Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: AlX9v25ee+MjaUTFwXIocDazpB5Zs8IkJKzJYSyO9Bw=
Subject key identifier: 21:7A:4D:58:A9:76:68:7B:B0:47:49:13:73:1C:30:F5:64:D2:B3:76
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 0195116BD14E6BC9C19F8EE7E7F798E93BEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 11A3
Signing time: Mon 17 Feb 2025 01:00:33 +0000
Manifest this update: Mon 17 Feb 2025 01:00:33 +0000
Manifest next update: Tue 18 Feb 2025 01:00:33 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: iJnm8hQ/QZja9FCOradZzr2fIg6c6/NfErxa5lXEw8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:d1:4e:6b:c9:c1:9f:8e:e7:e7:f7:98:e9:3b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Feb 17 01:00:33 2025 GMT
Not After : Feb 18 01:00:33 2025 GMT
Subject: CN=217a4d58a976687bb0474913731c30f564d2b376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2c:40:05:a6:f7:6e:23:41:97:92:12:26:01:
c8:ff:d7:8f:17:dc:20:62:6f:34:8e:21:f7:24:0b:
5d:b7:15:a3:51:56:be:1d:e5:8d:48:bb:d7:12:8f:
1c:f3:5a:20:7f:fc:5a:9c:4e:a4:fb:2a:6c:d9:1f:
08:0e:61:3f:76:d0:76:e1:dd:65:1b:1b:32:99:4c:
ff:9a:c1:50:82:e5:fe:04:75:28:d5:bc:46:8d:a7:
90:92:51:4b:72:2f:71:39:34:f2:38:6d:23:6b:1e:
c8:3d:11:03:7a:07:19:f5:04:9a:68:4a:16:fe:73:
e8:d8:4b:0f:09:09:ef:a0:c9:20:98:c0:b7:3b:14:
82:fb:c7:74:ad:fb:10:f6:2c:40:f3:fa:c0:d6:87:
e1:70:b6:36:6c:a6:86:c3:26:98:be:42:9f:d8:24:
91:76:0c:25:1d:c9:e4:f3:60:6a:e6:59:bd:67:6e:
c4:8d:f0:99:fa:f8:7d:17:0f:94:38:19:c9:44:05:
36:8d:c2:c2:89:1c:bb:8c:09:89:04:c3:02:5d:a4:
76:e6:21:9b:47:4c:44:8c:19:e9:a4:16:93:fb:c9:
87:b6:e3:64:f1:14:b3:7f:07:25:94:64:e0:1b:0f:
b4:0e:d4:1d:1e:7c:0c:46:01:bc:d1:a5:30:c5:36:
3b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:7A:4D:58:A9:76:68:7B:B0:47:49:13:73:1C:30:F5:64:D2:B3:76
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:64:fd:68:95:8a:0e:64:21:e0:6d:ca:7e:16:a5:f9:3b:cb:
11:84:ea:3d:40:47:11:b8:63:af:ba:2f:40:5b:a1:8c:ee:56:
f3:ea:6a:df:85:fe:e9:80:fc:c7:08:cf:7a:0f:53:9a:84:2f:
28:0d:63:c6:4d:40:85:31:cd:ed:89:38:34:6a:58:d5:56:92:
67:1a:2b:46:ea:f7:fd:9a:6f:bf:59:a9:02:4f:a1:b1:6f:89:
42:3c:18:ce:d4:f5:cb:b9:8b:ed:41:30:a3:c7:49:b0:eb:8c:
51:33:b4:8e:36:0f:c4:e6:29:25:c3:32:a9:a4:3b:76:54:4c:
ff:5b:b7:56:25:5a:c4:6a:77:b0:eb:e1:d9:36:b8:cd:2c:2b:
23:66:37:98:37:68:bd:9f:7e:d8:08:c8:bc:e3:aa:22:e9:16:
90:b4:3c:8d:bc:39:b4:c5:53:01:c5:73:69:e4:9c:3c:77:79:
49:73:fb:a6:88:7f:ce:fd:6d:cc:12:75:dd:ac:17:c0:eb:23:
b0:d3:45:a8:09:86:8c:07:90:a8:c7:90:15:3e:a8:e8:ad:04:
5f:2e:35:62:2e:ef:2d:31:9d:1c:22:0b:23:16:61:de:ef:e4:
85:c0:54:8a:9e:5c:8f:5a:fd:e2:57:51:55:fc:7c:f6:20:0f:
ff:26:3a:46
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURa9FOa8nBn47n5/eY6TvqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMGMzOTFlZGQ1Y2JlZTFhMTRlMGFiM2Y5M2Q4MzRmYWU1
MTFlNGQwHhcNMjUwMjE3MDEwMDMzWhcNMjUwMjE4MDEwMDMzWjAzMTEwLwYDVQQD
EygyMTdhNGQ1OGE5NzY2ODdiYjA0NzQ5MTM3MzFjMzBmNTY0ZDJiMzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqixABab3biNBl5ISJgHI/9ePF9wg
Ym80jiH3JAtdtxWjUVa+HeWNSLvXEo8c81ogf/xanE6k+yps2R8IDmE/dtB24d1l
GxsymUz/msFQguX+BHUo1bxGjaeQklFLci9xOTTyOG0jax7IPREDegcZ9QSaaEoW
/nPo2EsPCQnvoMkgmMC3OxSC+8d0rfsQ9ixA8/rA1ofhcLY2bKaGwyaYvkKf2CSR
dgwlHcnk82Bq5lm9Z27EjfCZ+vh9Fw+UOBnJRAU2jcLCiRy7jAmJBMMCXaR25iGb
R0xEjBnppBaT+8mHtuNk8RSzfwcllGTgGw+0DtQdHnwMRgG80aUwxTY7FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCF6TVipdmh7sEdJE3McMPVk0rN2MB8GA1UdIwQY
MBaAFB0MOR7dXL7hoU4Ks/k9g0+uUR5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQt
MGY4OTllMGMyMGNkLzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQtMGY4OTllMGMyMGNk
LzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAGT9aJWK
DmQh4G3Kfhal+TvLEYTqPUBHEbhjr7ovQFuhjO5W8+pq34X+6YD8xwjPeg9TmoQv
KA1jxk1AhTHN7Yk4NGpY1VaSZxorRur3/Zpvv1mpAk+hsW+JQjwYztT1y7mL7UEw
o8dJsOuMUTO0jjYPxOYpJcMyqaQ7dlRM/1u3ViVaxGp3sOvh2Ta4zSwrI2Y3mDdo
vZ9+2AjIvOOqIukWkLQ8jbw5tMVTAcVzaeScPHd5SXP7poh/zv1tzBJ13awXwOsj
sNNFqAmGjAeQqMeQFT6o6K0EXy41Yi7vLTGdHCILIxZh3u/khcBUip5cj1r94ldR
Vfx89iAP/yY6Rg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:53 2025 by rpki-client