Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: u3/1SVPmhWpo7M4gyuiAEUmBEzS3URuaIXdonVLiazw=
Subject key identifier: 8B:68:F5:12:89:10:9E:53:6D:1C:3A:5E:BC:D0:61:EB:F3:14:B2:81
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 0195116B9B820B122BDD18FB90FF0794DB98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 048F
Signing time: Mon 17 Feb 2025 01:00:19 +0000
Manifest this update: Mon 17 Feb 2025 01:00:19 +0000
Manifest next update: Tue 18 Feb 2025 01:00:19 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: p3TJfKpNQ9umBjLA7weDhrwMts6/xZWbQGS10Hm+Onw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:9b:82:0b:12:2b:dd:18:fb:90:ff:07:94:db:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Feb 17 01:00:19 2025 GMT
Not After : Feb 18 01:00:19 2025 GMT
Subject: CN=8b68f51289109e536d1c3a5ebcd061ebf314b281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:87:a7:37:1b:c3:f3:e5:9a:b1:19:f7:6b:5b:
39:73:be:27:d3:73:e0:77:be:3a:e5:65:e9:6e:e8:
ed:97:ff:ce:a6:89:f5:66:f3:3e:07:fe:4e:49:60:
93:22:8e:6e:4a:1e:83:cc:79:09:65:b3:ca:51:91:
29:4a:5b:e8:87:c0:31:65:38:90:de:c4:cf:b3:c8:
9f:1c:81:29:fc:de:05:98:b4:fb:ee:89:4b:4d:d1:
06:b1:6b:19:71:b2:e4:74:3a:ba:44:44:cf:66:3a:
89:0d:ce:21:bf:21:6c:c0:89:40:a8:01:56:88:3e:
22:d6:91:f6:a9:1e:d8:fb:0d:72:8d:7e:a3:0c:8a:
b8:ba:78:e9:90:bf:25:1a:cf:c6:ed:12:d1:39:6d:
51:57:b4:52:66:f7:2f:89:4c:6b:a2:f0:a8:b3:f5:
75:c8:2e:18:09:5d:02:6c:c6:7d:a1:9f:a0:93:5e:
7d:35:bc:20:79:d4:07:76:7a:23:de:d3:88:d4:ff:
92:cc:90:bc:65:5d:5a:a6:b6:33:f4:04:1e:cd:bd:
26:80:37:fe:24:dc:e4:ff:96:08:83:86:d7:f8:c5:
3d:d6:76:91:f8:2f:fd:51:f4:53:d2:c7:fc:c7:10:
6a:42:f1:8b:2e:10:7b:4e:c5:27:d9:5a:cb:5c:d7:
5f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:68:F5:12:89:10:9E:53:6D:1C:3A:5E:BC:D0:61:EB:F3:14:B2:81
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:50:6e:5d:cb:30:b4:17:13:a0:3d:94:7e:66:95:8b:c8:5b:
f9:b1:aa:b5:3d:11:78:88:ad:96:db:7e:e5:45:c8:5f:0b:0a:
c2:3b:6f:61:46:20:51:0c:e2:69:c1:2c:ad:6a:a8:ed:ba:1f:
ae:08:16:7e:a2:30:75:36:e4:6d:7a:b4:18:e5:bf:29:2f:f5:
28:48:b8:67:04:79:8b:eb:17:72:75:f1:3f:97:0c:1f:95:f6:
15:4d:bd:37:58:ff:b5:07:14:0c:9c:6f:50:4c:94:f1:39:e4:
47:ff:05:fb:e7:a2:97:96:5a:75:97:3c:63:c7:f1:1d:eb:b8:
9a:61:0f:80:58:0c:52:80:8c:8d:48:be:20:1d:9e:5e:4d:9c:
c4:61:41:d2:a9:72:f1:38:99:99:ad:74:2a:e0:00:69:8c:e6:
51:f3:14:9a:f1:4a:2c:87:32:c6:6f:1a:9f:b4:4e:fb:54:4c:
38:d6:42:fa:66:de:47:58:b2:1c:ef:32:40:7e:49:99:ba:cb:
c1:c9:b3:41:90:f0:24:cd:0b:b0:a6:dd:b7:00:f5:93:8d:75:
f4:e9:74:3e:c3:78:93:4a:a5:1b:eb:0e:f4:74:6d:db:a1:ba:
68:37:73:bf:07:ec:7e:9b:fa:13:b4:13:fb:61:7b:e5:a2:0d:
2c:8b:ce:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURa5uCCxIr3Rj7kP8HlNuYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ODI5YjQ0OGFkOGY5NjNhMGVjZmY4YjIyMTZjYTljZTlj
ZTZmNDEwHhcNMjUwMjE3MDEwMDE5WhcNMjUwMjE4MDEwMDE5WjAzMTEwLwYDVQQD
Eyg4YjY4ZjUxMjg5MTA5ZTUzNmQxYzNhNWViY2QwNjFlYmYzMTRiMjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIenNxvD8+WasRn3a1s5c74n03Pg
d7465WXpbujtl//Opon1ZvM+B/5OSWCTIo5uSh6DzHkJZbPKUZEpSlvoh8AxZTiQ
3sTPs8ifHIEp/N4FmLT77olLTdEGsWsZcbLkdDq6RETPZjqJDc4hvyFswIlAqAFW
iD4i1pH2qR7Y+w1yjX6jDIq4unjpkL8lGs/G7RLROW1RV7RSZvcviUxrovCos/V1
yC4YCV0CbMZ9oZ+gk159NbwgedQHdnoj3tOI1P+SzJC8ZV1aprYz9AQezb0mgDf+
JNzk/5YIg4bX+MU91naR+C/9UfRT0sf8xxBqQvGLLhB7TsUn2VrLXNdfRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIto9RKJEJ5TbRw6XrzQYevzFLKBMB8GA1UdIwQY
MBaAFGmCm0SK2PljoOz/iyIWypzpzm9BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVlLYlJJclktV09nN1AtTEloYktuT25PYjBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTBlMmYtZGVjYy00ODg3LThlMDMt
ZTc2YjU0NDY2NjU0LzEvYVlLYlJJclktV09nN1AtTEloYktuT25PYjBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC81OTBlMmYtZGVjYy00ODg3LThlMDMtZTc2YjU0NDY2NjU0
LzEvYVlLYlJJclktV09nN1AtTEloYktuT25PYjBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdVBuXcsw
tBcToD2UfmaVi8hb+bGqtT0ReIitltt+5UXIXwsKwjtvYUYgUQziacEsrWqo7bof
rggWfqIwdTbkbXq0GOW/KS/1KEi4ZwR5i+sXcnXxP5cMH5X2FU29N1j/tQcUDJxv
UEyU8TnkR/8F++eil5ZadZc8Y8fxHeu4mmEPgFgMUoCMjUi+IB2eXk2cxGFB0qly
8TiZma10KuAAaYzmUfMUmvFKLIcyxm8an7RO+1RMONZC+mbeR1iyHO8yQH5JmbrL
wcmzQZDwJM0LsKbdtwD1k4119Ol0PsN4k0qlG+sO9HRt26G6aDdzvwfsfpv6E7QT
+2F75aINLIvOIg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:01 2025 by rpki-client