Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
File: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft (raw, json)
Hash identifier: K3DYbEl0QX3jLSUdrJJYnLzAnQhzdvDTmuxN3jhaQEU=
Subject key identifier: 3E:3F:B6:FF:16:06:1A:E5:1A:CB:F9:BF:AF:25:EF:87:66:C1:B9:AC
Authority key identifier: D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
Certificate issuer: /CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Certificate serial: 0194BB296E136830BC5FD98CD8C104ACC420
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
Manifest number: 142C
Signing time: Fri 31 Jan 2025 07:00:42 +0000
Manifest this update: Fri 31 Jan 2025 07:00:42 +0000
Manifest next update: Sat 01 Feb 2025 07:00:42 +0000
Files and hashes: 1: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl (hash: rpV6WDhYdc+wTf4VC1Y0zpfZQ0RxyVCNS1sk1y7WY1A=)
2: Y1iEUL6HkZgDZU0_OFEdoFw8lAQ.roa (hash: CDvGigjNlLt/aSYIESg4jn5aQHhCGPQhN6LUC2qBNmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:6e:13:68:30:bc:5f:d9:8c:d8:c1:04:ac:c4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Validity
Not Before: Jan 31 07:00:42 2025 GMT
Not After : Feb 1 07:00:42 2025 GMT
Subject: CN=3e3fb6ff16061ae51acbf9bfaf25ef8766c1b9ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:18:be:b5:cb:a7:da:8b:28:b0:93:bd:8f:ca:
07:0c:30:c0:48:9d:9f:c3:38:3c:34:a0:59:23:ca:
21:e7:0b:a3:4d:b7:ee:11:31:b7:fd:07:8e:d3:93:
f0:44:88:0e:0c:b0:b0:4f:2c:7b:a6:28:27:a9:d6:
29:2b:e0:a5:34:b1:e9:71:d1:27:3c:05:d6:3a:cd:
fc:59:20:52:64:aa:91:16:9b:2b:11:96:dd:56:20:
5c:c3:03:cb:c9:78:64:f7:9a:ed:9a:fd:06:81:c2:
f0:42:7a:c8:34:f1:bf:53:5b:75:60:f3:1b:00:7f:
ac:cf:7e:7b:d0:44:74:09:dc:d7:7e:09:47:59:2f:
68:df:97:65:53:4c:8c:3c:af:c1:d7:fb:ec:56:28:
96:b7:d5:47:f9:25:ed:46:43:fd:f0:9f:f8:8d:71:
d3:fa:ae:54:4b:b0:f0:aa:d9:29:99:9c:27:68:82:
93:fa:d5:d1:c2:f7:89:d3:78:5b:8b:e8:9c:06:7c:
7a:12:12:d2:b8:8f:5d:8e:e5:c8:81:7c:bc:19:75:
ab:5f:12:61:0c:f9:df:43:4d:dc:74:87:61:e0:60:
4d:cb:76:77:a2:9e:84:d9:7f:66:eb:66:63:e6:a4:
d7:d6:1a:51:80:f3:7b:cb:10:3e:9a:a0:18:6c:22:
2e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:3F:B6:FF:16:06:1A:E5:1A:CB:F9:BF:AF:25:EF:87:66:C1:B9:AC
X509v3 Authority Key Identifier:
keyid:D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:f1:a7:02:0f:e0:1e:25:84:4e:af:9c:5d:27:26:39:df:57:
92:66:d0:c1:a8:20:ae:aa:e9:5c:5f:29:ba:08:52:dc:e8:89:
0c:7f:98:33:01:3a:f1:6d:df:f1:14:b4:cc:35:13:8e:82:44:
06:4e:b5:2f:fe:d2:5a:59:95:9a:58:29:e0:fb:6a:c5:81:de:
af:28:b2:3e:73:72:a9:e4:e9:40:90:d8:c3:0f:68:c0:81:d8:
05:a8:74:55:17:4c:77:9f:81:d8:2f:57:40:00:63:0f:17:45:
60:8e:ab:99:13:d7:5c:61:13:0c:90:de:3c:26:9b:89:23:a4:
02:5f:5c:9c:1f:75:3c:33:7c:16:9c:17:90:98:f8:aa:31:11:
02:37:45:d3:da:2b:e4:67:0c:b0:76:80:ff:db:ef:ee:9b:78:
34:f1:ea:b7:d9:a6:49:5e:29:87:16:f4:f0:5d:a7:81:45:22:
84:d7:e9:e8:ba:77:ea:26:e7:5b:3e:e9:4d:63:3f:fe:4f:74:
a9:dc:76:08:4f:c7:ed:a4:44:56:7b:cb:d2:05:0d:95:7d:a4:
8a:8c:2b:d9:35:36:97:a1:1d:d5:b4:98:cb:2c:ed:41:54:ad:
40:1e:72:39:9f:e8:2c:df:e6:0b:cc:8a:d9:4b:00:3c:3b:e9:
51:7b:86:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7KW4TaDC8X9mM2MEErMQgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5MGQyNjgxNTE0YWVmZWU5ZDNjODZlMWVhZTM1NzM2Yzg0
ZDFjMDkwHhcNMjUwMTMxMDcwMDQyWhcNMjUwMjAxMDcwMDQyWjAzMTEwLwYDVQQD
EygzZTNmYjZmZjE2MDYxYWU1MWFjYmY5YmZhZjI1ZWY4NzY2YzFiOWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhi+tcun2ososJO9j8oHDDDASJ2f
wzg8NKBZI8oh5wujTbfuETG3/QeO05PwRIgODLCwTyx7pignqdYpK+ClNLHpcdEn
PAXWOs38WSBSZKqRFpsrEZbdViBcwwPLyXhk95rtmv0GgcLwQnrINPG/U1t1YPMb
AH+sz3570ER0CdzXfglHWS9o35dlU0yMPK/B1/vsViiWt9VH+SXtRkP98J/4jXHT
+q5US7DwqtkpmZwnaIKT+tXRwveJ03hbi+icBnx6EhLSuI9djuXIgXy8GXWrXxJh
DPnfQ03cdIdh4GBNy3Z3op6E2X9m62Zj5qTX1hpRgPN7yxA+mqAYbCIusQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD4/tv8WBhrlGsv5v68l74dmwbmsMB8GA1UdIwQY
MBaAFNkNJoFRSu/unTyG4erjVzbITRwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQt
MWQwZjI5YjRiOTdmLzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQtMWQwZjI5YjRiOTdm
LzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoPGnAg/g
HiWETq+cXScmOd9XkmbQwaggrqrpXF8pughS3OiJDH+YMwE68W3f8RS0zDUTjoJE
Bk61L/7SWlmVmlgp4PtqxYHeryiyPnNyqeTpQJDYww9owIHYBah0VRdMd5+B2C9X
QABjDxdFYI6rmRPXXGETDJDePCabiSOkAl9cnB91PDN8FpwXkJj4qjERAjdF09or
5GcMsHaA/9vv7pt4NPHqt9mmSV4phxb08F2ngUUihNfp6Lp36ibnWz7pTWM//k90
qdx2CE/H7aREVnvL0gUNlX2kiowr2TU2l6Ed1bSYyyztQVStQB5yOZ/oLN/mC8yK
2UsAPDvpUXuG9A==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:30:15 2025 by rpki-client on console-fra.rpki-client.org