Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
File: pQnoZXbAZeFL--6PZSq2wnnM3hI.mft (raw, json)
Hash identifier: kz69ft108tIMSWbq9rLwGygQLBVnH11dYRwk8SQBWF8=
Subject key identifier: C6:43:97:BD:B2:0F:AB:E7:52:0B:63:8B:AD:84:15:22:BB:E9:0D:B4
Authority key identifier: A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
Certificate issuer: /CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Certificate serial: 0194C4631C4A395677DC2FFEA05177D23B8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
Manifest number: 0D6B
Signing time: Sun 02 Feb 2025 02:00:17 +0000
Manifest this update: Sun 02 Feb 2025 02:00:17 +0000
Manifest next update: Mon 03 Feb 2025 02:00:17 +0000
Files and hashes: 1: eoOnLGiO6CFkl49Rw92BKVWZ1YY.roa (hash: 5KK2WxAAZ4SHFL6JTNlCRgBRKCCitoVvyQFa3VeriMw=)
2: pQnoZXbAZeFL--6PZSq2wnnM3hI.crl (hash: jdZPRGHj8ENkA+RssKLeupjWb3AuRsw3623+ZcHUrsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:1c:4a:39:56:77:dc:2f:fe:a0:51:77:d2:3b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Validity
Not Before: Feb 2 02:00:17 2025 GMT
Not After : Feb 3 02:00:17 2025 GMT
Subject: CN=c64397bdb20fabe7520b638bad841522bbe90db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8c:69:cc:33:c4:bd:cb:30:b2:14:cd:1b:1f:
e5:05:c0:cd:1c:f3:39:8c:f8:6e:8a:e8:84:76:0b:
1e:77:dd:c5:ed:d2:b0:93:2d:b2:a0:8a:1d:c7:e6:
00:ea:36:85:bf:41:6d:d4:fc:b6:5d:7a:50:80:fe:
c0:2a:f2:3d:37:23:8f:f0:c8:73:67:2b:7a:4a:f6:
ae:a9:56:49:e0:61:77:1b:ec:e6:02:b6:a3:01:19:
b7:c0:85:87:f3:77:04:e3:30:0a:cf:75:f6:6e:5b:
20:50:fd:d5:be:64:fe:75:f1:28:35:fd:b1:51:7a:
f8:b5:b9:9c:56:25:bb:1f:82:55:ca:33:af:5a:b5:
e5:ea:1b:c8:e4:e4:8c:e8:4a:40:65:df:e3:d8:c2:
e4:a7:dc:eb:85:e5:97:56:e4:6e:17:d3:ec:5c:4a:
7a:71:e6:59:b6:97:35:6d:e9:6f:2b:d3:d8:7f:01:
fc:30:55:90:00:05:46:a9:0f:34:ab:5e:b3:d4:67:
c7:2c:cf:b1:83:87:b6:b7:75:ea:ad:60:3b:b6:bf:
80:91:de:6d:4a:e8:c9:4b:79:cb:2b:c6:2e:b4:7f:
72:aa:4d:80:97:e6:86:be:95:cd:eb:82:be:2c:5d:
5c:ef:d8:30:22:f3:17:0c:46:d0:e0:84:a6:c3:ca:
ce:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:43:97:BD:B2:0F:AB:E7:52:0B:63:8B:AD:84:15:22:BB:E9:0D:B4
X509v3 Authority Key Identifier:
keyid:A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:22:e1:ce:e6:f4:14:6e:26:33:9f:a1:f8:3e:ea:cf:ca:e2:
d7:a6:a8:23:72:dd:a3:23:e6:7c:02:35:ae:5b:f8:99:07:95:
34:b3:ff:c7:7e:d4:73:c5:14:3a:0e:7e:3e:18:d8:3c:de:77:
f3:ab:ed:0b:b1:80:1d:ea:c5:12:db:f5:c6:a8:3a:6a:2d:a2:
ac:3b:68:4b:e8:95:9a:c8:16:2c:ab:49:73:47:a9:9b:d3:26:
6f:6f:fb:d5:9e:33:f2:ed:3e:7f:b8:df:02:2d:aa:1c:22:1a:
c4:b0:a2:d1:cc:9a:40:53:89:ec:2e:0c:04:f7:07:bb:3d:5a:
66:15:c0:a8:a6:7b:66:9f:4f:05:71:53:f5:03:da:f0:f3:83:
96:22:bb:f9:83:fa:8d:41:03:be:46:4f:88:61:72:df:81:79:
52:2a:3b:2e:bf:b6:19:1d:c0:a1:f3:14:34:b5:f1:cf:4e:75:
a5:a3:39:67:31:b0:64:19:63:c2:dd:b2:ef:46:e6:5c:c9:42:
ae:a3:47:91:60:a9:92:3f:0c:12:62:1c:4d:0c:0b:c0:e3:a0:
8d:da:54:c1:cf:6f:31:8c:a8:5a:5f:2c:d2:65:da:21:ab:ae:
9d:c4:62:a2:7d:03:41:0d:de:87:99:42:83:66:12:02:28:41:
aa:ff:1a:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTEYxxKOVZ33C/+oFF30juPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MDllODY1NzZjMDY1ZTE0YmZiZWU4ZjY1MmFiNmMyNzlj
Y2RlMTIwHhcNMjUwMjAyMDIwMDE3WhcNMjUwMjAzMDIwMDE3WjAzMTEwLwYDVQQD
EyhjNjQzOTdiZGIyMGZhYmU3NTIwYjYzOGJhZDg0MTUyMmJiZTkwZGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhoxpzDPEvcswshTNGx/lBcDNHPM5
jPhuiuiEdgsed93F7dKwky2yoIodx+YA6jaFv0Ft1Py2XXpQgP7AKvI9NyOP8Mhz
Zyt6SvauqVZJ4GF3G+zmArajARm3wIWH83cE4zAKz3X2blsgUP3VvmT+dfEoNf2x
UXr4tbmcViW7H4JVyjOvWrXl6hvI5OSM6EpAZd/j2MLkp9zrheWXVuRuF9PsXEp6
ceZZtpc1belvK9PYfwH8MFWQAAVGqQ80q16z1GfHLM+xg4e2t3XqrWA7tr+Akd5t
SujJS3nLK8YutH9yqk2Al+aGvpXN64K+LF1c79gwIvMXDEbQ4ISmw8rOCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMZDl72yD6vnUgtji62EFSK76Q20MB8GA1UdIwQY
MBaAFKUJ6GV2wGXhS/vuj2UqtsJ5zN4SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFFub1pYYkFaZUZMLS02UFpTcTJ3bm5NM2hJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8wMTQyNDUtODY4NS00YWYzLTkzODct
YTBmNTc0MmIxYjA0LzEvcFFub1pYYkFaZUZMLS02UFpTcTJ3bm5NM2hJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8wMTQyNDUtODY4NS00YWYzLTkzODctYTBmNTc0MmIxYjA0
LzEvcFFub1pYYkFaZUZMLS02UFpTcTJ3bm5NM2hJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIiLhzub0
FG4mM5+h+D7qz8ri16aoI3LdoyPmfAI1rlv4mQeVNLP/x37Uc8UUOg5+PhjYPN53
86vtC7GAHerFEtv1xqg6ai2irDtoS+iVmsgWLKtJc0epm9Mmb2/71Z4z8u0+f7jf
Ai2qHCIaxLCi0cyaQFOJ7C4MBPcHuz1aZhXAqKZ7Zp9PBXFT9QPa8PODliK7+YP6
jUEDvkZPiGFy34F5Uio7Lr+2GR3AofMUNLXxz051paM5ZzGwZBljwt2y70bmXMlC
rqNHkWCpkj8MEmIcTQwLwOOgjdpUwc9vMYyoWl8s0mXaIauuncRion0DQQ3eh5lC
g2YSAihBqv8asg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:02:07 2025 by rpki-client