Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
File: 2lPr-vXBh42KIqk44XMqigdxTzU.mft (raw, json)
Hash identifier: Iw+UdNGoIVxCJ5IxASm8BQgegWsern8fqjVcVeqNNlQ=
Subject key identifier: 25:1D:21:B7:55:51:E4:22:C9:0E:1D:D7:C3:18:B6:F5:AF:72:57:96
Authority key identifier: DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35
Certificate issuer: /CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35
Certificate serial: 0194BB2928BC5B0F2ACCFC52779A9F86A68D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
Manifest number: 1426
Signing time: Fri 31 Jan 2025 07:00:24 +0000
Manifest this update: Fri 31 Jan 2025 07:00:24 +0000
Manifest next update: Sat 01 Feb 2025 07:00:24 +0000
Files and hashes: 1: 2lPr-vXBh42KIqk44XMqigdxTzU.crl (hash: +lRMviQM73zUNgh0/ESLJJlowF7cA67GtRDW/icjAfE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:28:bc:5b:0f:2a:cc:fc:52:77:9a:9f:86:a6:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35
Validity
Not Before: Jan 31 07:00:24 2025 GMT
Not After : Feb 1 07:00:24 2025 GMT
Subject: CN=251d21b75551e422c90e1dd7c318b6f5af725796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d9:ea:71:7e:d1:74:51:68:9a:c3:38:59:54:
ca:18:c2:0b:d5:03:a5:cd:b7:a8:76:30:90:c3:8c:
f9:3c:8b:a7:55:1c:27:99:a0:03:4c:66:54:41:1b:
51:89:ad:ca:e2:2f:25:64:f4:09:64:01:97:de:64:
0a:1a:fc:be:a0:4b:23:36:62:d7:ec:0a:02:c6:b0:
8a:72:ba:49:82:e0:6c:ad:ef:ad:d5:e2:2e:43:9f:
00:b0:ce:02:c8:9e:cd:c4:d0:b9:5a:fd:33:7e:fb:
43:2d:47:df:44:ef:6b:1c:64:2b:22:73:53:3a:00:
30:d9:7c:e6:25:90:24:5a:a5:28:d4:88:0c:66:4a:
16:74:ba:9f:38:21:f0:45:f8:b2:25:f3:2f:5c:2c:
b1:34:1d:3a:29:25:3e:41:07:1d:62:ae:77:c2:e3:
cb:1b:86:d0:0c:d9:03:ce:44:b9:89:e9:6c:fb:be:
1c:ef:ae:a2:67:ee:3c:2e:63:22:2a:7f:fd:83:53:
64:35:aa:90:67:43:82:9b:25:63:a1:aa:71:e9:b4:
ef:2d:ef:75:56:0d:b2:b0:e0:9b:cd:0c:d0:05:66:
34:f1:f7:f7:fb:dd:5b:05:76:5d:fd:a4:50:3b:c3:
26:17:c0:9b:30:d0:3e:88:a6:62:2f:37:cc:cb:eb:
43:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:1D:21:B7:55:51:E4:22:C9:0E:1D:D7:C3:18:B6:F5:AF:72:57:96
X509v3 Authority Key Identifier:
keyid:DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:a4:7a:30:e9:53:94:3f:b0:5d:77:85:f8:51:5b:71:ce:59:
8d:fc:93:c7:e3:25:07:c5:b3:88:3f:2a:95:eb:af:2b:4e:3e:
e6:3e:a4:de:ea:a8:1b:ae:c7:c3:ec:4c:f4:0d:27:cc:4d:7a:
fa:24:31:5e:76:83:b8:1b:1c:59:3b:ed:a3:ab:93:b4:3e:e5:
43:05:50:7d:fe:6c:da:3f:6b:82:90:f2:e6:23:1d:7b:53:38:
cb:36:0d:38:de:3f:6b:17:1f:0b:3d:71:26:07:f6:1c:22:d4:
a8:00:36:99:80:52:f6:c3:bf:17:0c:2f:bd:33:b9:40:2a:25:
40:b1:2b:3f:cc:fc:e9:45:2e:ca:05:ce:57:b3:90:d8:0d:2c:
1c:06:9a:9a:a0:6b:f4:7a:a8:d8:fb:c5:3c:5e:70:b5:d7:de:
c6:83:08:56:b6:eb:32:2d:27:67:1b:79:b2:31:cd:c6:01:dd:
55:09:83:76:d1:90:88:8c:07:d9:cd:50:3c:be:9b:dd:3b:a5:
c6:13:23:86:01:8d:53:a9:0a:38:f6:bf:7a:b4:ae:10:e7:c5:
63:bb:a3:e0:70:92:46:80:ba:5b:63:32:a8:7d:3b:5a:7c:ff:
10:05:2a:57:ce:f2:28:18:47:75:bf:02:85:40:96:5c:dd:6b:
11:18:cc:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7KSi8Ww8qzPxSd5qfhqaNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNTNlYmZhZjVjMTg3OGQ4YTIyYTkzOGUxNzMyYThhMDc3
MTRmMzUwHhcNMjUwMTMxMDcwMDI0WhcNMjUwMjAxMDcwMDI0WjAzMTEwLwYDVQQD
EygyNTFkMjFiNzU1NTFlNDIyYzkwZTFkZDdjMzE4YjZmNWFmNzI1Nzk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiNnqcX7RdFFomsM4WVTKGMIL1QOl
zbeodjCQw4z5PIunVRwnmaADTGZUQRtRia3K4i8lZPQJZAGX3mQKGvy+oEsjNmLX
7AoCxrCKcrpJguBsre+t1eIuQ58AsM4CyJ7NxNC5Wv0zfvtDLUffRO9rHGQrInNT
OgAw2XzmJZAkWqUo1IgMZkoWdLqfOCHwRfiyJfMvXCyxNB06KSU+QQcdYq53wuPL
G4bQDNkDzkS5iels+74c766iZ+48LmMiKn/9g1NkNaqQZ0OCmyVjoapx6bTvLe91
Vg2ysOCbzQzQBWY08ff3+91bBXZd/aRQO8MmF8CbMNA+iKZiLzfMy+tDmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCUdIbdVUeQiyQ4d18MYtvWvcleWMB8GA1UdIwQY
MBaAFNpT6/r1wYeNiiKpOOFzKooHcU81MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xYzdjMGUtMjNhMS00MTQyLWJlZTgt
OTNjOWU2YjA5M2JjLzEvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8xYzdjMGUtMjNhMS00MTQyLWJlZTgtOTNjOWU2YjA5M2Jj
LzEvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd6R6MOlT
lD+wXXeF+FFbcc5ZjfyTx+MlB8WziD8qleuvK04+5j6k3uqoG67Hw+xM9A0nzE16
+iQxXnaDuBscWTvto6uTtD7lQwVQff5s2j9rgpDy5iMde1M4yzYNON4/axcfCz1x
Jgf2HCLUqAA2mYBS9sO/FwwvvTO5QColQLErP8z86UUuygXOV7OQ2A0sHAaamqBr
9Hqo2PvFPF5wtdfexoMIVrbrMi0nZxt5sjHNxgHdVQmDdtGQiIwH2c1QPL6b3Tul
xhMjhgGNU6kKOPa/erSuEOfFY7uj4HCSRoC6W2MyqH07Wnz/EAUqV87yKBhHdb8C
hUCWXN1rERjMlA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:34:17 2025 by rpki-client on console-fra.rpki-client.org