Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
File: iKVZ3N1bxLZssklvLm-w6PlUqus.mft (raw, json)
Hash identifier: ojr6eQI1Ec6BEZTIXSvJVzX6WTgGTsYAg/0DTuu7/yI=
Subject key identifier: 64:D4:D9:AB:A2:D5:B5:76:8C:B4:8D:D5:31:6E:C3:EA:A7:63:98:4D
Authority key identifier: 88:A5:59:DC:DD:5B:C4:B6:6C:B2:49:6F:2E:6F:B0:E8:F9:54:AA:EB
Certificate issuer: /CN=88a559dcdd5bc4b66cb2496f2e6fb0e8f954aaeb
Certificate serial: 019511355CAA6D266C5198438A765E77F99C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
Manifest number: 0DBE
Signing time: Mon 17 Feb 2025 00:01:04 +0000
Manifest this update: Mon 17 Feb 2025 00:01:04 +0000
Manifest next update: Tue 18 Feb 2025 00:01:04 +0000
Files and hashes: 1: iKVZ3N1bxLZssklvLm-w6PlUqus.crl (hash: PxY0LW7IaVBni29aaNohFXZdMiv28w/WcgWjhR8wYNA=)
2: oGUzs3HriURmMyvP-1mM3ixvd88.roa (hash: U9dJ3cn9/4GeEgNWQhNTsFuWjpySklwjtb60dseGPO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:5c:aa:6d:26:6c:51:98:43:8a:76:5e:77:f9:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a559dcdd5bc4b66cb2496f2e6fb0e8f954aaeb
Validity
Not Before: Feb 17 00:01:04 2025 GMT
Not After : Feb 18 00:01:04 2025 GMT
Subject: CN=64d4d9aba2d5b5768cb48dd5316ec3eaa763984d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e6:86:25:8d:ee:1a:45:0f:9b:01:a2:bb:a2:
4d:d8:96:5b:c8:56:7f:7d:8e:e1:7a:f3:07:35:74:
3a:09:76:39:45:d2:61:7a:95:a4:d9:8b:93:fa:d4:
c5:3b:cd:49:da:a8:71:fd:91:94:dd:f1:69:a6:d5:
76:1c:44:22:f1:76:f5:d2:21:77:17:a7:ed:df:69:
a2:f1:10:ae:44:16:cc:ef:ed:72:81:78:0a:5e:e2:
e3:f9:6f:01:d7:b3:1e:84:eb:09:c4:41:62:47:33:
49:e3:45:3f:cf:6e:6f:6d:3b:6d:63:89:9b:2a:77:
df:88:0e:e8:1b:f3:0c:a5:d1:4e:cc:07:00:02:4c:
3b:63:6c:db:92:a6:34:0a:02:41:9e:93:94:2a:f6:
1e:5d:1e:8f:8a:dc:eb:40:e0:63:3a:8e:74:74:a0:
42:d2:7f:be:9e:0a:33:73:b7:74:3b:34:02:cd:64:
42:47:4d:0a:a8:e8:a8:e2:cd:a2:65:93:db:1f:27:
e3:63:e7:7d:ca:6a:5a:95:d4:af:32:ff:5c:8c:48:
69:c1:52:4a:5c:b8:62:4b:f2:4e:df:41:b1:23:38:
4d:0d:a2:c1:db:07:20:d7:66:90:64:0b:87:6b:cf:
c2:69:9b:b0:32:30:39:dd:39:4e:68:d5:bd:56:d1:
ed:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D4:D9:AB:A2:D5:B5:76:8C:B4:8D:D5:31:6E:C3:EA:A7:63:98:4D
X509v3 Authority Key Identifier:
keyid:88:A5:59:DC:DD:5B:C4:B6:6C:B2:49:6F:2E:6F:B0:E8:F9:54:AA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:e6:23:09:05:7d:2d:b4:5d:67:0e:4a:71:b2:c2:db:52:4b:
43:cf:d6:e3:ff:89:5f:c9:27:bb:8f:05:4b:b1:00:c9:f6:89:
35:64:b8:d2:77:8e:c1:d3:7d:21:c0:9d:de:21:13:d5:91:3e:
2a:cf:5e:ca:d2:4d:54:cb:3c:46:1c:bc:26:d4:54:75:ee:dd:
f5:a7:5d:dd:89:2e:f1:45:bb:1f:aa:39:63:d5:df:0f:43:e8:
08:cd:ba:78:33:cc:28:44:9f:05:ba:c2:c5:33:6b:89:20:5d:
03:b6:7f:be:f1:12:33:28:94:0d:9e:16:1e:7a:db:b7:94:c6:
e9:fd:e7:52:63:17:13:53:05:4c:be:e1:a8:30:67:b0:24:6b:
5b:d0:98:26:4c:4d:86:d9:55:81:ff:07:0a:20:b3:a6:c4:a5:
ec:5d:48:0c:98:19:5b:54:15:0c:d9:7f:09:22:f6:25:04:5a:
af:0a:4e:3e:41:b0:68:03:09:fa:b5:85:74:8b:57:91:19:73:
34:b7:c9:54:99:79:0d:8f:5e:c5:a0:d2:8c:71:20:cf:8c:51:
aa:ed:e2:91:b9:e1:ba:c9:a8:ba:cb:a1:47:28:90:15:a2:f1:
a1:78:89:fa:b4:8e:d1:13:de:ec:38:e5:05:23:eb:fe:18:06:
a5:de:d8:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNVyqbSZsUZhDinZed/mcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YTU1OWRjZGQ1YmM0YjY2Y2IyNDk2ZjJlNmZiMGU4Zjk1
NGFhZWIwHhcNMjUwMjE3MDAwMTA0WhcNMjUwMjE4MDAwMTA0WjAzMTEwLwYDVQQD
Eyg2NGQ0ZDlhYmEyZDViNTc2OGNiNDhkZDUzMTZlYzNlYWE3NjM5ODRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzeaGJY3uGkUPmwGiu6JN2JZbyFZ/
fY7hevMHNXQ6CXY5RdJhepWk2YuT+tTFO81J2qhx/ZGU3fFpptV2HEQi8Xb10iF3
F6ft32mi8RCuRBbM7+1ygXgKXuLj+W8B17MehOsJxEFiRzNJ40U/z25vbTttY4mb
KnffiA7oG/MMpdFOzAcAAkw7Y2zbkqY0CgJBnpOUKvYeXR6PitzrQOBjOo50dKBC
0n++ngozc7d0OzQCzWRCR00KqOio4s2iZZPbHyfjY+d9ympaldSvMv9cjEhpwVJK
XLhiS/JO30GxIzhNDaLB2wcg12aQZAuHa8/CaZuwMjA53TlOaNW9VtHtvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGTU2aui1bV2jLSN1TFuw+qnY5hNMB8GA1UdIwQY
MBaAFIilWdzdW8S2bLJJby5vsOj5VKrrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9hODRjZDItNDVkOS00MTc5LWE5OTct
OTIwZDJhNjIwN2E0LzEvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC9hODRjZDItNDVkOS00MTc5LWE5OTctOTIwZDJhNjIwN2E0
LzEvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQOYjCQV9
LbRdZw5KcbLC21JLQ8/W4/+JX8knu48FS7EAyfaJNWS40neOwdN9IcCd3iET1ZE+
Ks9eytJNVMs8Rhy8JtRUde7d9add3Yku8UW7H6o5Y9XfD0PoCM26eDPMKESfBbrC
xTNriSBdA7Z/vvESMyiUDZ4WHnrbt5TG6f3nUmMXE1MFTL7hqDBnsCRrW9CYJkxN
htlVgf8HCiCzpsSl7F1IDJgZW1QVDNl/CSL2JQRarwpOPkGwaAMJ+rWFdItXkRlz
NLfJVJl5DY9exaDSjHEgz4xRqu3ikbnhusmousuhRyiQFaLxoXiJ+rSO0RPe7Djl
BSPr/hgGpd7Y8Q==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:30:37 2025 by rpki-client