Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json)
Hash identifier: GBK9p3ozjHUSoeEKrbrj/rtz+CVmSC8SzFBc5GgTLMY=
Subject key identifier: B1:42:46:E4:15:34:7C:1C:99:E1:9E:18:F8:A5:3E:29:3B:C9:1F:18
Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd
Certificate serial: 0194C42C885A24048A029448CC8A55B82FC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
Manifest number: 0B
Signing time: Sun 02 Feb 2025 01:00:40 +0000
Manifest this update: Sun 02 Feb 2025 01:00:40 +0000
Manifest next update: Mon 03 Feb 2025 01:00:40 +0000
Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: 7thrm1i5RojdAG34rgDcgHBpciT+OOl4VJH09OGeQKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:88:5a:24:04:8a:02:94:48:cc:8a:55:b8:2f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd
Validity
Not Before: Feb 2 01:00:40 2025 GMT
Not After : Feb 3 01:00:40 2025 GMT
Subject: CN=b14246e415347c1c99e19e18f8a53e293bc91f18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:14:0a:54:29:28:67:66:79:fa:25:73:c1:2d:
6c:41:0a:e4:cf:39:03:b4:77:04:e4:c8:b9:13:fc:
f1:02:0a:ce:12:77:af:74:df:4b:b1:b6:33:18:d0:
2f:50:8b:6a:49:06:57:c5:69:fa:0e:d2:06:a4:87:
91:1b:83:78:8c:66:82:18:9b:ba:86:9c:49:e7:0a:
8e:bf:f2:61:52:ef:a8:b4:1c:aa:ab:24:ef:b5:af:
75:21:da:0b:cb:de:16:81:e5:2f:60:a9:6f:68:b8:
51:87:d8:31:7d:4a:ad:6e:c7:da:a1:4c:96:1a:b2:
2d:fb:0c:da:3a:76:8e:8b:de:40:5b:c1:1e:2e:34:
f5:97:f5:2d:32:b1:3f:d5:3f:ee:5e:3e:51:67:0d:
3c:89:ae:35:c2:a5:3a:3f:23:c4:10:a7:82:37:36:
e4:11:f3:fb:0d:1b:96:e7:24:9a:9a:9a:7c:42:be:
54:02:26:0f:a8:f0:28:1b:cc:36:71:db:71:ba:8c:
34:4e:e7:28:39:1d:97:92:2e:a4:ea:8c:f3:04:80:
9b:05:1d:02:c6:15:84:e7:a6:43:fa:84:8e:a7:be:
c7:c1:24:e9:23:73:b8:5d:23:4f:3d:d3:19:0e:c8:
d6:54:db:54:55:c3:6a:ab:1d:d7:7d:6c:73:93:77:
30:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:42:46:E4:15:34:7C:1C:99:E1:9E:18:F8:A5:3E:29:3B:C9:1F:18
X509v3 Authority Key Identifier:
keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:a3:ed:97:5e:77:77:5f:c8:40:4d:dd:cb:aa:2d:88:de:dc:
11:0d:76:b6:b5:99:83:3a:31:b6:af:a2:28:c8:dc:0a:95:b3:
ac:d9:a0:1f:43:64:44:08:35:8a:b2:34:29:2c:35:03:49:b4:
34:40:54:62:04:44:57:f2:b3:d4:6b:e0:43:c8:8a:54:9e:61:
e2:c9:07:cf:94:e7:46:97:d4:83:78:7d:cb:81:40:69:fe:eb:
5d:2f:e8:ae:28:60:82:e7:9f:98:0b:30:b8:fc:dc:4e:45:f5:
08:ba:08:d2:e9:a5:9d:36:19:99:4e:ae:89:dd:35:a5:82:8d:
be:c5:a2:ce:37:21:90:a6:7a:65:b3:ce:6d:f1:e0:00:a7:53:
5a:a2:42:61:24:2b:6a:29:47:94:73:aa:2d:00:b0:a8:8d:d3:
e0:7f:55:22:41:b8:aa:7e:f4:a2:f8:26:27:1a:e6:f4:ea:4d:
9e:6f:35:7e:fa:86:55:80:a1:f6:03:bd:c4:c4:5b:03:4e:74:
d2:46:cb:54:96:a4:95:19:1c:57:5c:f9:8f:76:13:6e:2b:36:
5e:dd:51:13:60:9e:a6:dd:42:83:f8:7d:74:5f:78:e8:0b:d3:
d6:db:81:a2:df:77:11:71:84:ea:b1:e2:d5:f6:a5:89:52:a7:
6b:b8:cc:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTELIhaJASKApRIzIpVuC/JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlNTUzOWFmZTkyNWRiODBiNDE1ZWZiMTRjNjMxYjJkODJj
OGNlZGQwHhcNMjUwMjAyMDEwMDQwWhcNMjUwMjAzMDEwMDQwWjAzMTEwLwYDVQQD
EyhiMTQyNDZlNDE1MzQ3YzFjOTllMTllMThmOGE1M2UyOTNiYzkxZjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RQKVCkoZ2Z5+iVzwS1sQQrkzzkD
tHcE5Mi5E/zxAgrOEnevdN9LsbYzGNAvUItqSQZXxWn6DtIGpIeRG4N4jGaCGJu6
hpxJ5wqOv/JhUu+otByqqyTvta91IdoLy94WgeUvYKlvaLhRh9gxfUqtbsfaoUyW
GrIt+wzaOnaOi95AW8EeLjT1l/UtMrE/1T/uXj5RZw08ia41wqU6PyPEEKeCNzbk
EfP7DRuW5ySampp8Qr5UAiYPqPAoG8w2cdtxuow0TucoOR2Xki6k6ozzBICbBR0C
xhWE56ZD+oSOp77HwSTpI3O4XSNPPdMZDsjWVNtUVcNqqx3XfWxzk3cw4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLFCRuQVNHwcmeGeGPilPik7yR8YMB8GA1UdIwQY
MBaAFL5VOa/pJduAtBXvsUxjGy2CyM7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MzNkYWUtMDAyMS00NGU1LTkyZTUt
MjUwMGY0ZWZhYjY5LzEvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MzNkYWUtMDAyMS00NGU1LTkyZTUtMjUwMGY0ZWZhYjY5
LzEvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaKPtl153
d1/IQE3dy6otiN7cEQ12trWZgzoxtq+iKMjcCpWzrNmgH0NkRAg1irI0KSw1A0m0
NEBUYgREV/Kz1GvgQ8iKVJ5h4skHz5TnRpfUg3h9y4FAaf7rXS/orihgguefmAsw
uPzcTkX1CLoI0umlnTYZmU6uid01pYKNvsWizjchkKZ6ZbPObfHgAKdTWqJCYSQr
ailHlHOqLQCwqI3T4H9VIkG4qn70ovgmJxrm9OpNnm81fvqGVYCh9gO9xMRbA050
0kbLVJaklRkcV1z5j3YTbis2Xt1RE2Cept1Cg/h9dF946AvT1tuBot93EXGE6rHi
1faliVKna7jMUw==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:07:47 2025 by rpki-client