Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
File: _PU0Avp2-gY3bN6mvNOV4YAHnbc.mft (raw, json)
Hash identifier: 1VHpRQ4qZSF6wbS9UPdF1Lb77jb0pEIh8MamSeg6EPI=
Subject key identifier: BF:F1:CE:BE:D4:5B:13:7C:E9:77:2E:7B:35:CA:01:F6:A4:C4:BB:7D
Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Certificate serial: 0195116C3455054DEC8AB57F254ED3A3DE7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
Manifest number: 1165
Signing time: Mon 17 Feb 2025 01:00:58 +0000
Manifest this update: Mon 17 Feb 2025 01:00:58 +0000
Manifest next update: Tue 18 Feb 2025 01:00:58 +0000
Files and hashes: 1: 5QVE77uQnSCLbr9iYF89fXdJU-M.roa (hash: IPgTEo7hNu+XjVm/3xLzVMgF8abs7044xMIbnapyQg8=)
2: _PU0Avp2-gY3bN6mvNOV4YAHnbc.crl (hash: 3jGtnKiEWRrDEuYn/H4SU0oGFHlGjrfs9dKYEdC38o8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6c:34:55:05:4d:ec:8a:b5:7f:25:4e:d3:a3:de:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Validity
Not Before: Feb 17 01:00:58 2025 GMT
Not After : Feb 18 01:00:58 2025 GMT
Subject: CN=bff1cebed45b137ce9772e7b35ca01f6a4c4bb7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d7:19:5a:01:1a:71:f1:eb:5c:d1:6c:c7:3a:
9c:52:0d:33:aa:47:84:6c:a3:23:08:5e:cc:aa:5e:
85:bd:b3:1b:ea:bd:5d:4e:a3:4d:19:9f:d7:c0:db:
a6:9d:3b:3f:ab:e9:27:34:6a:47:60:a0:15:44:4e:
6e:e1:a1:9c:35:c3:5f:04:33:13:07:ed:ed:d6:18:
29:5d:34:68:51:17:37:47:3d:49:bb:e9:e1:6c:9e:
6d:b4:0d:ee:a5:a5:1e:b6:d8:f0:12:1f:e3:2b:f9:
c3:52:23:76:f1:0a:7e:a4:e9:c5:f7:55:71:0e:e2:
f4:b9:72:e7:00:07:1e:0b:48:32:ed:a7:4e:d1:cb:
ab:7c:dc:2e:0b:88:14:96:f8:59:c8:06:7c:b3:4d:
b5:10:fe:62:89:53:a8:6b:71:6a:09:d6:fe:ed:bd:
0f:68:71:0e:5b:a2:c8:72:0c:dd:d3:16:7a:50:aa:
9a:f5:24:a9:83:c4:9b:4a:a6:8c:69:e0:b8:60:be:
47:19:ce:8d:f0:78:32:71:03:06:4a:1c:12:39:62:
f0:5d:ea:05:9d:7f:24:0a:89:a7:b5:b6:d7:8a:92:
9a:e1:09:67:4b:64:b7:d5:b1:01:57:06:07:94:ad:
92:a8:6a:6e:4a:c8:d1:24:ae:02:3a:31:ac:21:95:
03:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:F1:CE:BE:D4:5B:13:7C:E9:77:2E:7B:35:CA:01:F6:A4:C4:BB:7D
X509v3 Authority Key Identifier:
keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:32:7e:86:29:ec:f6:d5:61:3f:9a:3e:51:81:c2:a5:03:95:
f9:cb:75:25:ba:91:10:a6:1c:99:df:99:52:41:d7:06:90:cd:
83:2f:66:40:70:51:23:94:78:54:bd:39:5d:b6:4e:40:46:b7:
91:f3:3f:41:21:57:9a:3e:80:1c:f6:5f:bd:bc:f2:7c:e4:b4:
ab:6f:57:56:4d:3c:20:ab:84:ca:b1:a4:1a:49:a1:77:37:06:
ca:71:bb:fb:ce:b7:6e:99:94:52:9d:9f:e1:de:4b:1e:e0:7b:
72:7b:ad:4c:94:e4:ff:ac:ca:cf:20:6b:36:a4:db:59:c1:79:
5a:23:ae:fc:24:14:d6:d8:78:46:6f:82:af:82:69:1d:7f:e4:
29:1d:33:54:9d:10:20:d0:6c:71:f8:e3:3d:55:5e:64:ff:8a:
41:59:53:38:6d:66:82:3e:88:7c:5a:64:ac:8e:74:7f:d1:72:
3a:60:27:02:12:8c:90:53:b8:b9:89:0a:b5:a2:6d:fe:b0:3e:
0e:eb:95:64:24:9c:31:0d:ae:57:e9:15:db:b6:24:3e:47:ec:
d9:62:a0:0d:33:fe:23:a1:74:c0:cb:86:52:4e:c0:d2:a0:d1:
e4:e7:40:74:33:c7:42:4f:85:75:dd:56:5e:15:5f:a1:2b:f7:
df:87:24:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURbDRVBU3sirV/JU7To956MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjZjUzNDAyZmE3NmZhMDYzNzZjZGVhNmJjZDM5NWUxODAw
NzlkYjcwHhcNMjUwMjE3MDEwMDU4WhcNMjUwMjE4MDEwMDU4WjAzMTEwLwYDVQQD
EyhiZmYxY2ViZWQ0NWIxMzdjZTk3NzJlN2IzNWNhMDFmNmE0YzRiYjdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA09cZWgEacfHrXNFsxzqcUg0zqkeE
bKMjCF7Mql6FvbMb6r1dTqNNGZ/XwNumnTs/q+knNGpHYKAVRE5u4aGcNcNfBDMT
B+3t1hgpXTRoURc3Rz1Ju+nhbJ5ttA3upaUettjwEh/jK/nDUiN28Qp+pOnF91Vx
DuL0uXLnAAceC0gy7adO0curfNwuC4gUlvhZyAZ8s021EP5iiVOoa3FqCdb+7b0P
aHEOW6LIcgzd0xZ6UKqa9SSpg8SbSqaMaeC4YL5HGc6N8HgycQMGShwSOWLwXeoF
nX8kComntbbXipKa4QlnS2S31bEBVwYHlK2SqGpuSsjRJK4COjGsIZUDLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL/xzr7UWxN86XcuezXKAfakxLt9MB8GA1UdIwQY
MBaAFPz1NAL6dvoGN2zeprzTleGAB523MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1BVMEF2cDItZ1kzYk42bXZOT1Y0WUFIbmJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni84YzgzMTMtZWQxYy00MTRiLWI0Y2Mt
NWVkMDU3MDI1NTE2LzEvX1BVMEF2cDItZ1kzYk42bXZOT1Y0WUFIbmJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni84YzgzMTMtZWQxYy00MTRiLWI0Y2MtNWVkMDU3MDI1NTE2
LzEvX1BVMEF2cDItZ1kzYk42bXZOT1Y0WUFIbmJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkDJ+hins
9tVhP5o+UYHCpQOV+ct1JbqREKYcmd+ZUkHXBpDNgy9mQHBRI5R4VL05XbZOQEa3
kfM/QSFXmj6AHPZfvbzyfOS0q29XVk08IKuEyrGkGkmhdzcGynG7+863bpmUUp2f
4d5LHuB7cnutTJTk/6zKzyBrNqTbWcF5WiOu/CQU1th4Rm+Cr4JpHX/kKR0zVJ0Q
INBscfjjPVVeZP+KQVlTOG1mgj6IfFpkrI50f9FyOmAnAhKMkFO4uYkKtaJt/rA+
DuuVZCScMQ2uV+kV27YkPkfs2WKgDTP+I6F0wMuGUk7A0qDR5OdAdDPHQk+Fdd1W
XhVfoSv334cksg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:47 2025 by rpki-client