Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: URAfj6fjTmmCuXXqg0B1MarXxYm46X+gRxLLTk81UVE=
Subject key identifier: E7:F7:F3:F7:A3:AC:7D:C2:03:5F:1B:01:9B:9F:2B:D2:BF:0A:E5:96
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 0195116BA61C75B8C6E2C84C32FD7919A4A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 0569
Signing time: Mon 17 Feb 2025 01:00:22 +0000
Manifest this update: Mon 17 Feb 2025 01:00:22 +0000
Manifest next update: Tue 18 Feb 2025 01:00:22 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: CjI7U8mWp0Lo6HLW/RrsuUOAvHBLgdtxjw/XdSWxAX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:a6:1c:75:b8:c6:e2:c8:4c:32:fd:79:19:a4:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Feb 17 01:00:22 2025 GMT
Not After : Feb 18 01:00:22 2025 GMT
Subject: CN=e7f7f3f7a3ac7dc2035f1b019b9f2bd2bf0ae596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:74:68:83:91:d0:cd:51:89:72:bf:9e:6b:06:
35:60:33:72:30:50:d6:39:1d:0a:66:90:94:79:c2:
3b:22:d1:f3:7e:99:cb:19:f5:b6:68:bc:22:ed:21:
1c:42:13:d1:7a:5c:60:a5:01:0f:4e:38:8b:62:6f:
c3:19:97:10:35:a4:3f:45:5e:ef:8d:85:c8:13:eb:
ba:5f:29:ad:d3:25:b2:73:25:e7:02:c0:d6:10:15:
3d:b3:32:13:a6:6a:93:b3:6a:8d:4e:a2:c5:9d:57:
5c:f9:1a:8c:16:84:41:84:3b:98:af:e3:ec:8e:a7:
f6:77:13:58:4b:51:5e:45:09:e7:76:e2:bf:68:f8:
7e:51:e2:fa:af:59:ac:29:0e:92:b0:2d:da:db:5a:
86:9b:3c:49:a9:73:0f:d7:b5:83:72:fa:ac:30:fa:
e2:4e:89:71:e9:b9:fc:9f:8f:02:13:46:3d:3b:9b:
d4:47:40:85:57:18:1a:f7:75:1c:77:17:9a:18:19:
7e:20:3b:e4:6a:93:82:e7:97:5d:06:9e:2a:19:d9:
1e:c1:53:39:29:3b:58:a1:03:ed:be:7d:e6:00:aa:
6b:c6:76:b4:f5:b4:a2:40:ae:33:3a:1d:7a:8d:df:
c7:3f:30:ec:b6:3d:60:cb:58:14:ef:b5:ca:0d:9c:
20:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F7:F3:F7:A3:AC:7D:C2:03:5F:1B:01:9B:9F:2B:D2:BF:0A:E5:96
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:7f:b2:54:87:0c:c8:88:e7:8a:65:53:b3:92:b3:99:88:c5:
af:b2:5c:d6:9b:99:38:4a:4d:dc:cc:4e:d3:f4:0b:3e:61:67:
3f:b2:ef:57:6b:24:c1:0a:10:69:3f:ec:c6:18:4d:67:b4:4e:
89:84:29:43:05:f0:c2:14:cd:4e:c8:2f:08:18:bf:c2:a0:cf:
7b:eb:d5:34:8d:ac:83:3d:ce:9b:fb:0f:34:13:88:7a:ad:c7:
5e:35:67:ec:a8:19:4f:c2:9a:f2:77:ae:fe:44:99:f8:f8:1c:
9d:b9:f6:19:62:11:f0:c2:fd:4d:c2:a0:9e:08:37:25:16:d8:
0a:5a:4b:53:b0:f8:91:be:48:86:2f:cd:8b:a2:71:65:fb:f2:
8f:94:d3:f3:93:f3:41:12:6a:79:d0:70:a7:51:8d:02:14:9f:
1e:66:c3:96:94:d4:ba:e3:68:32:e4:0f:8f:ba:cd:70:0f:61:
08:3b:64:1d:8a:fb:66:53:c1:0b:03:42:55:ee:18:06:34:87:
c6:68:f7:40:af:9e:18:d7:3d:31:34:e7:ee:1a:b3:1c:3d:78:
3f:15:a5:27:85:fc:7e:85:bd:81:e6:70:9f:9c:b4:fb:15:a2:
dd:f0:3e:bd:dd:b3:5b:97:8e:3d:e4:66:c7:12:db:1d:51:b2:
28:42:b4:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURa6YcdbjG4shMMv15GaSnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3NDFkMTNhMTVhOTg3ZGQ2MDAxOWMwMjY1ZDJlY2VjNDg0
MDk0NGEwHhcNMjUwMjE3MDEwMDIyWhcNMjUwMjE4MDEwMDIyWjAzMTEwLwYDVQQD
EyhlN2Y3ZjNmN2EzYWM3ZGMyMDM1ZjFiMDE5YjlmMmJkMmJmMGFlNTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAknRog5HQzVGJcr+eawY1YDNyMFDW
OR0KZpCUecI7ItHzfpnLGfW2aLwi7SEcQhPRelxgpQEPTjiLYm/DGZcQNaQ/RV7v
jYXIE+u6Xymt0yWycyXnAsDWEBU9szITpmqTs2qNTqLFnVdc+RqMFoRBhDuYr+Ps
jqf2dxNYS1FeRQnnduK/aPh+UeL6r1msKQ6SsC3a21qGmzxJqXMP17WDcvqsMPri
Tolx6bn8n48CE0Y9O5vUR0CFVxga93UcdxeaGBl+IDvkapOC55ddBp4qGdkewVM5
KTtYoQPtvn3mAKprxna09bSiQK4zOh16jd/HPzDstj1gy1gU77XKDZwgfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOf38/ejrH3CA18bAZufK9K/CuWWMB8GA1UdIwQY
MBaAFHdB0ToVqYfdYAGcAmXS7OxIQJRKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8wYmU5ZDAtOTk5YS00NDlhLTg1MTkt
MzUyM2UzMDMwYmU0LzEvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My8wYmU5ZDAtOTk5YS00NDlhLTg1MTktMzUyM2UzMDMwYmU0
LzEvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdn+yVIcM
yIjnimVTs5KzmYjFr7Jc1puZOEpN3MxO0/QLPmFnP7LvV2skwQoQaT/sxhhNZ7RO
iYQpQwXwwhTNTsgvCBi/wqDPe+vVNI2sgz3Om/sPNBOIeq3HXjVn7KgZT8Ka8neu
/kSZ+Pgcnbn2GWIR8ML9TcKgngg3JRbYClpLU7D4kb5Ihi/Ni6JxZfvyj5TT85Pz
QRJqedBwp1GNAhSfHmbDlpTUuuNoMuQPj7rNcA9hCDtkHYr7ZlPBCwNCVe4YBjSH
xmj3QK+eGNc9MTTn7hqzHD14PxWlJ4X8foW9geZwn5y0+xWi3fA+vd2zW5eOPeRm
xxLbHVGyKEK0Ow==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:29 2025 by rpki-client