Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
File: rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft (raw, json)
Hash identifier: K6T7aLww5ys9TDUDNb4HvBJEch5ofc3VBpxBDWyF12s=
Subject key identifier: 6F:EF:EA:F2:AC:17:09:37:2E:A5:E7:29:15:8F:64:AB:0B:BE:07:A1
Authority key identifier: AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
Certificate issuer: /CN=acfbbca852b957385909f6bd288cdf363f218b06
Certificate serial: 0194C507CC0B1D3559C43B1C06644519B3BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
Manifest number: 1104
Signing time: Sun 02 Feb 2025 05:00:10 +0000
Manifest this update: Sun 02 Feb 2025 05:00:10 +0000
Manifest next update: Mon 03 Feb 2025 05:00:10 +0000
Files and hashes: 1: IsJ0c25oEMcq2hs62WVn3JnR5kc.roa (hash: FVZnWTpWqx/hdTsogFHC4HE54Isaap3vLQprMcgXpZE=)
2: rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl (hash: sW+NUDBBXZZHN4QC0s0TXe+L432XZnEFxNy+0cYLgyw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:07:cc:0b:1d:35:59:c4:3b:1c:06:64:45:19:b3:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acfbbca852b957385909f6bd288cdf363f218b06
Validity
Not Before: Feb 2 05:00:10 2025 GMT
Not After : Feb 3 05:00:10 2025 GMT
Subject: CN=6fefeaf2ac1709372ea5e729158f64ab0bbe07a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f2:ca:fe:f2:78:63:5d:6f:7e:38:67:48:b1:
ad:01:9c:f4:c7:f5:69:8c:93:d9:47:91:b9:e3:66:
90:a9:94:98:c3:ad:67:03:1b:bb:f2:27:65:c3:e2:
3b:18:08:29:ab:7b:ae:13:31:4a:1e:ac:58:44:a7:
bd:51:02:51:e7:58:bf:41:99:2d:d0:16:7a:f0:4a:
fb:15:e5:48:f7:bb:e0:41:c4:cc:b9:6e:36:cd:7f:
d9:42:8d:db:2b:bd:63:ac:fa:8d:fb:a4:43:54:7b:
96:1c:91:1f:db:9d:9b:75:52:6a:62:74:95:e0:54:
25:2b:d5:98:b4:70:7b:5c:71:9d:bc:99:7f:98:de:
a9:3b:d6:e2:8a:e5:42:69:af:c1:cc:45:69:21:50:
12:12:90:2b:69:98:b9:f4:86:02:16:02:3b:2e:23:
1a:e6:23:a2:88:82:6d:b1:9e:70:29:4a:96:b9:19:
1c:3c:84:dc:8c:10:02:3f:83:54:c1:63:61:e6:0d:
28:7c:08:31:08:bb:98:4d:7a:02:30:a8:58:8f:b5:
ac:a5:ed:00:b7:f4:7e:fe:cd:2e:87:b8:39:cb:94:
26:09:38:3c:99:29:e7:1c:b3:69:81:a8:9b:0c:32:
99:92:03:88:de:36:95:c9:ae:e3:c5:22:35:95:5b:
c0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EF:EA:F2:AC:17:09:37:2E:A5:E7:29:15:8F:64:AB:0B:BE:07:A1
X509v3 Authority Key Identifier:
keyid:AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:7b:3d:4d:b2:41:57:fb:23:9e:c0:a2:2f:ed:11:49:94:24:
49:7c:b9:94:3f:51:11:1a:d1:23:b6:84:15:7c:97:c7:57:86:
24:2e:fb:52:1a:25:59:88:ed:ca:83:94:4d:d8:3a:f7:1c:6d:
1c:af:94:49:3e:a9:10:49:57:4a:52:a6:22:6e:e1:5c:0f:0d:
82:2f:f6:df:c1:03:30:94:2d:53:19:0d:7f:7a:c8:e9:ff:0e:
d8:2f:28:cf:97:49:2d:57:b8:96:e4:5c:2c:ee:13:66:9d:c7:
39:c7:59:69:4e:2b:d6:1c:4b:de:ad:5a:70:f0:71:ad:83:46:
4b:a4:ba:5d:47:66:70:fb:0f:6e:6d:5b:1b:e3:ca:a6:20:f4:
4c:6c:e1:41:01:b1:28:98:8a:3a:f3:d4:89:d2:29:f3:e3:11:
83:37:85:2c:32:fe:c6:6c:c4:cb:14:6c:a6:35:ba:35:29:eb:
6b:03:51:3e:5e:28:bc:f2:cf:d8:ca:ec:a7:7b:3b:96:7d:dd:
26:b8:cb:48:2a:d5:28:ca:44:de:1a:02:ae:8d:83:a7:22:1f:
e8:51:11:40:df:ee:6a:f9:e4:a3:6a:52:c4:d2:b8:1c:08:e3:
ed:51:6c:cc:f0:0f:77:0b:e5:fc:fc:f2:df:5b:25:86:d5:a8:
4f:c1:c8:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTFB8wLHTVZxDscBmRFGbO8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjZmJiY2E4NTJiOTU3Mzg1OTA5ZjZiZDI4OGNkZjM2M2Yy
MThiMDYwHhcNMjUwMjAyMDUwMDEwWhcNMjUwMjAzMDUwMDEwWjAzMTEwLwYDVQQD
Eyg2ZmVmZWFmMmFjMTcwOTM3MmVhNWU3MjkxNThmNjRhYjBiYmUwN2ExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfLK/vJ4Y11vfjhnSLGtAZz0x/Vp
jJPZR5G542aQqZSYw61nAxu78idlw+I7GAgpq3uuEzFKHqxYRKe9UQJR51i/QZkt
0BZ68Er7FeVI97vgQcTMuW42zX/ZQo3bK71jrPqN+6RDVHuWHJEf252bdVJqYnSV
4FQlK9WYtHB7XHGdvJl/mN6pO9biiuVCaa/BzEVpIVASEpAraZi59IYCFgI7LiMa
5iOiiIJtsZ5wKUqWuRkcPITcjBACP4NUwWNh5g0ofAgxCLuYTXoCMKhYj7Wspe0A
t/R+/s0uh7g5y5QmCTg8mSnnHLNpgaibDDKZkgOI3jaVya7jxSI1lVvAawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG/v6vKsFwk3LqXnKRWPZKsLvgehMB8GA1UdIwQY
MBaAFKz7vKhSuVc4WQn2vSiM3zY/IYsGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclB1OHFGSzVWemhaQ2ZhOUtJemZOajhoaXdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS81MjQ3YjMtNjA2Ny00MzZkLWFlMTkt
Y2JhNzIyZWNiMmRiLzEvclB1OHFGSzVWemhaQ2ZhOUtJemZOajhoaXdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS81MjQ3YjMtNjA2Ny00MzZkLWFlMTktY2JhNzIyZWNiMmRi
LzEvclB1OHFGSzVWemhaQ2ZhOUtJemZOajhoaXdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWns9TbJB
V/sjnsCiL+0RSZQkSXy5lD9RERrRI7aEFXyXx1eGJC77UholWYjtyoOUTdg69xxt
HK+UST6pEElXSlKmIm7hXA8Ngi/238EDMJQtUxkNf3rI6f8O2C8oz5dJLVe4luRc
LO4TZp3HOcdZaU4r1hxL3q1acPBxrYNGS6S6XUdmcPsPbm1bG+PKpiD0TGzhQQGx
KJiKOvPUidIp8+MRgzeFLDL+xmzEyxRspjW6NSnrawNRPl4ovPLP2Mrsp3s7ln3d
JrjLSCrVKMpE3hoCro2DpyIf6FERQN/uavnko2pSxNK4HAjj7VFszPAPdwvl/Pzy
31slhtWoT8HIgQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:07:14 2025 by rpki-client