Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json)
Hash identifier: UKY+1q8XSDdO+B9o/+Fw6ES28vxxQhuGjuuCtJbZvF8=
Subject key identifier: 1D:2E:FD:75:E5:DF:E7:C5:91:17:54:0E:08:3E:59:05:33:35:6E:31
Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502
Certificate serial: 0194C3BEB12827312049A59F37AC89C4AC89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
Manifest number: 10E9
Signing time: Sat 01 Feb 2025 23:00:41 +0000
Manifest this update: Sat 01 Feb 2025 23:00:41 +0000
Manifest next update: Sun 02 Feb 2025 23:00:41 +0000
Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: 2uOCfeoStqDSb0YDskQTo8vhvjPhVl9DKvY5gzjOQZM=)
2: Xe1gxuRIIOL95lwNFDlJJ4LeD98.roa (hash: E3ThdKoNF/zSVQO/0Rh8O4e1tJqwTsPdKIVV0WmD0l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:b1:28:27:31:20:49:a5:9f:37:ac:89:c4:ac:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502
Validity
Not Before: Feb 1 23:00:41 2025 GMT
Not After : Feb 2 23:00:41 2025 GMT
Subject: CN=1d2efd75e5dfe7c59117540e083e590533356e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:cb:b1:90:46:fe:65:58:9e:88:b6:ec:d9:fe:
28:39:eb:1c:b9:d8:0c:e0:fc:49:be:b6:d5:e7:58:
1f:99:d8:d5:9d:a3:77:f3:3f:c4:71:c8:cd:b7:43:
63:df:12:6e:3c:80:e8:4d:df:bc:fe:a2:aa:da:0e:
c7:7a:ed:86:30:a2:5d:bc:1c:83:d2:7e:1b:ea:22:
1a:cc:0a:2b:de:eb:6f:a9:c1:7f:db:63:34:9e:fb:
18:1f:56:14:88:79:d0:96:74:fe:6f:6d:65:dc:90:
e9:4b:87:db:b4:1e:be:1d:99:88:82:d6:41:fa:bf:
6b:05:fa:02:d7:77:34:db:81:93:de:37:55:7e:c6:
54:db:2f:87:0a:dc:dc:99:ff:e4:9c:5d:6d:31:d0:
54:87:12:a7:30:1d:be:25:2e:8f:fc:67:6e:d9:13:
de:6d:49:b8:02:80:24:87:21:12:64:93:9d:ad:4d:
f8:db:d1:e9:11:bc:ea:86:3f:de:d7:96:76:15:6b:
cf:f4:6c:e5:66:56:a2:78:69:ec:06:3a:1c:89:d8:
85:bd:e6:3c:38:d6:f2:d6:3f:10:9a:92:ea:22:dd:
2f:c7:1f:4e:a7:d0:2d:34:9d:6c:bf:8b:eb:5e:33:
8d:c5:bd:03:04:97:ef:fa:59:15:64:19:cc:dc:94:
eb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2E:FD:75:E5:DF:E7:C5:91:17:54:0E:08:3E:59:05:33:35:6E:31
X509v3 Authority Key Identifier:
keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:66:91:ee:42:cd:fc:2b:8f:34:29:09:b8:24:ac:e7:9b:1b:
88:d1:bd:29:cf:fa:e3:06:81:1e:8b:e4:4e:09:bb:ae:26:0e:
6d:7c:33:34:0f:5e:8e:1d:da:be:ad:c2:90:c3:c0:e3:c1:ad:
21:bd:e1:f2:f8:58:ca:c0:a0:4b:67:f8:6b:22:3f:f0:60:9b:
4f:0d:eb:98:b1:18:da:8e:a2:08:50:6e:2c:fd:a6:46:f9:f0:
d7:6b:64:1e:18:93:6a:44:99:f7:01:90:13:1d:ea:10:f4:0b:
b7:1b:32:96:b2:ee:6f:75:d4:5f:26:f0:08:ea:5e:93:ca:8a:
02:61:85:6c:42:38:0b:00:e6:a1:6a:7e:51:c5:ac:aa:49:37:
ff:3f:32:43:fb:fb:0a:f7:70:4b:10:c0:4f:f5:5f:cd:b2:c9:
fa:e4:04:fd:c6:b6:e8:ff:b0:5a:00:a4:9b:72:b1:28:3d:87:
d5:8d:84:e9:26:d6:2c:78:6e:bc:88:ea:04:53:41:92:51:27:
27:e9:5e:34:be:af:93:4d:0e:8a:8d:39:ad:ad:cf:de:96:45:
bc:a9:e1:38:d7:0d:fd:1e:10:82:8d:be:69:e5:29:78:92:2a:
01:17:92:91:1c:9b:9c:c0:52:db:b3:82:8b:33:31:5b:f0:86:
42:86:3f:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDvrEoJzEgSaWfN6yJxKyJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4NTkzZTQwZGE1YTUyZjMyMmRiNWEwNGMyMGZiNDg2ZDRl
MTU1MDIwHhcNMjUwMjAxMjMwMDQxWhcNMjUwMjAyMjMwMDQxWjAzMTEwLwYDVQQD
EygxZDJlZmQ3NWU1ZGZlN2M1OTExNzU0MGUwODNlNTkwNTMzMzU2ZTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA58uxkEb+ZVieiLbs2f4oOescudgM
4PxJvrbV51gfmdjVnaN38z/EccjNt0Nj3xJuPIDoTd+8/qKq2g7Heu2GMKJdvByD
0n4b6iIazAor3utvqcF/22M0nvsYH1YUiHnQlnT+b21l3JDpS4fbtB6+HZmIgtZB
+r9rBfoC13c024GT3jdVfsZU2y+HCtzcmf/knF1tMdBUhxKnMB2+JS6P/Gdu2RPe
bUm4AoAkhyESZJOdrU3429HpEbzqhj/e15Z2FWvP9GzlZlaieGnsBjocidiFveY8
ONby1j8QmpLqIt0vxx9Op9AtNJ1sv4vrXjONxb0DBJfv+lkVZBnM3JTrowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB0u/XXl3+fFkRdUDgg+WQUzNW4xMB8GA1UdIwQY
MBaAFEhZPkDaWlLzIttaBMIPtIbU4VUCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0ZrLVFOcGFVdk1pMjFvRXdnLTBodFRoVlFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85NzAwYzgtZjlhYi00MmE3LWIxZmEt
ZTY4YTA4ZDllNTRmLzEvU0ZrLVFOcGFVdk1pMjFvRXdnLTBodFRoVlFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi85NzAwYzgtZjlhYi00MmE3LWIxZmEtZTY4YTA4ZDllNTRm
LzEvU0ZrLVFOcGFVdk1pMjFvRXdnLTBodFRoVlFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALWaR7kLN
/CuPNCkJuCSs55sbiNG9Kc/64waBHovkTgm7riYObXwzNA9ejh3avq3CkMPA48Gt
Ib3h8vhYysCgS2f4ayI/8GCbTw3rmLEY2o6iCFBuLP2mRvnw12tkHhiTakSZ9wGQ
Ex3qEPQLtxsylrLub3XUXybwCOpek8qKAmGFbEI4CwDmoWp+UcWsqkk3/z8yQ/v7
CvdwSxDAT/VfzbLJ+uQE/ca26P+wWgCkm3KxKD2H1Y2E6SbWLHhuvIjqBFNBklEn
J+leNL6vk00Oio05ra3P3pZFvKnhONcN/R4Qgo2+aeUpeJIqAReSkRybnMBS27OC
izMxW/CGQoY/Jg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:03 2025 by rpki-client