Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: ffp31DEqQZM750UK/57oWUMZRRGApbu9V48w1IEodxs=
Subject key identifier: D9:D6:8E:D6:86:54:A3:3D:7F:55:ED:82:6A:0A:4F:67:C0:34:35:B5
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 0194C319B32C7CA5C16880DE84E16892524F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 1430
Signing time: Sat 01 Feb 2025 20:00:28 +0000
Manifest this update: Sat 01 Feb 2025 20:00:28 +0000
Manifest next update: Sun 02 Feb 2025 20:00:28 +0000
Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=)
2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: i/EyodH233LTJ7ODveZUnB4+pdKomPn3fc17PXBjNqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 20:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:19:b3:2c:7c:a5:c1:68:80:de:84:e1:68:92:52:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Feb 1 20:00:28 2025 GMT
Not After : Feb 2 20:00:28 2025 GMT
Subject: CN=d9d68ed68654a33d7f55ed826a0a4f67c03435b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9b:4b:dd:63:37:84:69:a4:c1:83:53:ae:5e:
07:36:c5:ad:69:3b:8b:93:49:34:37:e2:8a:6e:3c:
48:34:4e:10:72:e7:2a:62:14:27:ac:e8:27:97:f2:
c4:84:66:c4:65:f7:f6:56:a7:a1:3c:03:7e:80:b4:
04:6e:05:16:85:18:9d:97:3b:b1:3c:d3:fc:05:0b:
bb:81:6c:29:fe:9d:75:9b:5e:74:ce:8a:25:09:84:
bd:75:22:2c:d1:3e:27:bb:6f:fa:b0:31:b1:d7:c6:
63:4a:db:87:ed:64:a0:af:f9:d2:c1:16:fd:14:1e:
95:21:96:ee:f7:21:49:d2:ab:5f:a7:e8:a3:f1:17:
94:7d:72:fc:c1:d7:85:8a:92:19:d3:a8:5a:15:fc:
84:71:f8:ac:9f:3a:77:ff:f4:1a:3a:29:d3:0e:9b:
88:50:0d:3d:ce:6d:a6:65:4c:4f:a3:af:db:c9:dc:
2f:11:be:c9:e8:79:d4:bf:52:65:86:14:3b:4d:c5:
a1:b0:a7:1f:e5:28:19:85:a0:08:76:16:33:dd:e5:
80:2b:6c:fb:62:72:64:ea:7c:df:34:7b:f4:e5:72:
92:3c:45:86:0f:9e:31:13:d3:62:14:3c:b0:f4:d4:
c8:85:47:90:71:ff:54:97:fe:58:6e:40:db:7f:4d:
a5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D6:8E:D6:86:54:A3:3D:7F:55:ED:82:6A:0A:4F:67:C0:34:35:B5
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:bb:19:c5:21:cd:7d:26:69:1f:6f:40:57:99:fe:e1:70:c7:
97:2a:3e:4b:56:f0:90:5e:4a:b1:13:47:c3:1a:b0:4b:a8:9b:
9c:58:a3:fb:81:af:70:dc:af:a6:5d:1e:29:8c:8f:a2:2e:7e:
70:8f:5c:2f:ba:52:81:b3:55:95:fc:14:24:ee:13:73:51:c2:
fa:a7:d7:83:bb:8a:40:c6:57:2c:4a:50:45:28:bc:a4:9d:ae:
23:4a:f1:6a:4b:df:29:f5:29:dd:c5:4d:e9:92:22:58:96:e8:
d3:e4:00:2e:4f:f6:0e:b2:8a:ce:39:50:7e:06:ee:1b:04:b7:
72:31:4c:2e:99:56:99:0a:30:21:84:67:5c:66:20:a8:2b:fa:
9f:2e:de:84:d2:ae:1a:df:7a:3d:0a:20:91:c6:ba:96:ac:d6:
1b:5d:80:37:d5:1c:b3:14:21:93:52:99:cc:ef:c5:98:4a:c5:
a7:82:d4:0d:1b:fe:0c:5c:d5:20:4f:cd:cb:57:a3:88:44:46:
60:38:95:39:48:4f:80:ac:7b:05:ff:29:b9:8c:74:7b:12:63:
36:10:9e:f2:7a:ef:48:06:44:51:e9:47:f6:15:32:c3:7a:0b:
8a:06:42:5f:17:ed:07:a7:32:60:0b:c4:c3:05:a6:34:fb:dd:
78:8c:b9:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDGbMsfKXBaIDehOFoklJPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2ODY2YmU2OWYzNzcwNzIwYTZkY2M0NzkyZTY4MGZjN2Y3
MzIxYTEwHhcNMjUwMjAxMjAwMDI4WhcNMjUwMjAyMjAwMDI4WjAzMTEwLwYDVQQD
EyhkOWQ2OGVkNjg2NTRhMzNkN2Y1NWVkODI2YTBhNGY2N2MwMzQzNWI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJtL3WM3hGmkwYNTrl4HNsWtaTuL
k0k0N+KKbjxINE4QcucqYhQnrOgnl/LEhGbEZff2VqehPAN+gLQEbgUWhRidlzux
PNP8BQu7gWwp/p11m150zoolCYS9dSIs0T4nu2/6sDGx18ZjStuH7WSgr/nSwRb9
FB6VIZbu9yFJ0qtfp+ij8ReUfXL8wdeFipIZ06haFfyEcfisnzp3//QaOinTDpuI
UA09zm2mZUxPo6/bydwvEb7J6HnUv1JlhhQ7TcWhsKcf5SgZhaAIdhYz3eWAK2z7
YnJk6nzfNHv05XKSPEWGD54xE9NiFDyw9NTIhUeQcf9Ul/5YbkDbf02l3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNnWjtaGVKM9f1XtgmoKT2fANDW1MB8GA1UdIwQY
MBaAFHaGa+afN3ByCm3MR5LmgPx/cyGhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8yNTgxMmQtOGNkNy00NzA3LThiZGIt
Y2ZhNTA0MmRjOTVjLzEvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi8yNTgxMmQtOGNkNy00NzA3LThiZGItY2ZhNTA0MmRjOTVj
LzEvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANrsZxSHN
fSZpH29AV5n+4XDHlyo+S1bwkF5KsRNHwxqwS6ibnFij+4GvcNyvpl0eKYyPoi5+
cI9cL7pSgbNVlfwUJO4Tc1HC+qfXg7uKQMZXLEpQRSi8pJ2uI0rxakvfKfUp3cVN
6ZIiWJbo0+QALk/2DrKKzjlQfgbuGwS3cjFMLplWmQowIYRnXGYgqCv6ny7ehNKu
Gt96PQogkca6lqzWG12AN9UcsxQhk1KZzO/FmErFp4LUDRv+DFzVIE/Ny1ejiERG
YDiVOUhPgKx7Bf8puYx0exJjNhCe8nrvSAZEUelH9hUyw3oLigZCXxftB6cyYAvE
wwWmNPvdeIy5dg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 05:48:22 2025 by rpki-client