Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
File: NEGOJrKutuqoFD_XGDD5s1Sue7w.mft (raw, json)
Hash identifier: 12sHfIrgjx/5XqxYJ3QCdAbh7cZ24lWhaPzDnxG/+5k=
Subject key identifier: 59:7A:73:D0:CD:A8:80:89:1B:3A:68:7A:3B:4A:AF:F4:70:15:95:8D
Authority key identifier: 34:41:8E:26:B2:AE:B6:EA:A8:14:3F:D7:18:30:F9:B3:54:AE:7B:BC
Certificate issuer: /CN=34418e26b2aeb6eaa8143fd71830f9b354ae7bbc
Certificate serial: 019510C72E67380CA7F0E4B2C31B464AB987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
Manifest number: 0D2B
Signing time: Sun 16 Feb 2025 22:00:43 +0000
Manifest this update: Sun 16 Feb 2025 22:00:43 +0000
Manifest next update: Mon 17 Feb 2025 22:00:43 +0000
Files and hashes: 1: NEGOJrKutuqoFD_XGDD5s1Sue7w.crl (hash: 5ei3D/zMCjYdHCAtEDeOJeDOW5hZ6LV0ZyEPw60oAO0=)
2: nsObN2DjPGcwLXn29XqybNz0hdw.roa (hash: LniUQovzLZtOR3Vslt1uv0Oiv/eQZfXqUz8XebxPz+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:2e:67:38:0c:a7:f0:e4:b2:c3:1b:46:4a:b9:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34418e26b2aeb6eaa8143fd71830f9b354ae7bbc
Validity
Not Before: Feb 16 22:00:43 2025 GMT
Not After : Feb 17 22:00:43 2025 GMT
Subject: CN=597a73d0cda880891b3a687a3b4aaff47015958d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:94:49:91:51:a7:12:a9:b5:43:ad:30:a8:1d:
9a:62:bd:fc:ac:bd:ae:9f:0a:6d:61:26:9d:7a:fd:
46:98:66:95:50:62:46:51:f3:ad:c2:96:b3:3e:5d:
17:f4:ac:0c:63:f4:52:28:42:5d:14:e1:86:22:6d:
52:09:0a:ed:06:c5:20:a0:6a:1d:62:ef:89:02:eb:
ca:d9:be:03:c2:2f:db:5c:1e:b8:1d:c9:7f:0a:c7:
6a:60:24:c9:f0:a5:5f:20:59:2c:7f:ae:99:da:0a:
0e:99:3e:34:37:6d:03:d0:51:4e:b9:5b:62:56:da:
c4:b1:75:f3:dc:01:c1:8c:b4:b7:c4:c6:54:24:90:
21:40:b7:fd:58:aa:4b:23:35:cb:0a:f6:ad:12:62:
47:5f:e5:8b:b9:36:10:73:1d:97:67:19:da:bd:1f:
f5:71:63:a7:2b:5c:84:c3:9f:31:df:38:f4:4d:35:
1a:98:20:48:bf:0b:3e:79:2d:fc:52:f8:74:01:ab:
a7:61:c1:25:c0:d2:f6:2e:9e:69:72:f6:08:14:96:
c9:c0:d9:44:51:58:bc:40:eb:fa:b3:04:f0:9b:ec:
73:79:3b:86:1c:ca:65:5d:66:1c:16:f1:fa:6b:dd:
db:05:0c:6d:e7:ca:53:6b:eb:be:4d:fa:c0:69:b4:
64:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7A:73:D0:CD:A8:80:89:1B:3A:68:7A:3B:4A:AF:F4:70:15:95:8D
X509v3 Authority Key Identifier:
keyid:34:41:8E:26:B2:AE:B6:EA:A8:14:3F:D7:18:30:F9:B3:54:AE:7B:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:c1:7a:56:7b:52:9c:58:9e:b9:a1:42:66:06:ad:75:03:7d:
16:52:73:9d:2a:66:03:1b:61:53:14:cb:ca:c1:e2:e3:8e:8f:
f9:78:51:f0:2a:43:27:1d:eb:b6:d9:bc:9a:76:54:43:86:a2:
29:e0:37:85:ed:24:2b:02:f2:61:07:e3:97:2e:02:5b:7a:2b:
cf:14:31:59:c2:b3:91:e1:78:51:5b:d5:fd:7d:e1:b5:e6:9d:
68:e4:ff:53:96:2b:50:67:4f:05:0e:0b:ea:da:0f:18:ba:0d:
e1:e6:a3:23:41:3e:91:3f:63:7f:11:de:97:8e:3c:d2:21:02:
87:85:73:ae:90:85:6a:cd:c9:3f:d5:3f:59:28:20:46:35:dc:
0b:0d:0f:72:42:a1:ca:44:37:a9:64:00:7b:d3:3b:ea:ef:cc:
a8:b5:12:7d:c4:c5:7b:9a:e8:1b:31:49:7d:06:b6:0d:21:a1:
35:23:39:81:62:79:4f:7d:7f:77:b2:d4:c4:87:2c:91:d3:70:
c2:3a:1a:3d:a3:bf:c7:68:12:82:11:81:03:fe:60:9c:29:d9:
ac:78:8c:7a:24:cf:df:f4:04:df:52:44:b0:81:a8:49:f8:b1:
65:e1:81:6b:8a:15:3b:61:5c:09:25:85:be:4b:ff:50:97:86:
db:ea:32:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQxy5nOAyn8OSywxtGSrmHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0NDE4ZTI2YjJhZWI2ZWFhODE0M2ZkNzE4MzBmOWIzNTRh
ZTdiYmMwHhcNMjUwMjE2MjIwMDQzWhcNMjUwMjE3MjIwMDQzWjAzMTEwLwYDVQQD
Eyg1OTdhNzNkMGNkYTg4MDg5MWIzYTY4N2EzYjRhYWZmNDcwMTU5NThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5RJkVGnEqm1Q60wqB2aYr38rL2u
nwptYSadev1GmGaVUGJGUfOtwpazPl0X9KwMY/RSKEJdFOGGIm1SCQrtBsUgoGod
Yu+JAuvK2b4Dwi/bXB64Hcl/CsdqYCTJ8KVfIFksf66Z2goOmT40N20D0FFOuVti
VtrEsXXz3AHBjLS3xMZUJJAhQLf9WKpLIzXLCvatEmJHX+WLuTYQcx2XZxnavR/1
cWOnK1yEw58x3zj0TTUamCBIvws+eS38Uvh0AaunYcElwNL2Lp5pcvYIFJbJwNlE
UVi8QOv6swTwm+xzeTuGHMplXWYcFvH6a93bBQxt58pTa+u+TfrAabRkFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFl6c9DNqICJGzpoejtKr/RwFZWNMB8GA1UdIwQY
MBaAFDRBjiayrrbqqBQ/1xgw+bNUrnu8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkVHT0pyS3V0dXFvRkRfWEdERDVzMVN1ZTd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8xZDRmMzYtYjk3ZC00ZDk4LWJiMmMt
YjhhMjc0NzJhODk2LzEvTkVHT0pyS3V0dXFvRkRfWEdERDVzMVN1ZTd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My8xZDRmMzYtYjk3ZC00ZDk4LWJiMmMtYjhhMjc0NzJhODk2
LzEvTkVHT0pyS3V0dXFvRkRfWEdERDVzMVN1ZTd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN8F6VntS
nFieuaFCZgatdQN9FlJznSpmAxthUxTLysHi446P+XhR8CpDJx3rttm8mnZUQ4ai
KeA3he0kKwLyYQfjly4CW3orzxQxWcKzkeF4UVvV/X3hteadaOT/U5YrUGdPBQ4L
6toPGLoN4eajI0E+kT9jfxHel4480iECh4VzrpCFas3JP9U/WSggRjXcCw0PckKh
ykQ3qWQAe9M76u/MqLUSfcTFe5roGzFJfQa2DSGhNSM5gWJ5T31/d7LUxIcskdNw
wjoaPaO/x2gSghGBA/5gnCnZrHiMeiTP3/QE31JEsIGoSfixZeGBa4oVO2FcCSWF
vkv/UJeG2+oyJA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:29 2025 by rpki-client