Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File: rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier: V+ckaPyxGjaafIKucTiNth5cqpH1qgc50u8MI47rftU=
Subject key identifier: 90:03:A0:1F:2C:1C:5B:D8:00:4C:D1:DE:66:2F:BF:43:CD:B5:AF:EA
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer: /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial: 019512103D863456067139F8C760DEF366B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number: 0724
Signing time: Mon 17 Feb 2025 04:00:09 +0000
Manifest this update: Mon 17 Feb 2025 04:00:09 +0000
Manifest next update: Tue 18 Feb 2025 04:00:09 +0000
Files and hashes: 1: IhFmVxbE3gn_IPAxvOuH1Dxlo9o.roa (hash: oKXrmB0pSBgjznKzRYUFbiw4D9My9SBHtgqoNaUCBKA=)
2: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: tFWtWYbXQADLFBaOo9eNOu/o1OGJVmzC0Jw1hV0/3wc=)
3: wbXeB63VhLi_7WMIhOdMpk0lCW4.roa (hash: d7dOr+7PutspTBpcReyCrf+E8CzcxyNVV7Zc8qzo3dU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:3d:86:34:56:06:71:39:f8:c7:60:de:f3:66:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Validity
Not Before: Feb 17 04:00:09 2025 GMT
Not After : Feb 18 04:00:09 2025 GMT
Subject: CN=9003a01f2c1c5bd8004cd1de662fbf43cdb5afea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:61:c2:28:68:b5:87:ae:9e:02:85:cf:f0:45:
72:9a:42:9a:64:94:3a:65:6c:c9:25:c8:73:06:06:
be:b2:e1:2f:33:6b:98:21:00:7e:c1:87:cb:8b:a0:
66:99:83:7b:82:a7:ba:4d:2f:64:2a:e6:16:d5:95:
a8:0b:fb:88:d2:e5:8d:8b:7a:51:dc:e8:b6:31:2b:
c4:2c:c0:5d:f5:32:5a:6e:42:06:10:77:0d:46:a1:
ac:71:ca:57:4e:82:cd:b6:65:20:64:8b:b6:04:82:
8c:ea:9d:fe:32:18:73:d9:3d:c1:29:27:b0:21:08:
8a:bd:de:cd:c5:1d:76:81:f5:b2:49:d5:c6:48:e5:
54:7b:c4:d3:1a:46:a6:28:93:57:01:ec:31:95:ea:
e3:fc:9d:21:20:21:2d:23:8a:89:f1:f5:38:84:07:
c7:61:a9:0a:45:58:0b:e8:8c:d5:bc:16:11:1e:ed:
35:29:1c:44:c1:f1:58:e0:af:4c:62:44:db:a4:f6:
2c:ff:1a:82:76:2f:2e:4e:92:c7:ec:5d:0f:17:6e:
f2:03:0b:aa:ff:c6:4a:5d:c1:92:14:6b:67:b9:f3:
c9:84:81:57:97:48:d1:11:98:9e:39:00:65:19:e5:
42:17:76:75:71:8f:82:3b:6c:00:6f:61:33:3b:9c:
66:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:03:A0:1F:2C:1C:5B:D8:00:4C:D1:DE:66:2F:BF:43:CD:B5:AF:EA
X509v3 Authority Key Identifier:
keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:02:48:d3:96:10:93:7f:8d:76:a7:c1:33:fa:34:60:3d:b6:
7b:4f:b2:6d:08:87:7d:d5:02:12:ae:e0:f4:c2:71:90:90:61:
9d:1d:71:e6:7d:b2:bc:a2:63:b2:93:b6:a1:55:f3:ae:d8:13:
15:47:92:e7:e9:9e:e8:7f:6e:cf:b8:49:da:7c:58:e4:17:d5:
7d:0e:a4:c9:c8:af:d4:22:8d:25:e8:64:4d:5c:bc:3e:dc:04:
bc:4f:b7:72:5c:39:26:fa:63:af:d1:b8:0a:e3:9b:d3:4e:d9:
3d:65:ee:61:33:d2:f0:ff:12:24:86:c9:96:a0:3e:03:ad:c5:
40:60:f1:7d:72:b3:12:59:d4:ab:74:07:0b:87:65:1e:5c:c1:
42:d2:61:ad:45:94:de:1a:1f:7a:e1:e3:96:f6:a5:3b:ba:43:
41:00:cb:33:0f:1c:2d:a5:2a:0b:db:bb:6d:20:0a:05:9e:a1:
d6:e9:6c:38:e3:49:b4:29:23:00:d0:2c:b9:18:d0:ee:d3:22:
9c:08:6e:3d:5c:22:e6:d0:a1:11:ec:79:49:05:a7:0a:47:31:
99:70:89:ed:c6:9d:4d:34:dc:76:1c:9a:e7:91:9c:18:f4:2d:
be:84:95:80:48:91:9c:71:63:1a:2d:e1:b5:35:e7:af:2a:c0:
e5:33:31:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSED2GNFYGcTn4x2De82azMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMmQzOGUyMGYyNGQwZTMwYjg2Y2NkODI2MWFjMDAxN2Yx
N2E1YTQwHhcNMjUwMjE3MDQwMDA5WhcNMjUwMjE4MDQwMDA5WjAzMTEwLwYDVQQD
Eyg5MDAzYTAxZjJjMWM1YmQ4MDA0Y2QxZGU2NjJmYmY0M2NkYjVhZmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2HCKGi1h66eAoXP8EVymkKaZJQ6
ZWzJJchzBga+suEvM2uYIQB+wYfLi6BmmYN7gqe6TS9kKuYW1ZWoC/uI0uWNi3pR
3Oi2MSvELMBd9TJabkIGEHcNRqGsccpXToLNtmUgZIu2BIKM6p3+Mhhz2T3BKSew
IQiKvd7NxR12gfWySdXGSOVUe8TTGkamKJNXAewxlerj/J0hICEtI4qJ8fU4hAfH
YakKRVgL6IzVvBYRHu01KRxEwfFY4K9MYkTbpPYs/xqCdi8uTpLH7F0PF27yAwuq
/8ZKXcGSFGtnufPJhIFXl0jREZieOQBlGeVCF3Z1cY+CO2wAb2EzO5xmnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJADoB8sHFvYAEzR3mYvv0PNta/qMB8GA1UdIwQY
MBaAFK0tOOIPJNDjC4bM2CYawAF/F6WkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yZDg3NjEtMjI5Zi00YTM3LTg3YjEt
NDI5OTUzMjNjMDNkLzEvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8yZDg3NjEtMjI5Zi00YTM3LTg3YjEtNDI5OTUzMjNjMDNk
LzEvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMQJI05YQ
k3+NdqfBM/o0YD22e0+ybQiHfdUCEq7g9MJxkJBhnR1x5n2yvKJjspO2oVXzrtgT
FUeS5+me6H9uz7hJ2nxY5BfVfQ6kyciv1CKNJehkTVy8PtwEvE+3clw5Jvpjr9G4
CuOb007ZPWXuYTPS8P8SJIbJlqA+A63FQGDxfXKzElnUq3QHC4dlHlzBQtJhrUWU
3hofeuHjlvalO7pDQQDLMw8cLaUqC9u7bSAKBZ6h1ulsOONJtCkjANAsuRjQ7tMi
nAhuPVwi5tChEex5SQWnCkcxmXCJ7cadTTTcdhya55GcGPQtvoSVgEiRnHFjGi3h
tTXnryrA5TMxYQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:37 2025 by rpki-client