Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
File: pWMWxxKYMeBREHlTLe2B3BLIHaA.mft (raw, json)
Hash identifier: xE1qxf/jVcCyISoi2APU1e6I8LqkwlTIdoYAlXtnjQw=
Subject key identifier: 5E:43:64:29:80:10:E5:0F:BF:2C:5E:BF:07:DF:3B:AA:AB:C2:2E:4E
Authority key identifier: A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
Certificate issuer: /CN=a56316c7129831e0511079532ded81dc12c81da0
Certificate serial: 0194BA849C3024A132CC4C9DB78323CB221B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
Manifest number: 0A38
Signing time: Fri 31 Jan 2025 04:00:40 +0000
Manifest this update: Fri 31 Jan 2025 04:00:40 +0000
Manifest next update: Sat 01 Feb 2025 04:00:40 +0000
Files and hashes: 1: XAMH6mQExatvC2LMnoXanctLKzE.roa (hash: pCAATiBl9IRxnVx1ZfARnp3JybBqcsAW/QN7pstrTq0=)
2: pWMWxxKYMeBREHlTLe2B3BLIHaA.crl (hash: tEIIRkeRTcjuwGPr/Fn5Y8p+SjsfTig5N5i2h8cf548=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:9c:30:24:a1:32:cc:4c:9d:b7:83:23:cb:22:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a56316c7129831e0511079532ded81dc12c81da0
Validity
Not Before: Jan 31 04:00:40 2025 GMT
Not After : Feb 1 04:00:40 2025 GMT
Subject: CN=5e4364298010e50fbf2c5ebf07df3baaabc22e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f4:21:af:c9:ed:9d:98:ed:31:80:fe:5c:41:
11:2c:fa:05:b5:d0:bf:da:3f:17:28:99:35:ab:dd:
cb:ff:8a:d8:01:1b:52:b3:53:36:d9:7e:01:77:08:
cb:39:ba:eb:1e:65:35:39:d6:72:84:02:0d:62:43:
27:fa:48:66:ae:70:f7:cc:53:81:60:86:5e:49:5c:
81:34:69:8a:9e:ba:2a:b7:d1:31:90:d6:d7:6a:50:
6e:3b:bf:7e:4a:33:5b:29:36:ce:0c:c9:3f:3a:b7:
28:94:80:ec:57:1e:b8:59:96:9d:ba:60:43:9c:d8:
75:b8:d5:31:e6:3b:a5:5c:b4:ab:40:e5:09:7d:e8:
eb:50:fd:01:e9:cb:31:0c:5d:7d:9d:b1:a1:db:d9:
d8:3f:81:b8:f6:ba:41:96:8e:c0:02:0c:9e:b6:d3:
95:c5:a3:2a:b7:03:04:d0:97:73:aa:b4:a7:9e:88:
f0:88:59:f4:9f:4d:06:6d:82:c1:ba:02:05:1d:55:
80:9a:dd:4d:e1:08:c9:a1:6d:0a:92:77:d6:1a:65:
c3:23:a0:57:02:69:93:1c:26:1b:06:12:49:4f:b2:
c9:40:ab:3f:1a:1e:06:6b:34:9a:f7:f0:c1:2d:17:
74:22:28:28:11:42:c0:39:d9:73:40:69:23:07:57:
cc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:43:64:29:80:10:E5:0F:BF:2C:5E:BF:07:DF:3B:AA:AB:C2:2E:4E
X509v3 Authority Key Identifier:
keyid:A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:05:16:3b:02:d0:db:8a:af:3c:15:17:17:9c:02:47:99:a1:
6b:a7:e5:13:1f:31:da:88:a6:fc:88:61:0e:1a:ee:6a:81:81:
9c:90:fa:8c:b7:da:0a:95:69:02:d8:82:f5:1d:7f:45:06:70:
0e:d5:3c:a7:b6:c3:48:e2:c9:6d:7e:2d:58:56:91:17:7d:48:
1f:90:90:98:75:99:d2:78:4b:d2:d0:18:bf:44:d9:b3:69:3f:
22:32:31:f2:be:ed:09:2e:09:e1:7f:1b:14:24:c1:ec:10:fd:
b5:18:45:12:4c:e3:bb:07:89:f5:22:28:98:dc:d3:41:9a:06:
69:03:bf:75:ec:7e:c0:73:e2:31:dd:16:b4:22:87:1a:99:5d:
4e:a6:fc:44:73:86:0f:6d:3c:04:57:d3:28:df:a5:c7:80:e8:
08:5d:6d:11:39:a7:26:78:6c:27:47:93:b8:be:b9:4c:17:a0:
bd:d1:fd:3a:76:bf:32:c4:d1:08:a1:d1:65:1d:76:e8:2a:f0:
02:82:60:78:76:7a:a9:31:05:b6:7a:7b:b2:ea:ce:4e:94:2f:
27:eb:48:a3:ad:6c:5d:a6:10:05:1a:27:e3:1e:a8:f3:b5:38:
72:e2:cb:8f:7b:63:b7:2f:f4:0d:fd:e6:ea:0e:d8:17:7b:e7:
5d:e3:3f:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS6hJwwJKEyzEydt4MjyyIbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NjMxNmM3MTI5ODMxZTA1MTEwNzk1MzJkZWQ4MWRjMTJj
ODFkYTAwHhcNMjUwMTMxMDQwMDQwWhcNMjUwMjAxMDQwMDQwWjAzMTEwLwYDVQQD
Eyg1ZTQzNjQyOTgwMTBlNTBmYmYyYzVlYmYwN2RmM2JhYWFiYzIyZTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvQhr8ntnZjtMYD+XEERLPoFtdC/
2j8XKJk1q93L/4rYARtSs1M22X4BdwjLObrrHmU1OdZyhAINYkMn+khmrnD3zFOB
YIZeSVyBNGmKnroqt9ExkNbXalBuO79+SjNbKTbODMk/OrcolIDsVx64WZadumBD
nNh1uNUx5julXLSrQOUJfejrUP0B6csxDF19nbGh29nYP4G49rpBlo7AAgyettOV
xaMqtwME0JdzqrSnnojwiFn0n00GbYLBugIFHVWAmt1N4QjJoW0KknfWGmXDI6BX
AmmTHCYbBhJJT7LJQKs/Gh4GazSa9/DBLRd0IigoEULAOdlzQGkjB1fMhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF5DZCmAEOUPvyxevwffO6qrwi5OMB8GA1UdIwQY
MBaAFKVjFscSmDHgURB5Uy3tgdwSyB2gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFdNV3h4S1lNZUJSRUhsVExlMkIzQkxJSGFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS80ZDkyNjctNGVhYy00MjEzLTliY2It
MjhiODJjMGExNGYwLzEvcFdNV3h4S1lNZUJSRUhsVExlMkIzQkxJSGFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS80ZDkyNjctNGVhYy00MjEzLTliY2ItMjhiODJjMGExNGYw
LzEvcFdNV3h4S1lNZUJSRUhsVExlMkIzQkxJSGFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgAUWOwLQ
24qvPBUXF5wCR5mha6flEx8x2oim/IhhDhruaoGBnJD6jLfaCpVpAtiC9R1/RQZw
DtU8p7bDSOLJbX4tWFaRF31IH5CQmHWZ0nhL0tAYv0TZs2k/IjIx8r7tCS4J4X8b
FCTB7BD9tRhFEkzjuweJ9SIomNzTQZoGaQO/dex+wHPiMd0WtCKHGpldTqb8RHOG
D208BFfTKN+lx4DoCF1tETmnJnhsJ0eTuL65TBegvdH9Ona/MsTRCKHRZR126Crw
AoJgeHZ6qTEFtnp7surOTpQvJ+tIo61sXaYQBRon4x6o87U4cuLLj3tjty/0Df3m
6g7YF3vnXeM/hA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:09 2025 by rpki-client on console-fra.rpki-client.org