Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
File: IHeZAnMp8iaCdkVzryEV2pWp9r8.mft (raw, json)
Hash identifier: gZ2z0lo5IgcakLOJ+LgUaTON2uORB83IJVWStDJxCgA=
Subject key identifier: ED:BF:87:7F:7D:7F:99:96:8B:85:C5:84:5E:25:C3:93:0B:B9:89:9B
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 019512106C0539F17A79F3B7A074C41638CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
Manifest number: 0D55
Signing time: Mon 17 Feb 2025 04:00:20 +0000
Manifest this update: Mon 17 Feb 2025 04:00:20 +0000
Manifest next update: Tue 18 Feb 2025 04:00:20 +0000
Files and hashes: 1: 5-CR-odXjfFXX-cbD_KrA88AnGY.roa (hash: ZyBB8eo1lTEFydHVFlAnAjM+USjp+b5TDsaNXh5nnS4=)
2: IHeZAnMp8iaCdkVzryEV2pWp9r8.crl (hash: rck/rztAQAuHckKuA2ydXJR8L8jJJAyZfPov7RAmiWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:6c:05:39:f1:7a:79:f3:b7:a0:74:c4:16:38:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Feb 17 04:00:20 2025 GMT
Not After : Feb 18 04:00:20 2025 GMT
Subject: CN=edbf877f7d7f99968b85c5845e25c3930bb9899b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:92:a5:f0:ce:9f:86:ac:3a:e6:b0:6f:ca:e2:
b0:82:e9:8c:c8:6e:8f:3a:ba:f9:21:78:b6:f2:2e:
a5:68:24:d3:44:e8:5b:56:0e:f9:df:f5:dc:74:e6:
46:99:04:21:71:c2:72:bd:dc:7c:c2:2a:f5:d2:51:
06:82:44:b9:9c:b4:8f:29:b9:b3:c5:61:79:e4:1a:
70:1b:eb:e0:6b:ca:93:72:88:f8:b8:0a:6a:dd:dd:
93:7a:d3:00:9f:d4:64:b7:d3:3c:72:f8:0e:0a:19:
1c:9e:94:1b:c4:72:a0:3f:45:37:d3:8c:d2:68:ce:
71:5c:73:81:77:18:5d:bd:61:92:cc:ce:45:86:29:
f3:f2:73:dd:c9:a1:14:c2:8e:26:97:42:b5:19:d5:
c4:de:0f:85:96:43:f5:00:46:a9:1a:ab:52:d6:96:
f8:27:79:0e:43:ed:e1:52:63:fb:90:f6:83:47:fa:
2f:c2:61:18:18:51:04:23:85:76:9c:d9:82:67:12:
6b:e9:cf:f0:8a:c6:b7:76:5a:89:f7:80:d6:a3:67:
59:d8:c1:93:db:e8:44:78:77:a4:a8:ba:30:61:db:
c6:19:d8:03:9e:9c:d3:d0:3d:ec:b4:00:f3:f4:a9:
bd:15:27:94:b6:60:ba:72:4b:4c:32:b5:17:d2:be:
a8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:BF:87:7F:7D:7F:99:96:8B:85:C5:84:5E:25:C3:93:0B:B9:89:9B
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:1c:9a:b3:fe:25:0a:ae:aa:1d:70:50:8f:4b:79:5f:79:db:
26:24:2e:24:86:bb:7b:da:61:76:b4:48:7d:89:06:07:23:57:
0f:86:65:22:77:69:f0:e8:6d:9a:40:6d:88:d4:73:74:98:4d:
6a:6e:cc:42:41:69:68:ea:f3:15:7c:ec:72:f1:19:de:af:92:
9e:d2:19:c5:79:36:f9:e5:92:fc:1f:e7:34:1d:43:4c:0d:11:
ca:8f:8f:ad:70:47:b0:82:8c:46:6e:d6:fd:55:29:20:73:ef:
eb:74:fb:56:be:a7:b7:43:db:7e:96:13:7d:a9:b8:ef:d0:83:
d4:eb:52:65:bf:57:0d:24:2a:1c:b4:a8:7e:1d:ad:83:3e:7d:
0d:26:97:bc:13:ad:51:f2:04:99:37:62:34:1b:89:df:96:2c:
12:40:5a:cf:27:af:31:2c:71:a3:df:0a:80:7a:9f:19:e9:50:
f1:08:36:51:4d:59:07:4f:2f:aa:a2:ed:df:42:af:67:bd:f6:
c6:22:4b:de:00:1f:12:ed:81:14:d0:b0:be:a9:a0:55:7d:75:
2e:76:f3:bf:46:3a:00:f4:48:5d:f3:a1:10:d2:f6:2f:b6:11:
44:57:62:8e:1c:a1:9f:19:6b:79:2e:d8:42:ef:eb:a0:2f:fc:
62:72:ac:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSEGwFOfF6efO3oHTEFjjNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwNzc5OTAyNzMyOWYyMjY4Mjc2NDU3M2FmMjExNWRhOTVh
OWY2YmYwHhcNMjUwMjE3MDQwMDIwWhcNMjUwMjE4MDQwMDIwWjAzMTEwLwYDVQQD
EyhlZGJmODc3ZjdkN2Y5OTk2OGI4NWM1ODQ1ZTI1YzM5MzBiYjk4OTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJKl8M6fhqw65rBvyuKwgumMyG6P
Orr5IXi28i6laCTTROhbVg753/XcdOZGmQQhccJyvdx8wir10lEGgkS5nLSPKbmz
xWF55BpwG+vga8qTcoj4uApq3d2TetMAn9Rkt9M8cvgOChkcnpQbxHKgP0U304zS
aM5xXHOBdxhdvWGSzM5Fhinz8nPdyaEUwo4ml0K1GdXE3g+FlkP1AEapGqtS1pb4
J3kOQ+3hUmP7kPaDR/ovwmEYGFEEI4V2nNmCZxJr6c/wisa3dlqJ94DWo2dZ2MGT
2+hEeHekqLowYdvGGdgDnpzT0D3stADz9Km9FSeUtmC6cktMMrUX0r6ohwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO2/h399f5mWi4XFhF4lw5MLuYmbMB8GA1UdIwQY
MBaAFCB3mQJzKfImgnZFc68hFdqVqfa/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUhlWkFuTXA4aWFDZGtWenJ5RVYycFdwOXI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9mYzlmMmItN2YyZi00MjM4LWFhMTkt
OThjYmE4ZmYyY2EzLzEvSUhlWkFuTXA4aWFDZGtWenJ5RVYycFdwOXI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9mYzlmMmItN2YyZi00MjM4LWFhMTktOThjYmE4ZmYyY2Ez
LzEvSUhlWkFuTXA4aWFDZGtWenJ5RVYycFdwOXI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFByas/4l
Cq6qHXBQj0t5X3nbJiQuJIa7e9phdrRIfYkGByNXD4ZlIndp8OhtmkBtiNRzdJhN
am7MQkFpaOrzFXzscvEZ3q+SntIZxXk2+eWS/B/nNB1DTA0Ryo+PrXBHsIKMRm7W
/VUpIHPv63T7Vr6nt0PbfpYTfam479CD1OtSZb9XDSQqHLSofh2tgz59DSaXvBOt
UfIEmTdiNBuJ35YsEkBazyevMSxxo98KgHqfGelQ8Qg2UU1ZB08vqqLt30KvZ732
xiJL3gAfEu2BFNCwvqmgVX11Lnbzv0Y6APRIXfOhENL2L7YRRFdijhyhnxlreS7Y
Qu/roC/8YnKsFw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:56 2025 by rpki-client