Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
File: cF5128zl_N2R2KmeWhssmVuBJ3U.mft (raw, json)
Hash identifier: ta0b02Q6/nn2lQ/vySrKwcbnzhpqmiNTmmzsUHyBq0k=
Subject key identifier: DC:EE:31:30:72:CC:63:8E:DD:E9:63:75:68:91:65:1C:47:7E:B4:3D
Authority key identifier: 70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75
Certificate issuer: /CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775
Certificate serial: 0194BABB4D9A83D847F9B7363A685FC4B771
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
Manifest number: 142E
Signing time: Fri 31 Jan 2025 05:00:24 +0000
Manifest this update: Fri 31 Jan 2025 05:00:24 +0000
Manifest next update: Sat 01 Feb 2025 05:00:24 +0000
Files and hashes: 1: Y-ORdAusYkZsKOUTFP8lOiqiHAs.roa (hash: VsoWMS+G3RdpKa8Z+B6s882TzbmXTjisQIhsADrOhSU=)
2: cF5128zl_N2R2KmeWhssmVuBJ3U.crl (hash: AjQQ1cv6ws2EXRSYrokD24XbcyoPqVq/0r/S4VoyyAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:4d:9a:83:d8:47:f9:b7:36:3a:68:5f:c4:b7:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775
Validity
Not Before: Jan 31 05:00:24 2025 GMT
Not After : Feb 1 05:00:24 2025 GMT
Subject: CN=dcee313072cc638edde963756891651c477eb43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:21:6d:f6:89:aa:60:78:de:e4:97:19:83:6d:
81:00:6f:50:5f:28:a4:30:1b:de:19:45:89:74:d5:
75:21:b5:b3:15:51:d4:23:27:0c:e9:24:90:eb:84:
28:c6:ed:96:91:e5:e0:df:80:61:b8:fa:35:d1:eb:
29:db:25:be:11:d4:76:b3:17:12:93:96:e8:60:44:
b7:49:77:75:56:0c:2f:57:44:f9:33:99:b3:1a:f7:
b7:9f:6e:56:56:78:af:28:c6:56:ae:e8:fa:66:c7:
85:11:61:0e:ab:15:8f:2d:b2:25:6b:ce:5d:f2:63:
3e:33:cc:18:24:4a:12:9c:7f:f9:ca:84:02:fc:f1:
27:81:88:c8:d9:3a:3b:51:88:c6:0e:e1:98:d4:05:
ed:ee:d4:54:b6:5e:e5:4e:c2:50:e1:8f:2e:ff:2b:
45:93:4b:ac:5a:5f:1d:68:d5:24:2b:ad:a6:35:33:
d2:ef:d5:1a:3a:13:ca:b7:4a:d1:95:41:bf:9a:42:
ae:09:88:d9:56:49:5a:15:b7:7d:13:a3:0e:a3:e9:
40:86:4c:8e:0b:8f:73:66:83:71:14:01:3f:4e:ef:
f6:8b:5a:ca:eb:c1:3c:47:aa:c9:47:e9:4c:26:5c:
29:d1:91:98:d4:63:71:0f:c2:de:b9:78:3e:3c:aa:
cb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:EE:31:30:72:CC:63:8E:DD:E9:63:75:68:91:65:1C:47:7E:B4:3D
X509v3 Authority Key Identifier:
keyid:70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:4b:92:a7:58:6a:6f:af:34:f5:f0:8d:52:9e:f7:8d:24:fe:
8d:c8:aa:4d:ca:cc:05:03:fd:00:35:8e:e1:80:9d:c4:7d:73:
ef:1b:ce:ad:c9:63:fd:b5:4b:e6:1f:61:84:06:7d:50:d8:de:
3f:72:9e:98:ef:34:f0:1c:e6:27:9e:75:22:1c:cc:3d:2f:57:
80:89:09:22:ba:36:6e:39:83:a5:c2:be:dc:9d:29:b5:bf:b2:
c6:4b:02:fd:e6:bc:59:1f:f5:0a:2a:eb:e9:f7:ac:06:4c:77:
c0:77:09:cb:4b:3e:61:d4:c3:18:53:fa:2e:00:24:4b:8d:f1:
ff:09:83:4a:15:ad:ae:23:ec:c8:18:06:81:73:87:fd:ed:01:
e0:c8:33:ee:49:38:ea:1e:97:7b:70:b3:09:82:25:26:2c:7a:
74:20:f1:db:24:6f:34:ea:49:39:61:8e:9f:3e:b6:1b:81:39:
93:a6:4c:14:13:92:e2:dd:8f:28:06:e3:e1:2c:3e:14:cf:8e:
94:a6:2e:a8:c3:61:4e:05:37:55:73:30:c5:07:dc:3c:84:a5:
94:ff:20:2e:72:11:2f:0f:af:9c:f6:57:e4:37:39:9e:38:c3:
98:f4:11:77:bb:83:d5:cb:8a:77:75:08:b6:d7:1c:e2:d7:0f:
2e:1b:c7:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS6u02ag9hH+bc2OmhfxLdxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNWU3NWRiY2NlNWZjZGQ5MWQ4YTk5ZTVhMWIyYzk5NWI4
MTI3NzUwHhcNMjUwMTMxMDUwMDI0WhcNMjUwMjAxMDUwMDI0WjAzMTEwLwYDVQQD
EyhkY2VlMzEzMDcyY2M2MzhlZGRlOTYzNzU2ODkxNjUxYzQ3N2ViNDNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniFt9omqYHje5JcZg22BAG9QXyik
MBveGUWJdNV1IbWzFVHUIycM6SSQ64Qoxu2WkeXg34BhuPo10esp2yW+EdR2sxcS
k5boYES3SXd1VgwvV0T5M5mzGve3n25WVnivKMZWruj6ZseFEWEOqxWPLbIla85d
8mM+M8wYJEoSnH/5yoQC/PEngYjI2To7UYjGDuGY1AXt7tRUtl7lTsJQ4Y8u/ytF
k0usWl8daNUkK62mNTPS79UaOhPKt0rRlUG/mkKuCYjZVklaFbd9E6MOo+lAhkyO
C49zZoNxFAE/Tu/2i1rK68E8R6rJR+lMJlwp0ZGY1GNxD8LeuXg+PKrLswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNzuMTByzGOO3eljdWiRZRxHfrQ9MB8GA1UdIwQY
MBaAFHBeddvM5fzdkdipnlobLJlbgSd1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9jMWY0NDgtODgwOC00YTJmLWJmZmEt
ZjhiNDhiYWNjZDliLzEvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9jMWY0NDgtODgwOC00YTJmLWJmZmEtZjhiNDhiYWNjZDli
LzEvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT0uSp1hq
b6809fCNUp73jST+jciqTcrMBQP9ADWO4YCdxH1z7xvOrclj/bVL5h9hhAZ9UNje
P3KemO808BzmJ551IhzMPS9XgIkJIro2bjmDpcK+3J0ptb+yxksC/ea8WR/1Cirr
6fesBkx3wHcJy0s+YdTDGFP6LgAkS43x/wmDShWtriPsyBgGgXOH/e0B4Mgz7kk4
6h6Xe3CzCYIlJix6dCDx2yRvNOpJOWGOnz62G4E5k6ZMFBOS4t2PKAbj4Sw+FM+O
lKYuqMNhTgU3VXMwxQfcPISllP8gLnIRLw+vnPZX5Dc5njjDmPQRd7uD1cuKd3UI
ttcc4tcPLhvH6g==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:32:21 2025 by rpki-client on console-fra.rpki-client.org