Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: 4zApVVNH4L2e9JITp1MMKfigU9lwWQgIpS4J/9b0hbQ=
Subject key identifier: 5E:58:46:C6:35:C8:A4:1E:A6:A9:7C:8C:09:96:AA:84:6C:00:CD:D3
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 0194BC3C8BF8991EF1E88560EAB833DD6E95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0AA5
Signing time: Fri 31 Jan 2025 12:01:12 +0000
Manifest this update: Fri 31 Jan 2025 12:01:12 +0000
Manifest next update: Sat 01 Feb 2025 12:01:12 +0000
Files and hashes: 1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: Ab32ihT/fffCR7Li7KHKupZQhf7P7+MYakMMA+O3jMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 11:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bc:3c:8b:f8:99:1e:f1:e8:85:60:ea:b8:33:dd:6e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Jan 31 12:01:12 2025 GMT
Not After : Feb 1 12:01:12 2025 GMT
Subject: CN=5e5846c635c8a41ea6a97c8c0996aa846c00cdd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:60:95:5e:e9:0d:93:b7:d7:64:80:7c:c5:dd:
4e:4b:9b:a0:c8:46:b9:e1:a0:24:60:76:65:c5:43:
e6:52:3a:7d:fb:82:d0:33:a8:8e:ba:06:ce:b5:96:
aa:cb:a6:b8:70:87:d1:3e:70:4f:89:86:91:85:ee:
e3:88:81:c1:17:7f:ca:f1:5e:7b:de:1d:5e:2e:8c:
66:a2:ed:f1:40:c3:61:fb:cc:6e:73:d8:9e:ee:b6:
3b:5d:3d:58:75:65:c7:47:54:cf:d4:e9:9c:fc:84:
51:85:c4:db:77:57:3f:b9:bd:61:ef:a3:ac:4f:b9:
3a:04:26:b1:74:04:98:d5:f1:d4:56:f9:b7:55:46:
8f:1a:0f:d1:a3:2b:ec:f5:88:10:eb:ef:ea:56:37:
d8:74:ac:2b:1f:e6:61:cc:74:ea:7d:1a:bb:7a:a2:
dc:76:c8:31:a4:27:26:da:7d:68:77:ab:a0:bb:52:
60:87:4e:87:a5:e5:34:3c:4d:2e:e4:1d:d6:34:e9:
5f:ef:14:f5:49:5c:65:14:9d:e1:b0:86:df:27:9d:
58:a1:20:ff:27:4a:e9:8a:7e:8e:4b:3e:51:c5:72:
67:51:4b:42:3a:c1:41:91:2d:8f:b5:82:95:6b:cf:
70:df:3e:6b:69:48:50:e0:7c:77:64:74:da:0b:9d:
41:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:58:46:C6:35:C8:A4:1E:A6:A9:7C:8C:09:96:AA:84:6C:00:CD:D3
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:75:6d:a3:aa:18:94:d5:85:26:34:37:6e:09:e9:9a:2f:37:
41:52:3e:13:40:6d:9f:2a:8e:6e:59:b3:ea:77:e9:81:69:23:
12:6b:4e:a5:4f:1c:60:85:72:9f:92:4c:fe:fe:4f:3d:f2:ac:
8d:29:06:04:a3:09:5d:c4:20:7c:da:bf:13:76:db:90:42:b8:
73:83:95:48:ca:89:be:9f:57:56:ec:6c:55:e1:c2:62:41:13:
7e:ca:3c:d0:2e:12:99:9f:2b:38:d9:15:f8:db:fb:dd:fa:1e:
95:09:e0:3c:6b:e0:10:91:9e:94:dc:61:2c:28:d9:f0:5c:90:
d3:83:c0:e2:b2:d5:d3:4f:35:f1:ca:a9:ab:00:e3:53:a2:2d:
44:d3:4d:7d:c2:ea:77:5c:ff:f7:76:dd:dc:36:8e:90:da:ee:
7d:63:99:a4:8a:bc:e1:90:51:db:55:c8:7e:24:a1:23:ab:0a:
19:95:cf:2a:7b:74:90:a3:69:32:e9:45:c7:74:fc:dc:26:1f:
9c:e2:8b:10:b2:6b:30:1d:94:31:c4:28:93:83:33:32:8c:4d:
ac:22:86:3c:28:cc:a6:4e:ee:68:e0:93:ac:4d:33:91:89:7d:
8e:66:77:05:86:82:c1:c9:a6:b8:3d:60:10:5e:fb:fd:26:93:
7f:2e:cb:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS8PIv4mR7x6IVg6rgz3W6VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzYjI5YWNjZDRjMGQ1ZjVmODM3N2VhN2Y0NjM0M2I3NjA2
YmFiN2MwHhcNMjUwMTMxMTIwMTEyWhcNMjUwMjAxMTIwMTEyWjAzMTEwLwYDVQQD
Eyg1ZTU4NDZjNjM1YzhhNDFlYTZhOTdjOGMwOTk2YWE4NDZjMDBjZGQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiGCVXukNk7fXZIB8xd1OS5ugyEa5
4aAkYHZlxUPmUjp9+4LQM6iOugbOtZaqy6a4cIfRPnBPiYaRhe7jiIHBF3/K8V57
3h1eLoxmou3xQMNh+8xuc9ie7rY7XT1YdWXHR1TP1Omc/IRRhcTbd1c/ub1h76Os
T7k6BCaxdASY1fHUVvm3VUaPGg/Royvs9YgQ6+/qVjfYdKwrH+ZhzHTqfRq7eqLc
dsgxpCcm2n1od6ugu1Jgh06HpeU0PE0u5B3WNOlf7xT1SVxlFJ3hsIbfJ51YoSD/
J0rpin6OSz5RxXJnUUtCOsFBkS2PtYKVa89w3z5raUhQ4Hx3ZHTaC51BkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF5YRsY1yKQepql8jAmWqoRsAM3TMB8GA1UdIwQY
MBaAFCOymszUwNX1+Dd+p/RjQ7dga6t8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAt
MTE3NGE0MjgwMzZiLzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAtMTE3NGE0MjgwMzZi
LzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY3Vto6oY
lNWFJjQ3bgnpmi83QVI+E0BtnyqOblmz6nfpgWkjEmtOpU8cYIVyn5JM/v5PPfKs
jSkGBKMJXcQgfNq/E3bbkEK4c4OVSMqJvp9XVuxsVeHCYkETfso80C4SmZ8rONkV
+Nv73foelQngPGvgEJGelNxhLCjZ8FyQ04PA4rLV00818cqpqwDjU6ItRNNNfcLq
d1z/93bd3DaOkNrufWOZpIq84ZBR21XIfiShI6sKGZXPKnt0kKNpMulFx3T83CYf
nOKLELJrMB2UMcQok4MzMoxNrCKGPCjMpk7uaOCTrE0zkYl9jmZ3BYaCwcmmuD1g
EF77/SaTfy7LFw==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:26:07 2025 by rpki-client on console-fra.rpki-client.org