Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
File: VKzhXkXvtaAGDAZeJ06o46-wJes.mft (raw, json)
Hash identifier: IJQrL6hw3hlVwCnWH46vrT5AzbCH1FL3mJXG6nX4jJI=
Subject key identifier: 17:D6:92:69:F3:31:F8:F6:EF:81:E4:EF:5C:06:C2:B7:F0:B1:BB:78
Authority key identifier: 54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
Certificate issuer: /CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Certificate serial: 0194C3F55818D50454F32708AAC944AD5342
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
Manifest number: 142D
Signing time: Sun 02 Feb 2025 00:00:23 +0000
Manifest this update: Sun 02 Feb 2025 00:00:23 +0000
Manifest next update: Mon 03 Feb 2025 00:00:23 +0000
Files and hashes: 1: VKzhXkXvtaAGDAZeJ06o46-wJes.crl (hash: BccJEdKhjyDha25VQPyxHhLI4fGwqsmwq9m3QShuq3o=)
2: agadNAkdL8gZSJjhebbq78b-GQQ.roa (hash: AWs3/nEl7KZJPMZNEu10pqsOCcoVUqcD7DcXZsQJMg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:58:18:d5:04:54:f3:27:08:aa:c9:44:ad:53:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Validity
Not Before: Feb 2 00:00:23 2025 GMT
Not After : Feb 3 00:00:23 2025 GMT
Subject: CN=17d69269f331f8f6ef81e4ef5c06c2b7f0b1bb78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d5:76:d7:41:33:c6:ef:08:2c:33:d0:ae:90:
3f:da:fb:24:14:be:af:22:9b:23:a7:8a:f7:a1:1d:
e4:0c:03:1b:e2:ae:68:4c:f1:c5:b5:cc:24:bb:ce:
cc:3a:c1:b2:26:8e:db:81:d1:a1:e2:4f:f6:25:ce:
b5:3e:31:e1:1b:d1:75:e0:b1:2e:a4:84:62:be:c2:
ba:54:87:46:d5:99:40:e5:7b:75:65:a4:7c:ea:9f:
c0:78:6b:83:4c:3a:de:e8:bb:eb:cc:6f:18:1b:19:
fb:b9:71:9c:d8:82:8f:ff:76:5a:a9:45:95:41:6c:
be:08:13:91:a0:de:42:5e:85:51:7d:b2:95:c6:00:
b6:fd:99:b7:88:e0:bd:5c:9c:41:09:04:05:4a:92:
73:44:cf:bd:65:f3:11:0e:0e:cd:1b:6e:dc:6f:17:
45:bb:bd:2d:d5:44:07:c8:2e:17:65:e9:7d:14:63:
0e:53:bf:29:f4:f8:ce:95:81:fd:21:e1:e3:11:bb:
42:ee:cf:03:0a:7a:eb:aa:ee:4d:62:02:70:6d:69:
19:97:3e:28:49:b8:aa:d0:d3:f5:2c:da:d6:db:6d:
a0:51:fa:6c:37:aa:2d:89:3e:98:94:71:c2:5b:5d:
13:81:48:42:1e:6d:cf:9e:e3:42:bc:03:c9:8d:65:
f4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D6:92:69:F3:31:F8:F6:EF:81:E4:EF:5C:06:C2:B7:F0:B1:BB:78
X509v3 Authority Key Identifier:
keyid:54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:f6:16:5f:a8:30:23:c5:0b:d1:11:4c:f5:90:6a:d0:2e:d4:
4d:d2:30:5a:d5:ae:1c:45:fc:a1:73:41:92:08:19:49:5f:fb:
ae:c9:e5:26:3e:2d:5d:0e:8f:ee:e6:cd:36:70:15:f2:c4:8a:
37:a0:d9:8b:1c:ea:a2:76:fe:cb:04:18:c8:f8:fa:29:de:bd:
e2:12:d2:a7:f4:1f:e2:f9:58:79:70:4a:69:04:0d:a1:a1:67:
70:df:20:91:9e:16:6d:97:f9:4f:c8:9f:8b:90:73:de:37:76:
35:96:72:e0:a9:ed:5b:bf:6c:2a:58:40:4a:2d:1a:c8:7f:77:
af:fd:f8:01:49:a0:bf:d6:d1:55:8c:33:ab:34:5e:dd:bd:a6:
10:e9:12:87:ca:9d:1d:9d:6e:1c:b0:16:1b:c1:b6:f1:85:52:
44:e2:15:6f:82:31:99:4e:10:af:93:fd:dc:10:78:19:7c:ef:
9a:73:a2:a8:a2:d2:65:f5:ce:4b:68:ef:13:3e:4e:f1:31:bf:
9a:5a:d7:71:a6:a8:1e:a3:18:0a:c7:7e:99:14:c6:f9:76:4f:
77:bf:be:e1:5c:40:99:d7:df:49:3b:ad:f1:f6:29:51:b1:30:
ef:90:98:6d:ef:e3:76:96:01:de:ca:ba:f1:35:a6:75:50:94:
9d:a4:e8:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTD9VgY1QRU8ycIqslErVNCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0YWNlMTVlNDVlZmI1YTAwNjBjMDY1ZTI3NGVhOGUzYWZi
MDI1ZWIwHhcNMjUwMjAyMDAwMDIzWhcNMjUwMjAzMDAwMDIzWjAzMTEwLwYDVQQD
EygxN2Q2OTI2OWYzMzFmOGY2ZWY4MWU0ZWY1YzA2YzJiN2YwYjFiYjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1NV210Ezxu8ILDPQrpA/2vskFL6v
Ipsjp4r3oR3kDAMb4q5oTPHFtcwku87MOsGyJo7bgdGh4k/2Jc61PjHhG9F14LEu
pIRivsK6VIdG1ZlA5Xt1ZaR86p/AeGuDTDre6LvrzG8YGxn7uXGc2IKP/3ZaqUWV
QWy+CBORoN5CXoVRfbKVxgC2/Zm3iOC9XJxBCQQFSpJzRM+9ZfMRDg7NG27cbxdF
u70t1UQHyC4XZel9FGMOU78p9PjOlYH9IeHjEbtC7s8DCnrrqu5NYgJwbWkZlz4o
Sbiq0NP1LNrW222gUfpsN6otiT6YlHHCW10TgUhCHm3PnuNCvAPJjWX0LwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBfWkmnzMfj274Hk71wGwrfwsbt4MB8GA1UdIwQY
MBaAFFSs4V5F77WgBgwGXidOqOOvsCXrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEt
YWQyYjYxMzgwYmUxLzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEtYWQyYjYxMzgwYmUx
LzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl/YWX6gw
I8UL0RFM9ZBq0C7UTdIwWtWuHEX8oXNBkggZSV/7rsnlJj4tXQ6P7ubNNnAV8sSK
N6DZixzqonb+ywQYyPj6Kd694hLSp/Qf4vlYeXBKaQQNoaFncN8gkZ4WbZf5T8if
i5Bz3jd2NZZy4KntW79sKlhASi0ayH93r/34AUmgv9bRVYwzqzRe3b2mEOkSh8qd
HZ1uHLAWG8G28YVSROIVb4IxmU4Qr5P93BB4GXzvmnOiqKLSZfXOS2jvEz5O8TG/
mlrXcaaoHqMYCsd+mRTG+XZPd7++4VxAmdffSTut8fYpUbEw75CYbe/jdpYB3sq6
8TWmdVCUnaTo2w==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:14 2025 by rpki-client