Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json)
Hash identifier: gUB0QdMXgQtUt9aUHsFNCJDMM8iVgp01TxgS4IJfGrw=
Subject key identifier: 9D:D7:56:2C:70:21:7B:E9:CA:18:9B:74:6A:38:B7:72:66:63:46:A8
Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Certificate serial: 0194C387FA1D73528A54C13A3B01F7197218
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
Manifest number: 7B
Signing time: Sat 01 Feb 2025 22:00:55 +0000
Manifest this update: Sat 01 Feb 2025 22:00:55 +0000
Manifest next update: Sun 02 Feb 2025 22:00:55 +0000
Files and hashes: 1: HZb4ypfyyLknrNflDGCKDQospm0.roa (hash: DJb41fbhgLGXN4Umv3DyaNZTQa8ZY7nKkJ22hR0xLS4=)
2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: U+Coy6Dr+EPbSMbKxV/SxVnNZ91Glfl8eQGJmVLzj1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:fa:1d:73:52:8a:54:c1:3a:3b:01:f7:19:72:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Validity
Not Before: Feb 1 22:00:55 2025 GMT
Not After : Feb 2 22:00:55 2025 GMT
Subject: CN=9dd7562c70217be9ca189b746a38b772666346a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2a:c3:c9:d6:cd:d5:1f:25:72:d2:db:7e:c8:
71:06:b7:11:85:2c:57:93:85:69:a4:f3:ee:89:87:
65:7a:3e:49:b2:3f:45:54:8c:47:39:78:36:87:1f:
43:9d:96:5d:6c:b3:b5:c7:25:fd:f8:85:db:15:e0:
92:36:3b:73:c6:3e:ff:76:ca:8f:c1:10:3e:30:68:
0f:dc:29:30:34:17:cc:97:2a:70:36:de:bc:3d:05:
54:2c:34:5e:9b:f4:a7:cd:05:6a:da:d9:76:77:ca:
d2:ee:d7:a9:d9:ff:95:1c:ac:64:6f:f6:01:3e:19:
ce:27:1d:2e:dc:4e:3d:27:fc:74:7c:f6:64:b5:ad:
ab:8d:b3:42:60:23:69:ee:46:3a:5b:f1:66:ac:ab:
64:d3:cb:59:c8:cb:1d:18:b2:7e:b3:00:64:ff:08:
e1:8d:52:bb:48:ec:8b:60:a1:9e:b3:b3:8a:28:c6:
60:cb:b2:f5:90:2f:43:ab:69:71:4d:94:65:e7:3c:
a0:95:62:a4:ba:4a:c6:7d:77:c9:12:fc:93:36:6c:
3f:fb:8f:ce:d3:ba:6f:24:3b:30:52:e2:c6:8f:68:
6c:1d:7f:d3:50:c4:29:6e:58:55:5e:44:77:50:fe:
48:0e:61:f1:0d:65:0c:7e:25:b2:30:5f:bf:c6:62:
a1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D7:56:2C:70:21:7B:E9:CA:18:9B:74:6A:38:B7:72:66:63:46:A8
X509v3 Authority Key Identifier:
keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:5c:38:69:92:7e:63:e0:96:ad:c2:3c:36:4e:ed:38:57:19:
4b:c1:c0:8e:c9:97:5c:b4:75:80:58:14:d6:7d:a5:8d:b2:1f:
e9:a2:5d:92:d9:31:bb:5c:79:42:c1:f3:90:15:68:bb:30:51:
cc:df:14:83:a0:1f:8e:0b:54:f2:6e:0e:4c:1e:55:ef:12:9d:
a8:aa:29:b0:de:b5:c8:0f:17:33:73:d8:d8:50:7c:31:fe:5a:
21:0e:a0:77:6b:7a:73:46:15:78:f1:d5:d0:b5:f2:b0:ee:7d:
3a:83:07:e2:bc:e0:4a:63:07:b1:74:20:cd:62:dd:9f:71:b7:
6f:b9:c6:a2:8c:fc:f3:bc:91:12:ad:70:81:3e:62:dd:61:c0:
8f:f7:f4:07:e8:fb:d0:b0:6a:df:e2:e0:7f:02:b2:e9:e1:1a:
6f:fe:c9:f4:f1:1d:0d:c7:aa:12:00:a4:8d:5e:2c:4f:a0:0f:
10:e0:08:48:50:6c:84:ec:57:08:4c:d4:6b:e7:3c:b0:2a:7f:
75:1a:f3:91:e3:11:58:91:04:bc:85:60:2f:f5:ae:0a:06:11:
11:05:c7:39:b2:a4:e2:b8:0c:d5:3a:be:b1:7d:dd:f0:3e:51:
c5:9a:e8:41:14:6c:9b:49:7d:cd:77:73:05:5e:34:56:82:65:
0e:df:f9:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDh/odc1KKVME6OwH3GXIYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMzhhOTgzY2Y0MzczYWE0OTc0OTg1YWIyMmQ1MTRjMGY0
ODFkMmUwHhcNMjUwMjAxMjIwMDU1WhcNMjUwMjAyMjIwMDU1WjAzMTEwLwYDVQQD
Eyg5ZGQ3NTYyYzcwMjE3YmU5Y2ExODliNzQ2YTM4Yjc3MjY2NjM0NmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnSrDydbN1R8lctLbfshxBrcRhSxX
k4VppPPuiYdlej5Jsj9FVIxHOXg2hx9DnZZdbLO1xyX9+IXbFeCSNjtzxj7/dsqP
wRA+MGgP3CkwNBfMlypwNt68PQVULDRem/SnzQVq2tl2d8rS7tep2f+VHKxkb/YB
PhnOJx0u3E49J/x0fPZkta2rjbNCYCNp7kY6W/FmrKtk08tZyMsdGLJ+swBk/wjh
jVK7SOyLYKGes7OKKMZgy7L1kC9Dq2lxTZRl5zyglWKkukrGfXfJEvyTNmw/+4/O
07pvJDswUuLGj2hsHX/TUMQpblhVXkR3UP5IDmHxDWUMfiWyMF+/xmKhFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ3XVixwIXvpyhibdGo4t3JmY0aoMB8GA1UdIwQY
MBaAFG84qYPPQ3OqSXSYWrItUUwPSB0uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS83NDMzN2ItZjk4ZS00ZTMxLTkwMDQt
YWY1YTU2NzczMmVmLzEvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS83NDMzN2ItZjk4ZS00ZTMxLTkwMDQtYWY1YTU2NzczMmVm
LzEvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANFw4aZJ+
Y+CWrcI8Nk7tOFcZS8HAjsmXXLR1gFgU1n2ljbIf6aJdktkxu1x5QsHzkBVouzBR
zN8Ug6AfjgtU8m4OTB5V7xKdqKopsN61yA8XM3PY2FB8Mf5aIQ6gd2t6c0YVePHV
0LXysO59OoMH4rzgSmMHsXQgzWLdn3G3b7nGooz887yREq1wgT5i3WHAj/f0B+j7
0LBq3+LgfwKy6eEab/7J9PEdDceqEgCkjV4sT6APEOAISFBshOxXCEzUa+c8sCp/
dRrzkeMRWJEEvIVgL/WuCgYREQXHObKk4rgM1Tq+sX3d8D5RxZroQRRsm0l9zXdz
BV40VoJlDt/5oQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:07:17 2025 by rpki-client