Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json)
Hash identifier: SINqZOJ2Zc0Gfnt/DspXmXPwYxgqlqGAM64pb62i1tY=
Subject key identifier: E0:D2:E1:F7:DD:E8:2E:4A:C1:14:FD:1C:3D:65:58:28:90:A1:01:33
Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Certificate serial: 0194C4D144744E9D84A9E665A1B752EAE8AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
Manifest number: 0B01
Signing time: Sun 02 Feb 2025 04:00:36 +0000
Manifest this update: Sun 02 Feb 2025 04:00:36 +0000
Manifest next update: Mon 03 Feb 2025 04:00:36 +0000
Files and hashes: 1: aRmXLbWgvqCrB_ieixDwg5bWHH4.roa (hash: NkuU0nUuwUULqqtGwJsRiK14f6VjdQm0HvAAtBo3GJQ=)
2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: x65R4ccKdUw21Al1MhsjIBBlu74XiF2tHLO3gdp7IAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d1:44:74:4e:9d:84:a9:e6:65:a1:b7:52:ea:e8:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Validity
Not Before: Feb 2 04:00:36 2025 GMT
Not After : Feb 3 04:00:36 2025 GMT
Subject: CN=e0d2e1f7dde82e4ac114fd1c3d65582890a10133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b5:e2:79:9f:7b:16:c1:d7:ae:44:e8:39:a2:
69:84:27:cd:17:7b:2d:02:e6:ba:37:2f:d7:c6:f3:
cc:97:d9:37:6b:c8:db:3e:4f:78:0d:c5:39:0b:a0:
46:6c:d2:7e:fb:d4:29:e2:28:41:80:7f:01:67:af:
d2:ce:01:02:18:50:c7:0a:9e:be:2e:9e:ea:fa:6d:
ad:fd:c3:1c:2b:7b:93:67:ed:9c:26:ce:77:20:85:
16:15:f9:b6:e1:cf:ba:b0:44:3a:91:a0:dd:d4:f2:
9d:6e:c5:41:aa:7c:9c:69:67:ac:fd:6e:57:0f:c1:
e3:3a:c7:4a:7b:ed:d5:9d:27:a9:d5:c2:ef:8d:b4:
73:6f:8a:b5:07:cb:34:b5:94:03:93:80:b4:8c:4b:
da:69:a2:a6:af:c9:4d:7d:4f:33:d0:f6:d2:32:5f:
4c:d5:b3:1a:84:1c:fa:32:8a:3d:39:bf:98:9b:c9:
75:65:89:ce:be:f4:61:86:73:54:66:de:4d:a6:38:
ab:05:37:75:0f:63:6d:de:bc:7f:86:fd:67:91:b2:
45:26:65:c6:8a:3d:92:71:bf:a5:e0:7a:f9:1a:7b:
a6:df:87:64:d7:76:15:11:44:c0:e8:0e:c0:53:a5:
44:24:5b:cd:ab:22:09:b3:dc:c9:dc:de:61:e9:1f:
04:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D2:E1:F7:DD:E8:2E:4A:C1:14:FD:1C:3D:65:58:28:90:A1:01:33
X509v3 Authority Key Identifier:
keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:8c:98:f4:79:9d:26:03:06:e5:f6:a2:2e:0f:b0:0a:99:4c:
50:bf:04:0a:4e:f7:fa:30:6d:63:0f:d9:12:d7:44:68:97:48:
6e:a4:ec:5f:9a:24:09:ce:d7:39:38:41:e5:fd:e0:ff:72:34:
5b:17:dd:ff:20:9a:3b:c0:0a:85:b0:88:84:41:d4:37:13:3d:
0e:9d:61:5b:b6:df:3b:ad:6b:99:94:85:7c:67:c7:df:a4:55:
16:ac:ae:f5:3b:52:b0:25:29:cd:f2:b7:ef:b5:b3:ff:93:db:
65:01:06:ac:70:77:fe:ab:bd:94:9e:2b:3a:b9:7a:70:30:9c:
f6:0b:85:18:ad:d6:c9:e1:cd:96:32:cf:5d:73:af:a0:84:52:
b5:a3:12:6b:26:dd:c9:42:36:3f:9c:1f:c6:71:3d:90:87:7c:
f5:6b:d4:97:71:35:8c:93:64:41:7b:07:9f:4d:5c:d6:6d:35:
8d:34:5f:36:11:9b:26:85:2f:82:32:29:06:50:5f:c8:2f:1f:
28:06:07:ac:5e:42:e3:4c:2c:9f:52:cb:09:27:9f:dd:a3:01:
6a:a6:c8:55:7f:e3:1c:62:1c:ae:54:d5:07:1c:37:60:4f:f6:
d4:0d:b1:67:6f:c5:50:4e:34:4f:56:83:5c:4d:1e:80:f4:1d:
bf:6c:64:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTE0UR0Tp2EqeZlobdS6uiqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMGUyYjllNjlmNTYyZGYxNGNmNzcyYmRlMDVmN2RhY2Rl
MjU5NjEwHhcNMjUwMjAyMDQwMDM2WhcNMjUwMjAzMDQwMDM2WjAzMTEwLwYDVQQD
EyhlMGQyZTFmN2RkZTgyZTRhYzExNGZkMWMzZDY1NTgyODkwYTEwMTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7XieZ97FsHXrkToOaJphCfNF3st
Aua6Ny/XxvPMl9k3a8jbPk94DcU5C6BGbNJ++9Qp4ihBgH8BZ6/SzgECGFDHCp6+
Lp7q+m2t/cMcK3uTZ+2cJs53IIUWFfm24c+6sEQ6kaDd1PKdbsVBqnycaWes/W5X
D8HjOsdKe+3VnSep1cLvjbRzb4q1B8s0tZQDk4C0jEvaaaKmr8lNfU8z0PbSMl9M
1bMahBz6Moo9Ob+Ym8l1ZYnOvvRhhnNUZt5NpjirBTd1D2Nt3rx/hv1nkbJFJmXG
ij2Scb+l4Hr5Gnum34dk13YVEUTA6A7AU6VEJFvNqyIJs9zJ3N5h6R8ESQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFODS4ffd6C5KwRT9HD1lWCiQoQEzMB8GA1UdIwQY
MBaAFJ0OK55p9WLfFM93K94F99rN4llhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDct
ZDhkYzM0MDM2Y2U3LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDctZDhkYzM0MDM2Y2U3
LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHoyY9Hmd
JgMG5faiLg+wCplMUL8ECk73+jBtYw/ZEtdEaJdIbqTsX5okCc7XOThB5f3g/3I0
Wxfd/yCaO8AKhbCIhEHUNxM9Dp1hW7bfO61rmZSFfGfH36RVFqyu9TtSsCUpzfK3
77Wz/5PbZQEGrHB3/qu9lJ4rOrl6cDCc9guFGK3WyeHNljLPXXOvoIRStaMSaybd
yUI2P5wfxnE9kId89WvUl3E1jJNkQXsHn01c1m01jTRfNhGbJoUvgjIpBlBfyC8f
KAYHrF5C40wsn1LLCSef3aMBaqbIVX/jHGIcrlTVBxw3YE/21A2xZ2/FUE40T1aD
XE0egPQdv2xkRQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:00:21 2025 by rpki-client