Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
File: d5KQMR5unPpeUX-rsNlvqaccPaE.mft (raw, json)
Hash identifier: nBgAWy5Pr3joYiJybnEENZoUt+a9zrmKTHqc47LKfQs=
Subject key identifier: 4A:A8:77:39:B0:C1:2F:2C:9B:D4:00:42:53:98:52:59:6C:BB:3B:69
Authority key identifier: 77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
Certificate issuer: /CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1
Certificate serial: 0194BB6050F816E22BBE27B5367A852BDB6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
Manifest number: 1429
Signing time: Fri 31 Jan 2025 08:00:38 +0000
Manifest this update: Fri 31 Jan 2025 08:00:38 +0000
Manifest next update: Sat 01 Feb 2025 08:00:38 +0000
Files and hashes: 1: LOkJgQnrVhTjIGglVDZP2nXIS3k.roa (hash: w0AA95RC5IbPZCqkTY536mw4aIKSxO5pRstC+7ehig8=)
2: d5KQMR5unPpeUX-rsNlvqaccPaE.crl (hash: 8YX7ty7qcGxt2oR/8r7HlLMFn0KThO8S6oNVWCzuKlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:50:f8:16:e2:2b:be:27:b5:36:7a:85:2b:db:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1
Validity
Not Before: Jan 31 08:00:38 2025 GMT
Not After : Feb 1 08:00:38 2025 GMT
Subject: CN=4aa87739b0c12f2c9bd40042539852596cbb3b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b4:ff:dc:96:82:74:82:4e:0c:b1:fd:cc:f9:
90:31:fc:e3:04:8f:bd:8c:8d:3a:18:33:fc:fb:f1:
60:5f:9d:9b:5c:22:e0:64:06:ca:1d:e8:27:e7:6a:
66:ba:b3:e6:d1:2e:fa:d1:1d:bf:d3:ac:d1:6f:52:
4d:27:e8:66:3d:8a:3d:24:65:96:ff:cd:05:af:77:
3a:50:c8:80:e4:3a:a5:82:08:14:d5:10:d4:e5:50:
1e:f4:fc:46:a5:b1:5e:c9:90:02:79:84:fc:2d:7f:
e3:5c:64:c5:73:c4:8b:59:5d:0a:eb:e9:2b:98:9e:
0e:d5:e2:0d:f6:14:f9:a7:26:22:59:db:1e:c0:1a:
a7:0b:e8:d8:78:06:0e:49:55:d3:2c:57:b8:11:d9:
53:3d:66:1f:88:51:a3:12:cd:95:31:f5:76:0e:fd:
af:5d:bb:29:88:92:34:23:00:33:2e:d0:92:f6:ae:
65:10:e9:76:52:6d:1a:50:d8:a4:3d:0d:2d:94:88:
83:a5:bc:33:1a:b9:05:89:bb:33:07:c2:1e:1c:d3:
6d:42:8e:11:07:29:a6:24:3d:83:1e:b4:1c:3c:e2:
db:96:28:90:f4:cb:d2:e5:ae:19:6c:13:e3:ca:73:
99:c8:50:69:85:e2:59:ac:d7:b8:31:e5:52:28:d8:
86:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A8:77:39:B0:C1:2F:2C:9B:D4:00:42:53:98:52:59:6C:BB:3B:69
X509v3 Authority Key Identifier:
keyid:77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:b0:eb:0b:5d:f1:f2:10:6d:4a:fb:8e:54:e0:25:84:13:da:
99:a7:12:62:b2:c3:db:5c:00:3d:f9:10:e6:68:a8:63:bc:95:
7d:b6:01:fb:bc:76:89:ce:21:8e:8b:20:58:36:ab:3f:c6:8d:
10:7a:fd:5d:38:a5:54:47:76:49:64:b5:a5:ec:16:89:10:ff:
16:22:65:19:f3:da:39:e9:31:17:61:6a:08:c4:2e:eb:2c:55:
4b:c3:0d:8e:e5:03:44:ec:60:fc:37:dc:69:2c:1b:85:f9:a7:
28:8d:2b:1a:d9:87:74:73:81:d0:bd:9d:e2:a9:ef:8a:18:0b:
a6:8b:0e:d0:41:e6:04:24:d3:8b:28:85:e7:4f:b4:57:c7:7d:
38:3c:6c:40:d5:30:72:5e:47:a1:78:93:f1:a2:0f:39:c8:ed:
e1:49:38:fe:6e:43:49:c5:55:89:77:ab:b6:60:d6:9c:75:b1:
be:a7:0e:0c:e0:55:b2:b3:27:88:34:5b:31:11:64:ea:2e:1b:
9f:9e:46:7b:4e:b5:c9:22:3c:ce:f9:45:c7:ab:63:f3:ef:6c:
91:06:c5:2c:d7:dc:22:b8:78:ea:e5:7c:7a:fd:eb:18:fc:7e:
1f:72:0c:ac:fd:cf:e0:ee:8d:d2:b8:e4:23:e1:72:04:58:96:
a7:d9:ab:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7YFD4FuIrvie1NnqFK9tuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3OTI5MDMxMWU2ZTljZmE1ZTUxN2ZhYmIwZDk2ZmE5YTcx
YzNkYTEwHhcNMjUwMTMxMDgwMDM4WhcNMjUwMjAxMDgwMDM4WjAzMTEwLwYDVQQD
Eyg0YWE4NzczOWIwYzEyZjJjOWJkNDAwNDI1Mzk4NTI1OTZjYmIzYjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1LT/3JaCdIJODLH9zPmQMfzjBI+9
jI06GDP8+/FgX52bXCLgZAbKHegn52pmurPm0S760R2/06zRb1JNJ+hmPYo9JGWW
/80Fr3c6UMiA5DqlgggU1RDU5VAe9PxGpbFeyZACeYT8LX/jXGTFc8SLWV0K6+kr
mJ4O1eIN9hT5pyYiWdsewBqnC+jYeAYOSVXTLFe4EdlTPWYfiFGjEs2VMfV2Dv2v
XbspiJI0IwAzLtCS9q5lEOl2Um0aUNikPQ0tlIiDpbwzGrkFibszB8IeHNNtQo4R
BymmJD2DHrQcPOLbliiQ9MvS5a4ZbBPjynOZyFBpheJZrNe4MeVSKNiGBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEqodzmwwS8sm9QAQlOYUllsuztpMB8GA1UdIwQY
MBaAFHeSkDEebpz6XlF/q7DZb6mnHD2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDVLUU1SNXVuUHBlVVgtcnNObHZxYWNjUGFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9iOGUwM2UtYzM5OC00ZWVlLTg5Mzkt
ZjkwOWQ3OWE0NGFkLzEvZDVLUU1SNXVuUHBlVVgtcnNObHZxYWNjUGFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9iOGUwM2UtYzM5OC00ZWVlLTg5MzktZjkwOWQ3OWE0NGFk
LzEvZDVLUU1SNXVuUHBlVVgtcnNObHZxYWNjUGFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVLDrC13x
8hBtSvuOVOAlhBPamacSYrLD21wAPfkQ5mioY7yVfbYB+7x2ic4hjosgWDarP8aN
EHr9XTilVEd2SWS1pewWiRD/FiJlGfPaOekxF2FqCMQu6yxVS8MNjuUDROxg/Dfc
aSwbhfmnKI0rGtmHdHOB0L2d4qnvihgLposO0EHmBCTTiyiF50+0V8d9ODxsQNUw
cl5HoXiT8aIPOcjt4Uk4/m5DScVViXertmDWnHWxvqcODOBVsrMniDRbMRFk6i4b
n55Ge061ySI8zvlFx6tj8+9skQbFLNfcIrh46uV8ev3rGPx+H3IMrP3P4O6N0rjk
I+FyBFiWp9mraw==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:20 2025 by rpki-client on console-fra.rpki-client.org