Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
File: U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft (raw, json)
Hash identifier: bs+gVY8pn3zVobg7QaKDgR3GsTCtWkToihhsnj+8+XQ=
Subject key identifier: F3:61:E8:C4:A2:D3:89:40:CB:D7:D9:1F:E6:24:72:8E:2A:6A:72:7C
Authority key identifier: 53:53:A9:A8:5F:A1:1F:C4:BF:15:6F:AB:4D:8D:84:A0:8E:5D:66:F9
Certificate issuer: /CN=5353a9a85fa11fc4bf156fab4d8d84a08e5d66f9
Certificate serial: 01951134A1A4921F0A1BE2545F83B4E4ABB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
Manifest number: 1459
Signing time: Mon 17 Feb 2025 00:00:16 +0000
Manifest this update: Mon 17 Feb 2025 00:00:16 +0000
Manifest next update: Tue 18 Feb 2025 00:00:16 +0000
Files and hashes: 1: U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl (hash: hx9a8ZZKo1XxZeiFrPey6xbWcM0qYFzxzhqrQcJjhyg=)
2: fhzBsi8rU0jUB3-KHFWy_MPxr3s.roa (hash: +sQEtymDtkukDBlTZusUXGi5sWkBAEA4spvgFTkKSlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:a1:a4:92:1f:0a:1b:e2:54:5f:83:b4:e4:ab:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5353a9a85fa11fc4bf156fab4d8d84a08e5d66f9
Validity
Not Before: Feb 17 00:00:16 2025 GMT
Not After : Feb 18 00:00:16 2025 GMT
Subject: CN=f361e8c4a2d38940cbd7d91fe624728e2a6a727c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:23:9b:f2:2a:23:eb:f9:9f:3e:8d:2d:5d:6c:
16:bc:66:3a:e6:90:d3:1b:63:7e:1f:ff:41:ab:13:
0f:6a:e4:73:c3:d4:ff:db:85:63:e9:56:32:02:fc:
b3:95:72:12:a4:63:d1:6e:db:b2:8d:7b:ac:e7:9e:
a2:d2:29:c6:ec:9a:e5:aa:cc:de:9d:6a:6f:05:37:
e7:b8:2e:14:0e:89:09:7b:91:15:8e:3c:a6:72:65:
6f:51:21:81:d8:17:9b:07:46:e5:dd:ce:2b:70:b1:
f5:27:47:7b:29:3e:83:f6:68:32:b7:08:80:46:40:
ea:bc:6c:f7:c3:70:ac:53:50:51:be:f0:68:a8:00:
3e:72:b8:50:bf:63:51:74:44:70:3e:60:a8:7c:80:
d3:ce:97:5a:1d:4d:a1:83:1c:9a:97:29:76:89:79:
28:f2:4e:d5:88:d2:ec:da:36:43:15:83:21:32:7f:
05:f0:c5:e6:cd:9a:0d:a4:fe:be:38:c3:fb:34:20:
9f:ec:7c:24:1b:dd:0b:bf:85:83:99:a2:61:1f:2e:
30:75:ae:a1:d1:f0:c4:3e:53:d4:77:e7:bb:8a:ee:
b7:06:e8:3e:20:0a:44:45:75:1e:44:6d:26:ba:e5:
1e:e6:8e:57:4d:ee:7d:86:6c:1a:23:0e:0b:ef:35:
99:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:61:E8:C4:A2:D3:89:40:CB:D7:D9:1F:E6:24:72:8E:2A:6A:72:7C
X509v3 Authority Key Identifier:
keyid:53:53:A9:A8:5F:A1:1F:C4:BF:15:6F:AB:4D:8D:84:A0:8E:5D:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:59:fd:2c:b9:a9:34:58:8c:cb:02:ec:11:0f:b9:85:35:27:
98:ba:15:f1:52:f4:41:5a:f9:b0:88:48:f4:c0:7a:ed:44:37:
fd:9a:3e:ec:ce:61:4c:a8:49:8d:87:be:f4:9f:36:75:0d:0d:
6c:5f:c8:68:98:56:0c:2d:ba:5f:d0:2a:2d:b9:8f:23:0a:87:
86:5e:00:08:d8:5d:3d:d7:79:e6:0a:13:80:53:69:5a:d5:72:
40:84:2c:3c:8b:1d:52:ac:bb:5b:eb:75:80:3f:9d:dc:5d:53:
52:11:ed:76:69:cc:cd:af:e2:67:98:90:5d:ff:9f:c7:b9:1f:
58:7c:4a:ad:9a:9d:c9:93:3c:c7:bb:d8:44:16:06:c6:f8:5a:
62:a8:5d:b2:4f:ae:67:35:ec:60:08:de:f0:3d:32:18:dc:08:
e7:94:d0:f1:4e:4c:ee:4d:71:bc:6d:54:1d:09:4f:6b:e1:ca:
b9:3f:54:dd:6f:0c:de:0d:11:8f:c7:64:ad:8f:ca:b6:d1:67:
60:ef:9c:e0:ec:8e:c1:38:66:4f:56:36:c6:24:b1:70:e5:69:
cd:ec:d8:e0:47:0d:a3:e7:84:01:3d:49:8d:07:25:98:cc:72:
46:8d:40:23:e6:08:a3:a5:d5:13:4e:5e:a7:86:22:86:78:cc:
dd:43:40:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNKGkkh8KG+JUX4O05Ku0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzNTNhOWE4NWZhMTFmYzRiZjE1NmZhYjRkOGQ4NGEwOGU1
ZDY2ZjkwHhcNMjUwMjE3MDAwMDE2WhcNMjUwMjE4MDAwMDE2WjAzMTEwLwYDVQQD
EyhmMzYxZThjNGEyZDM4OTQwY2JkN2Q5MWZlNjI0NzI4ZTJhNmE3MjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiSOb8ioj6/mfPo0tXWwWvGY65pDT
G2N+H/9BqxMPauRzw9T/24Vj6VYyAvyzlXISpGPRbtuyjXus556i0inG7Jrlqsze
nWpvBTfnuC4UDokJe5EVjjymcmVvUSGB2BebB0bl3c4rcLH1J0d7KT6D9mgytwiA
RkDqvGz3w3CsU1BRvvBoqAA+crhQv2NRdERwPmCofIDTzpdaHU2hgxyalyl2iXko
8k7ViNLs2jZDFYMhMn8F8MXmzZoNpP6+OMP7NCCf7HwkG90Lv4WDmaJhHy4wda6h
0fDEPlPUd+e7iu63Bug+IApERXUeRG0muuUe5o5XTe59hmwaIw4L7zWZQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPNh6MSi04lAy9fZH+Ykco4qanJ8MB8GA1UdIwQY
MBaAFFNTqahfoR/EvxVvq02NhKCOXWb5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTFPcHFGLWhIOFNfRlctclRZMkVvSTVkWnZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9iOTI5Y2UtZWMxNy00ZDUwLWE2YWUt
NzlkOTM0ZTRhOTlhLzEvVTFPcHFGLWhIOFNfRlctclRZMkVvSTVkWnZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC9iOTI5Y2UtZWMxNy00ZDUwLWE2YWUtNzlkOTM0ZTRhOTlh
LzEvVTFPcHFGLWhIOFNfRlctclRZMkVvSTVkWnZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFVn9LLmp
NFiMywLsEQ+5hTUnmLoV8VL0QVr5sIhI9MB67UQ3/Zo+7M5hTKhJjYe+9J82dQ0N
bF/IaJhWDC26X9AqLbmPIwqHhl4ACNhdPdd55goTgFNpWtVyQIQsPIsdUqy7W+t1
gD+d3F1TUhHtdmnMza/iZ5iQXf+fx7kfWHxKrZqdyZM8x7vYRBYGxvhaYqhdsk+u
ZzXsYAje8D0yGNwI55TQ8U5M7k1xvG1UHQlPa+HKuT9U3W8M3g0Rj8dkrY/KttFn
YO+c4OyOwThmT1Y2xiSxcOVpzezY4EcNo+eEAT1JjQclmMxyRo1AI+YIo6XVE05e
p4YihnjM3UNANg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:23 2025 by rpki-client