Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
File: xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft (raw, json)
Hash identifier: BHdd30efqstZzK/8onQzC0xdr3PIahMoQfx5UOQ0Lyc=
Subject key identifier: 79:60:AC:CC:92:C6:39:3E:46:BB:FE:0D:4E:01:B6:C7:13:66:77:6D
Authority key identifier: C6:2F:08:03:C4:29:8E:15:6D:56:3B:D4:F2:07:CB:5B:83:61:02:6E
Certificate issuer: /CN=c62f0803c4298e156d563bd4f207cb5b8361026e
Certificate serial: 0194C463AFB4D905D0345DDAAF8705B6AADB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xi8IA8QpjhVtVjvU8gfLW4NhAm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
Manifest number: 102A
Signing time: Sun 02 Feb 2025 02:00:54 +0000
Manifest this update: Sun 02 Feb 2025 02:00:54 +0000
Manifest next update: Mon 03 Feb 2025 02:00:54 +0000
Files and hashes: 1: S4GEAGQpLNuwxd69ASEGW9Vms4c.roa (hash: FsqX6X9yKqotnT07LkiZuZ69e3G5OYb0RnxsqAXswi8=)
2: xi8IA8QpjhVtVjvU8gfLW4NhAm4.crl (hash: YTsQ4+k7v58NJRfqw+ssTp1znZmAYjmNE48t4ds/SJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xi8IA8QpjhVtVjvU8gfLW4NhAm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:af:b4:d9:05:d0:34:5d:da:af:87:05:b6:aa:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c62f0803c4298e156d563bd4f207cb5b8361026e
Validity
Not Before: Feb 2 02:00:54 2025 GMT
Not After : Feb 3 02:00:54 2025 GMT
Subject: CN=7960accc92c6393e46bbfe0d4e01b6c71366776d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e9:fb:ed:e8:79:51:c9:ab:6e:4a:02:7a:cf:
5c:a5:b1:95:42:0c:2d:96:4c:e2:34:3f:aa:89:ca:
b1:00:79:ef:2e:3c:a3:7c:30:b9:ee:dd:64:21:11:
25:fe:b9:95:a6:b2:7c:77:0b:61:ec:8f:59:ac:d1:
d9:03:dc:12:f9:17:8b:54:e3:8a:6d:fa:25:28:e0:
b6:e8:bf:0f:28:30:14:ad:f1:ef:a4:bc:f3:b4:18:
4f:70:7f:ce:61:5c:81:00:45:ee:29:de:b5:9d:75:
21:f5:41:f9:44:c5:d3:f3:18:8f:54:d6:49:af:2f:
10:8d:16:0e:60:15:9d:af:9e:ce:39:7a:d1:d4:36:
d4:f2:80:b0:3c:1a:b6:5f:25:4e:b5:0a:44:6d:60:
8b:4c:82:24:48:c0:8b:a1:64:52:b7:ec:9e:d8:72:
c3:7a:56:e5:74:76:e3:a2:0d:b2:24:1c:68:bc:37:
a7:36:84:a2:90:a9:df:46:6d:5b:03:3b:8c:cd:91:
0f:cb:69:3c:f1:4a:23:7a:64:2a:12:f0:9a:b9:69:
a6:4d:be:8f:36:0d:7f:d1:60:80:e0:49:f5:a6:35:
78:78:f3:be:4d:70:b2:5e:04:1a:08:e3:62:aa:13:
4a:2e:84:22:32:11:de:c8:21:8a:94:0e:51:87:76:
af:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:60:AC:CC:92:C6:39:3E:46:BB:FE:0D:4E:01:B6:C7:13:66:77:6D
X509v3 Authority Key Identifier:
keyid:C6:2F:08:03:C4:29:8E:15:6D:56:3B:D4:F2:07:CB:5B:83:61:02:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xi8IA8QpjhVtVjvU8gfLW4NhAm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:84:b3:f8:4d:89:e9:f7:43:d3:34:11:8d:8b:49:3b:33:5b:
b2:67:1b:dc:c1:eb:c7:53:bf:46:f3:19:84:02:c6:f1:4c:ce:
9d:e8:73:a9:f6:d3:58:af:51:f3:2d:13:78:28:bc:6a:f6:7e:
5d:31:20:5e:74:55:7b:a9:9b:70:f5:31:18:29:cc:83:5a:33:
4e:01:4f:e6:b2:da:1e:de:a8:6b:65:29:fe:63:d2:c3:c5:de:
11:9d:c5:0a:86:c6:65:6e:76:fe:d9:08:50:4c:5c:27:05:bd:
1d:36:cc:4f:33:c1:77:21:3f:7c:53:8c:44:9a:e6:1b:26:6d:
a2:c1:01:f8:c8:89:b5:09:d6:4d:b3:83:22:cd:58:f3:f6:c5:
83:20:33:11:fe:69:7c:12:f3:75:da:4a:25:5e:fb:ce:ad:8f:
04:fc:9b:d5:f4:a7:74:2b:91:be:61:54:34:24:e1:07:e8:32:
04:08:08:3d:c5:9b:06:34:01:2f:db:74:a5:ed:35:21:1d:d2:
65:a5:91:ac:3d:04:7a:03:72:6c:c5:0c:3b:cc:8e:7b:e8:41:
01:b6:1e:31:07:65:13:79:6b:05:a9:11:a2:1c:70:1d:a9:87:
b3:24:55:ad:9d:45:6d:a0:c8:de:16:1c:e9:65:22:d2:6f:eb:
66:61:60:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTEY6+02QXQNF3ar4cFtqrbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2MmYwODAzYzQyOThlMTU2ZDU2M2JkNGYyMDdjYjViODM2
MTAyNmUwHhcNMjUwMjAyMDIwMDU0WhcNMjUwMjAzMDIwMDU0WjAzMTEwLwYDVQQD
Eyg3OTYwYWNjYzkyYzYzOTNlNDZiYmZlMGQ0ZTAxYjZjNzEzNjY3NzZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+n77eh5UcmrbkoCes9cpbGVQgwt
lkziND+qicqxAHnvLjyjfDC57t1kIREl/rmVprJ8dwth7I9ZrNHZA9wS+ReLVOOK
bfolKOC26L8PKDAUrfHvpLzztBhPcH/OYVyBAEXuKd61nXUh9UH5RMXT8xiPVNZJ
ry8QjRYOYBWdr57OOXrR1DbU8oCwPBq2XyVOtQpEbWCLTIIkSMCLoWRSt+ye2HLD
elbldHbjog2yJBxovDenNoSikKnfRm1bAzuMzZEPy2k88UojemQqEvCauWmmTb6P
Ng1/0WCA4En1pjV4ePO+TXCyXgQaCONiqhNKLoQiMhHeyCGKlA5Rh3avWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHlgrMySxjk+Rrv+DU4BtscTZndtMB8GA1UdIwQY
MBaAFMYvCAPEKY4VbVY71PIHy1uDYQJuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGk4SUE4UXBqaFZ0Vmp2VThnZkxXNE5oQW00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi83ZGRhMWMtODdlMC00YjQ5LWJkOWIt
M2RlYmExNjY2ZTliLzEveGk4SUE4UXBqaFZ0Vmp2VThnZkxXNE5oQW00Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi83ZGRhMWMtODdlMC00YjQ5LWJkOWItM2RlYmExNjY2ZTli
LzEveGk4SUE4UXBqaFZ0Vmp2VThnZkxXNE5oQW00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApoSz+E2J
6fdD0zQRjYtJOzNbsmcb3MHrx1O/RvMZhALG8UzOnehzqfbTWK9R8y0TeCi8avZ+
XTEgXnRVe6mbcPUxGCnMg1ozTgFP5rLaHt6oa2Up/mPSw8XeEZ3FCobGZW52/tkI
UExcJwW9HTbMTzPBdyE/fFOMRJrmGyZtosEB+MiJtQnWTbODIs1Y8/bFgyAzEf5p
fBLzddpKJV77zq2PBPyb1fSndCuRvmFUNCThB+gyBAgIPcWbBjQBL9t0pe01IR3S
ZaWRrD0EegNybMUMO8yOe+hBAbYeMQdlE3lrBakRohxwHamHsyRVrZ1FbaDI3hYc
6WUi0m/rZmFgyQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 05:44:46 2025 by rpki-client