Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
File: O9_XYE36DriuIOkPzxMDk7ioVko.mft (raw, json)
Hash identifier: 4PdONL2Wh4X1hYVh+6KvDE6HBPF6gnR5Prf5/jOWgE4=
Subject key identifier: 14:E5:E0:17:C1:67:B4:53:7C:98:54:9E:BF:10:5D:91:85:12:75:09
Authority key identifier: 3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
Certificate issuer: /CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Certificate serial: 0195127E7686F9C2DB4503C9163D4BAC404F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
Manifest number: 1457
Signing time: Mon 17 Feb 2025 06:00:32 +0000
Manifest this update: Mon 17 Feb 2025 06:00:32 +0000
Manifest next update: Tue 18 Feb 2025 06:00:32 +0000
Files and hashes: 1: O9_XYE36DriuIOkPzxMDk7ioVko.crl (hash: VSJQP6IeZKvTXhI/+tUxO2kj4fZiC5PAjfx0CurfoKs=)
2: m0kgiTT_WYsp23pJuD7SLX4KQwM.roa (hash: VIdUf2MaaJNNuBUU6XlHsX2gourJRTd5TApzwygVz+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:76:86:f9:c2:db:45:03:c9:16:3d:4b:ac:40:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Validity
Not Before: Feb 17 06:00:32 2025 GMT
Not After : Feb 18 06:00:32 2025 GMT
Subject: CN=14e5e017c167b4537c98549ebf105d9185127509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:08:66:83:63:40:c2:bd:53:79:d8:ac:c2:
d9:90:26:aa:95:60:7e:ff:e4:d4:b9:10:fa:f7:64:
49:38:28:6a:c1:a9:6d:f4:92:d2:88:3a:d5:ce:24:
36:42:56:58:6f:79:aa:db:e7:7d:d8:50:ce:91:23:
a6:41:28:88:90:34:42:3d:1a:f2:54:55:18:06:78:
08:23:87:ba:cc:1c:ac:99:e6:0f:08:53:22:34:95:
26:42:62:80:20:d9:01:82:53:20:fa:b9:43:8c:c0:
f1:13:c4:19:62:8b:a2:5a:6d:8e:ea:eb:db:82:fd:
9c:ec:67:ef:77:16:e9:24:26:d8:9a:5c:70:1e:c9:
41:96:43:c9:d8:b8:80:c9:4a:65:74:67:bc:bc:ff:
2f:5f:05:98:4f:10:eb:c4:54:c8:a7:83:89:c9:d6:
2c:7d:f8:59:0d:75:93:b6:58:24:00:06:11:22:5c:
64:71:1e:1b:39:dc:4f:9d:1e:f8:c9:f5:a9:f1:3f:
03:fd:53:a0:fe:dc:54:4a:c8:8c:fa:6f:4d:62:4f:
ac:ee:d3:94:cb:17:40:cf:0b:d0:56:04:06:df:fe:
8c:e0:8f:e4:ca:db:e3:74:42:72:01:d4:b1:7e:6b:
2b:8f:9b:aa:06:55:1c:89:27:79:b4:1e:64:61:93:
d1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E5:E0:17:C1:67:B4:53:7C:98:54:9E:BF:10:5D:91:85:12:75:09
X509v3 Authority Key Identifier:
keyid:3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:c4:11:bc:fe:8c:bf:4a:05:25:71:05:34:60:95:92:01:a2:
f4:37:83:25:e5:2b:fb:c9:fb:84:c0:11:8c:85:7f:8d:b8:d3:
7e:f9:aa:d6:7a:80:40:6f:6a:c5:82:6b:58:02:46:d7:36:3f:
a3:c2:1c:40:61:b4:97:a7:2d:1b:4d:7f:46:20:dd:d3:3c:85:
73:37:98:22:2c:0c:e2:4c:66:02:8e:e4:c9:bc:9e:2f:1e:1a:
f2:c7:96:91:e4:76:eb:4c:bd:56:c3:e9:78:af:d3:c9:13:1c:
79:79:cb:fa:27:46:0b:c4:e6:af:59:de:0b:94:64:61:34:b1:
a4:31:a8:3d:bd:ef:86:6d:3d:2f:c0:1a:9d:65:be:24:92:0a:
2a:af:6d:11:68:f6:cf:2f:f3:7a:88:fa:03:14:d2:12:6d:4a:
b0:d1:af:f3:77:0d:47:bc:b7:34:10:65:f0:e7:bb:71:c3:61:
53:c2:fb:a0:8c:95:9d:ef:da:20:3b:99:70:5d:4f:d2:7a:45:
74:0c:44:d2:5d:6b:bd:cd:a6:86:bc:57:16:80:4c:be:67:d4:
c7:ce:de:5e:4c:b0:5a:81:99:5a:e2:a8:35:2f:b7:ce:46:16:
21:1f:22:20:4a:58:02:df:21:be:c7:5c:49:73:99:01:1b:89:
40:c1:7c:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSfnaG+cLbRQPJFj1LrEBPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZGZkNzYwNGRmYTBlYjhhZTIwZTkwZmNmMTMwMzkzYjhh
ODU2NGEwHhcNMjUwMjE3MDYwMDMyWhcNMjUwMjE4MDYwMDMyWjAzMTEwLwYDVQQD
EygxNGU1ZTAxN2MxNjdiNDUzN2M5ODU0OWViZjEwNWQ5MTg1MTI3NTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufAIZoNjQMK9U3nYrMLZkCaqlWB+
/+TUuRD692RJOChqwalt9JLSiDrVziQ2QlZYb3mq2+d92FDOkSOmQSiIkDRCPRry
VFUYBngII4e6zBysmeYPCFMiNJUmQmKAINkBglMg+rlDjMDxE8QZYouiWm2O6uvb
gv2c7GfvdxbpJCbYmlxwHslBlkPJ2LiAyUpldGe8vP8vXwWYTxDrxFTIp4OJydYs
ffhZDXWTtlgkAAYRIlxkcR4bOdxPnR74yfWp8T8D/VOg/txUSsiM+m9NYk+s7tOU
yxdAzwvQVgQG3/6M4I/kytvjdEJyAdSxfmsrj5uqBlUciSd5tB5kYZPRRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBTl4BfBZ7RTfJhUnr8QXZGFEnUJMB8GA1UdIwQY
MBaAFDvf12BN+g64riDpD88TA5O4qFZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzlfWFlFMzZEcml1SU9rUHp4TURrN2lvVmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS84ZGMyYzctM2ZjMC00NDZkLTgwN2Mt
ZWY2YzllYWQ2MTFjLzEvTzlfWFlFMzZEcml1SU9rUHp4TURrN2lvVmtvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS84ZGMyYzctM2ZjMC00NDZkLTgwN2MtZWY2YzllYWQ2MTFj
LzEvTzlfWFlFMzZEcml1SU9rUHp4TURrN2lvVmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl8QRvP6M
v0oFJXEFNGCVkgGi9DeDJeUr+8n7hMARjIV/jbjTfvmq1nqAQG9qxYJrWAJG1zY/
o8IcQGG0l6ctG01/RiDd0zyFczeYIiwM4kxmAo7kybyeLx4a8seWkeR260y9VsPp
eK/TyRMceXnL+idGC8Tmr1neC5RkYTSxpDGoPb3vhm09L8AanWW+JJIKKq9tEWj2
zy/zeoj6AxTSEm1KsNGv83cNR7y3NBBl8Oe7ccNhU8L7oIyVne/aIDuZcF1P0npF
dAxE0l1rvc2mhrxXFoBMvmfUx87eXkywWoGZWuKoNS+3zkYWIR8iIEpYAt8hvsdc
SXOZARuJQMF8gQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:17 2025 by rpki-client