Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
File: 8gI-dqaOpsn3DT6nLfhOU9whck8.mft (raw, json)
Hash identifier: K3VUSNp4BfApmwFjT0wvyNSz6KOhNXvkf9DfnIRaxeM=
Subject key identifier: 0F:49:A2:3C:2B:C0:1A:36:9B:E4:C5:13:B3:2C:39:8A:90:28:D8:55
Authority key identifier: F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
Certificate issuer: /CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Certificate serial: 019510C6A04B5D89B9ED722A9F54FAB22999
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
Manifest number: 0CAA
Signing time: Sun 16 Feb 2025 22:00:07 +0000
Manifest this update: Sun 16 Feb 2025 22:00:07 +0000
Manifest next update: Mon 17 Feb 2025 22:00:07 +0000
Files and hashes: 1: 8gI-dqaOpsn3DT6nLfhOU9whck8.crl (hash: dQOvVWJ0BGoq4tn6NHAPPf8PuOZU1KN1ai7ifLfCGrw=)
2: xmm2JL7TcI6ebRwScNNxmj8JWuo.roa (hash: fkFUQl1m0mbIlDS4H4YUitr8IcfvKPdCtORJm2ZIyMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:a0:4b:5d:89:b9:ed:72:2a:9f:54:fa:b2:29:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Validity
Not Before: Feb 16 22:00:07 2025 GMT
Not After : Feb 17 22:00:07 2025 GMT
Subject: CN=0f49a23c2bc01a369be4c513b32c398a9028d855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3b:84:d4:bf:65:f1:34:b7:57:9f:d5:80:cd:
04:6b:9a:bd:9a:1b:07:8d:7a:65:d6:37:8f:c5:33:
20:73:5e:27:f5:93:1a:f4:4e:61:b9:14:25:cb:67:
36:8c:da:25:fc:76:61:33:d9:1a:92:b9:17:fe:0e:
aa:f9:66:64:e9:bf:c9:ff:2d:16:c5:56:eb:3d:e6:
75:be:3e:6c:06:6c:43:c9:73:94:09:ab:7e:0f:95:
d7:8e:96:28:61:6d:ff:ef:cc:ce:cb:84:dd:a4:3d:
61:92:6f:10:bf:6b:c5:00:21:e6:79:8d:d1:83:8d:
d6:37:bf:f6:17:44:e4:ea:a3:18:3e:66:36:34:05:
d8:a4:c0:5c:fb:cc:d5:9f:a1:47:b1:4d:a2:d3:fe:
05:2a:bf:2f:9c:81:f0:f6:47:48:b0:23:ce:de:a8:
55:2b:05:8e:b0:f0:ad:1f:cc:c8:fb:4f:99:bb:db:
75:de:5d:05:a7:d7:fd:14:76:b3:4b:c1:d5:b0:7a:
51:b6:e2:0c:d1:d1:a3:f3:df:8e:e6:7e:a2:da:bb:
40:2c:1e:5f:2e:69:40:95:93:18:11:a1:93:df:7c:
d1:b6:b1:8d:c8:74:9a:44:1b:9a:3a:27:50:84:a9:
7f:93:ab:28:ad:fb:68:02:c0:ab:89:ee:e1:c6:a1:
b0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:49:A2:3C:2B:C0:1A:36:9B:E4:C5:13:B3:2C:39:8A:90:28:D8:55
X509v3 Authority Key Identifier:
keyid:F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:26:c4:d6:8f:e6:e7:de:ee:c5:21:d3:b9:53:04:b1:c8:a0:
be:0b:48:1f:b4:a9:bb:5a:ae:84:b6:38:76:76:f6:4a:fa:4b:
4c:6c:db:f7:b3:1c:b8:64:8d:75:ec:8c:78:5e:90:18:5e:a2:
90:40:1e:1c:11:27:63:21:5b:11:4b:cd:40:7c:1a:a9:bf:1a:
c9:f1:13:c9:ce:57:af:0d:40:b1:dd:88:58:5d:fe:87:44:c8:
81:88:5c:63:e8:e2:ad:75:ff:1c:d9:58:fc:17:a8:34:9f:39:
43:a4:e4:65:ec:48:c3:83:24:73:02:e6:3f:45:0e:bf:e0:3c:
cf:b0:90:a3:b1:6f:44:01:d6:50:1e:1c:f4:64:d4:a2:85:1d:
46:42:db:37:51:be:aa:57:ae:39:30:cd:16:cd:2f:8d:3a:0c:
e5:5a:ea:ee:89:65:71:46:de:db:b8:5f:18:9b:47:50:e8:13:
56:17:b0:ed:f4:e4:74:4f:74:e2:83:e3:0b:d9:c7:dd:2b:f8:
20:7c:13:ee:5e:54:6d:4f:df:b0:07:87:ba:6d:44:65:a6:16:
c8:1b:f2:b5:6f:cf:1e:07:9e:88:03:dc:f0:23:a8:2e:e2:c9:
ca:b0:c6:66:a5:87:bb:c4:02:ca:a3:c6:2a:59:7f:0d:63:5c:
96:cf:f9:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQxqBLXYm57XIqn1T6simZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyMDIzZTc2YTY4ZWE2YzlmNzBkM2VhNzJkZjg0ZTUzZGMy
MTcyNGYwHhcNMjUwMjE2MjIwMDA3WhcNMjUwMjE3MjIwMDA3WjAzMTEwLwYDVQQD
EygwZjQ5YTIzYzJiYzAxYTM2OWJlNGM1MTNiMzJjMzk4YTkwMjhkODU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjuE1L9l8TS3V5/VgM0Ea5q9mhsH
jXpl1jePxTMgc14n9ZMa9E5huRQly2c2jNol/HZhM9kakrkX/g6q+WZk6b/J/y0W
xVbrPeZ1vj5sBmxDyXOUCat+D5XXjpYoYW3/78zOy4TdpD1hkm8Qv2vFACHmeY3R
g43WN7/2F0Tk6qMYPmY2NAXYpMBc+8zVn6FHsU2i0/4FKr8vnIHw9kdIsCPO3qhV
KwWOsPCtH8zI+0+Zu9t13l0Fp9f9FHazS8HVsHpRtuIM0dGj89+O5n6i2rtALB5f
LmlAlZMYEaGT33zRtrGNyHSaRBuaOidQhKl/k6sorftoAsCrie7hxqGwUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA9JojwrwBo2m+TFE7MsOYqQKNhVMB8GA1UdIwQY
MBaAFPICPnamjqbJ9w0+py34TlPcIXJPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGdJLWRxYU9wc24zRFQ2bkxmaE9VOXdoY2s4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83ZThlZDYtYWU3Mi00ZDNmLTk5OWQt
NjdjM2FmZmJkMWFhLzEvOGdJLWRxYU9wc24zRFQ2bkxmaE9VOXdoY2s4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC83ZThlZDYtYWU3Mi00ZDNmLTk5OWQtNjdjM2FmZmJkMWFh
LzEvOGdJLWRxYU9wc24zRFQ2bkxmaE9VOXdoY2s4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUCbE1o/m
597uxSHTuVMEscigvgtIH7Spu1quhLY4dnb2SvpLTGzb97McuGSNdeyMeF6QGF6i
kEAeHBEnYyFbEUvNQHwaqb8ayfETyc5Xrw1Asd2IWF3+h0TIgYhcY+jirXX/HNlY
/BeoNJ85Q6TkZexIw4MkcwLmP0UOv+A8z7CQo7FvRAHWUB4c9GTUooUdRkLbN1G+
qleuOTDNFs0vjToM5Vrq7ollcUbe27hfGJtHUOgTVhew7fTkdE904oPjC9nH3Sv4
IHwT7l5UbU/fsAeHum1EZaYWyBvytW/PHgeeiAPc8COoLuLJyrDGZqWHu8QCyqPG
Kll/DWNcls/5lA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:11:59 2025 by rpki-client