39:a1:
1a:bb:59:35:d1:e6:14:68:9d:38:49:c5:ba:fc:83:91:7f:5a:
55:98:b8:dd:bc:fd:75:23:c6:76:b2:51:16:be:ad:e6:31:61:
9d:b8:89:11:cc:52:a5:2b:11:dd:68:a0:a8:d4:ed:f5:00:d9:
97:49:b6:09:83:5e:71:cf:a1:13:7f:f2:6b:ff:7e:cd:18:02:
36:8a:e0:fe:90:9c:d5:3a:4c:b1:01:c5:0d:06:f1:8a:62:dd:
bf:7a:7a:2d:15:b3:0e:cb:c0:3e:45:4b:e3:1b:63:f2:60:06:
36:68:ce:4e:96:87:57:f6:15:de:1e:68:f9:93:be:f8:35:d5:
5b:2e:6a:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSR4cOCEcWpXHoQiN4tDwdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNGQ0YTNiNzQ3ZmNhNzAxMDNiMTdmM2RiZGM1MDQ1Y2Fj
ZTMyZGYwHhcNMjUwMjE3MDUwMDMyWhcNMjUwMjE4MDUwMDMyWjAzMTEwLwYDVQQD
EyhjMWJkYzIxNTdhODUzZjQ1MTE0YThlZWIzNmU0MWViM2MwYjcyYmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvRkgosPFc1hds1B7gzpv7VOntqU
Kts/trnrlf386s4vqaH0TkaB2Kboay9ugo7YnEYpVN7g2/kIdUI/Gy4ftVRZH9nv
ygYtYv8YuWojgvlftHucAvHbHHxUdvOgSizdf3qMfEoWr+xEsHxQ4G0HFIi8jPuT
WoQoNOjJyIte+/BJO6g1TGo+QwJBgTw0j7z6EBPurA1zRtDIIY/Vead1LcNZO2SI
YE9nNMo+1wbV5+f0q/vl619ewrMcQhbFsdJRLM/foquq2WXHK6RUaQT2AaMkeKDH
hGPGoN/98tsdt8WDKuyUF9FeLHUCHAcLmFxlWCYAHI92WA8tgxasgFcZ/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMG9whV6hT9FEUqO6zbkHrPAtyvvMB8GA1UdIwQY
MBaAFNNNSjt0f8pwEDsX89vcUEXKzjLfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDIt
NDM3OTM0YzU4NDUzLzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDItNDM3OTM0YzU4NDUz
LzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADlDhDHYS
bOZDfXdgAvlEs9U0D2TcUuAFVg1am/ChzcMcdHwhuqWh4MgTewwRueRsiBKc0Tp2
pNEGcDs+zGUCCCDYjFs+UjYCs0F2LkXOB+dG2OawQVf8HhmCiBJcQdNG5odaWTJ7
t5WhaBheK8ypbkpKCaozWK1mrgrgaDmhGrtZNdHmFGidOEnFuvyDkX9aVZi43bz9
dSPGdrJRFr6t5jFhnbiJEcxSpSsR3WigqNTt9QDZl0m2CYNecc+hE3/ya/9+zRgC
Norg/pCc1TpMsQHFDQbximLdv3p6LRWzDsvAPkVL4xtj8mAGNmjOTpaHV/YV3h5o
+ZO++DXVWy5qjA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:22 2025 by rpki-client