Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
File: cG_6qbf85AgnGBpaoKzumaRmkVY.mft (raw, json)
Hash identifier: EM0NUKLagU+Tq+LD9TGy0cbtd6wIJFYLe/zpQDVgZg4=
Subject key identifier: F9:05:AA:C2:62:04:23:62:AF:24:B5:62:E2:82:EB:20:CA:70:4F:82
Authority key identifier: 70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
Certificate issuer: /CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Certificate serial: 01951134852FA95DF29B70AD4EAFF0968A52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
Manifest number: 099A
Signing time: Mon 17 Feb 2025 00:00:09 +0000
Manifest this update: Mon 17 Feb 2025 00:00:09 +0000
Manifest next update: Tue 18 Feb 2025 00:00:09 +0000
Files and hashes: 1: cG_6qbf85AgnGBpaoKzumaRmkVY.crl (hash: ucg4R87ARRzCmzVDhFcWJaek72+5gAvP4sM7RsuvgM0=)
2: wHLema0UGStCVJFXioCOp9yM9Yk.roa (hash: 9o2chTlhKcvV8PSsEOhRoW59X68c/vtOe1+mp0bUcck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:85:2f:a9:5d:f2:9b:70:ad:4e:af:f0:96:8a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Validity
Not Before: Feb 17 00:00:09 2025 GMT
Not After : Feb 18 00:00:09 2025 GMT
Subject: CN=f905aac262042362af24b562e282eb20ca704f82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4d:37:f9:b6:19:ea:24:87:a1:99:a9:6b:d0:
49:8b:2d:6a:e8:47:a6:ed:12:05:34:be:92:e4:11:
5a:6b:68:cd:fa:0c:35:ae:70:c8:8d:2e:14:bd:b0:
7e:2e:11:e2:c7:05:24:f7:56:1b:8f:40:b3:63:01:
9d:72:ff:62:09:78:e4:8c:04:49:da:62:0e:07:06:
05:44:65:3c:13:ad:6b:e3:f4:35:01:1a:d5:76:9f:
d6:3a:a8:62:e7:01:23:7a:83:0a:c0:27:7e:2b:a0:
96:a3:11:a5:2a:76:2a:7e:92:ea:08:7a:5d:88:10:
32:6b:9c:f6:8e:85:75:c0:74:b9:58:9e:e8:8e:d3:
a6:bb:a2:f7:dc:da:d3:fd:fb:30:c4:d5:b1:79:f2:
85:cf:d4:f9:71:d7:f0:17:aa:48:55:44:3d:52:f3:
6b:de:e3:cb:b2:56:4e:88:77:f1:af:00:8e:46:38:
3d:91:9d:42:f8:df:c7:96:42:6b:c0:98:a9:94:a1:
78:11:70:53:01:1c:d4:f9:f3:b7:6c:a4:0c:a4:89:
14:ae:d6:18:3f:56:49:06:48:2c:5f:51:d0:30:ac:
cf:e7:c3:ab:6d:08:c9:92:73:fd:3d:8a:73:de:cf:
4b:0a:0d:54:f1:07:7c:e9:43:6a:d4:df:b1:3a:95:
aa:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:05:AA:C2:62:04:23:62:AF:24:B5:62:E2:82:EB:20:CA:70:4F:82
X509v3 Authority Key Identifier:
keyid:70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:a1:8f:a6:95:21:c2:02:1a:61:0b:34:99:9f:a4:fc:8b:99:
4e:d8:07:30:78:25:9b:0a:a4:a0:cc:2e:11:70:66:72:c1:be:
dd:73:67:76:60:9d:3a:e2:ef:03:74:fb:5d:1d:fb:f1:4c:84:
bd:94:19:67:c2:5d:53:6f:ec:62:6a:76:bc:c9:77:7f:d8:34:
84:c7:5f:48:b2:46:4a:a2:8b:29:7a:dd:75:32:5d:a8:3c:da:
3b:14:18:a2:56:a5:a5:d5:7c:a8:f1:d0:1f:ec:90:1a:92:a2:
b7:95:c5:56:8b:78:0f:fa:a9:36:dc:ac:e8:29:be:3b:67:32:
c3:02:46:b0:96:ac:16:d6:5d:d5:cf:a7:1f:41:94:1d:25:f7:
20:d5:46:b3:c5:96:86:7d:15:11:9b:2b:e4:d9:ea:bc:97:76:
ae:39:83:aa:d5:98:ad:2e:5f:57:3e:85:c9:0b:e3:d9:43:68:
f3:5e:23:5d:c9:2c:eb:a3:23:80:2c:44:1b:04:da:3f:ef:15:
d8:11:85:55:86:fb:4d:3a:de:4b:0b:bb:31:3d:99:20:76:d2:
24:ff:87:ab:a9:5f:60:e6:0d:6c:8d:a2:80:bd:76:68:ae:1b:
41:c7:ab:62:a0:8d:42:93:30:b4:f6:31:d8:89:e1:e2:ae:28:
08:4a:6a:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNIUvqV3ym3CtTq/wlopSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNmZmYWE5YjdmY2U0MDgyNzE4MWE1YWEwYWNlZTk5YTQ2
NjkxNTYwHhcNMjUwMjE3MDAwMDA5WhcNMjUwMjE4MDAwMDA5WjAzMTEwLwYDVQQD
EyhmOTA1YWFjMjYyMDQyMzYyYWYyNGI1NjJlMjgyZWIyMGNhNzA0ZjgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2k03+bYZ6iSHoZmpa9BJiy1q6Eem
7RIFNL6S5BFaa2jN+gw1rnDIjS4UvbB+LhHixwUk91Ybj0CzYwGdcv9iCXjkjARJ
2mIOBwYFRGU8E61r4/Q1ARrVdp/WOqhi5wEjeoMKwCd+K6CWoxGlKnYqfpLqCHpd
iBAya5z2joV1wHS5WJ7ojtOmu6L33NrT/fswxNWxefKFz9T5cdfwF6pIVUQ9UvNr
3uPLslZOiHfxrwCORjg9kZ1C+N/HlkJrwJiplKF4EXBTARzU+fO3bKQMpIkUrtYY
P1ZJBkgsX1HQMKzP58OrbQjJknP9PYpz3s9LCg1U8Qd86UNq1N+xOpWqvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPkFqsJiBCNiryS1YuKC6yDKcE+CMB8GA1UdIwQY
MBaAFHBv+qm3/OQIJxgaWqCs7pmkZpFWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8yOTY3OGYtYzYwNS00NjU1LTkzNTkt
MTBmZWRjY2QyOTI0LzEvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS8yOTY3OGYtYzYwNS00NjU1LTkzNTktMTBmZWRjY2QyOTI0
LzEvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANKGPppUh
wgIaYQs0mZ+k/IuZTtgHMHglmwqkoMwuEXBmcsG+3XNndmCdOuLvA3T7XR378UyE
vZQZZ8JdU2/sYmp2vMl3f9g0hMdfSLJGSqKLKXrddTJdqDzaOxQYolalpdV8qPHQ
H+yQGpKit5XFVot4D/qpNtys6Cm+O2cywwJGsJasFtZd1c+nH0GUHSX3INVGs8WW
hn0VEZsr5NnqvJd2rjmDqtWYrS5fVz6FyQvj2UNo814jXcks66MjgCxEGwTaP+8V
2BGFVYb7TTreSwu7MT2ZIHbSJP+Hq6lfYOYNbI2igL12aK4bQcerYqCNQpMwtPYx
2Inh4q4oCEpqxg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:00 2025 by rpki-client