Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/8b0b93-867e-4062-a65b-66775b0ab7d1/1/hvH06JS38tbeGWF30OzA3s4oaZY.mft
File: hvH06JS38tbeGWF30OzA3s4oaZY.mft (raw, json)
Hash identifier: oxG/a4t+3kl96L+/eM2eyobuYYjzPj3ccn9e82docDw=
Subject key identifier: C2:DD:F8:19:98:BF:E9:06:01:A9:FA:8B:66:32:1A:F2:2A:51:34:9C
Authority key identifier: 86:F1:F4:E8:94:B7:F2:D6:DE:19:61:77:D0:EC:C0:DE:CE:28:69:96
Certificate issuer: /CN=86f1f4e894b7f2d6de196177d0ecc0dece286996
Certificate serial: 019510C756CAE10ED97FD6C4C7D9CAADA735
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvH06JS38tbeGWF30OzA3s4oaZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/8b0b93-867e-4062-a65b-66775b0ab7d1/1/hvH06JS38tbeGWF30OzA3s4oaZY.mft
Manifest number: 079D
Signing time: Sun 16 Feb 2025 22:00:54 +0000
Manifest this update: Sun 16 Feb 2025 22:00:54 +0000
Manifest next update: Mon 17 Feb 2025 22:00:54 +0000
Files and hashes: 1: hvH06JS38tbeGWF30OzA3s4oaZY.crl (hash: pboclAvgFQBHEnrJndBiUcgVbFPFTQUyaIHkaZM0vgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/8b0b93-867e-4062-a65b-66775b0ab7d1/1/hvH06JS38tbeGWF30OzA3s4oaZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/8b0b93-867e-4062-a65b-66775b0ab7d1/1/hvH06JS38tbeGWF30OzA3s4oaZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hvH06JS38tbeGWF30OzA3s4oaZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:56:ca:e1:0e:d9:7f:d6:c4:c7:d9:ca:ad:a7:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86f1f4e894b7f2d6de196177d0ecc0dece286996
Validity
Not Before: Feb 16 22:00:54 2025 GMT
Not After : Feb 17 22:00:54 2025 GMT
Subject: CN=c2ddf81998bfe90601a9fa8b66321af22a51349c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:ed:8b:95:17:2a:29:c6:70:e4:78:35:a8:
16:81:c3:b0:c0:9e:e5:0b:1d:d3:1c:b7:40:bb:8c:
42:15:08:ac:4b:3b:1a:7c:7a:ff:c6:d6:37:b6:51:
26:80:54:8b:43:00:e2:ab:d4:e3:82:00:57:7a:e2:
82:07:76:66:92:f4:ac:f6:e7:0d:37:e1:5c:1e:aa:
b3:1c:e8:28:3d:93:88:07:93:90:f6:e6:7a:4b:a1:
a0:ec:d0:44:53:b0:e2:22:32:38:c7:6b:7b:72:24:
f4:f9:a1:a0:c4:54:bb:04:08:00:88:ec:bc:ae:8d:
85:49:6d:86:91:b7:57:0e:40:3a:e0:91:c5:ac:4c:
6e:cb:d5:eb:bb:a4:c3:a9:78:1e:05:d9:8f:d9:5d:
ba:a1:d8:55:ce:08:bf:61:6e:2a:b0:10:ea:a0:04:
24:b6:2c:b5:a8:bc:17:a4:d6:74:36:99:52:d3:03:
67:6e:f2:ee:0e:9e:f9:eb:d9:6b:01:5f:12:af:c9:
39:16:b3:9d:9f:62:87:9a:8e:a9:c8:ba:91:cb:fa:
b5:80:3b:72:1a:e4:dd:0a:ed:cd:c7:ca:74:e2:d3:
94:45:71:9e:33:19:18:ca:19:41:a4:4c:98:d7:bf:
4c:4c:02:d2:fd:ae:54:2a:63:7c:4b:86:0d:32:5b:
96:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DD:F8:19:98:BF:E9:06:01:A9:FA:8B:66:32:1A:F2:2A:51:34:9C
X509v3 Authority Key Identifier:
keyid:86:F1:F4:E8:94:B7:F2:D6:DE:19:61:77:D0:EC:C0:DE:CE:28:69:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvH06JS38tbeGWF30OzA3s4oaZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/8b0b93-867e-4062-a65b-66775b0ab7d1/1/hvH06JS38tbeGWF30OzA3s4oaZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/8b0b93-867e-4062-a65b-66775b0ab7d1/1/hvH06JS38tbeGWF30OzA3s4oaZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:4d:8c:b4:f0:c9:90:a4:f3:93:73:c4:05:85:f2:32:9e:0b:
70:d3:6d:8f:51:af:ce:70:b2:e4:b2:7e:b5:55:e7:db:1a:31:
73:b6:90:a8:ed:10:7e:12:91:90:4d:2d:3b:9c:00:cc:56:aa:
f6:2b:93:a4:07:be:bf:85:c4:0f:35:49:4d:ed:49:d7:a5:86:
2d:64:b6:3d:da:dc:0d:d4:65:a9:0e:9c:b6:83:dd:e0:a6:da:
02:05:54:f4:d8:6a:a9:78:fd:f6:40:97:27:a5:1b:3f:42:d4:
d9:8a:c5:8f:96:83:f4:50:30:22:21:e8:a6:5b:26:03:85:b3:
5e:77:33:34:fd:8d:e5:8c:85:9d:40:40:36:99:f8:a0:d5:6d:
69:f6:1d:2f:24:31:5f:50:42:6a:73:91:85:bd:17:1d:18:d6:
b6:11:9b:b3:85:78:5f:fb:86:c6:fa:ee:d8:cc:b0:81:69:45:
8a:3b:8f:03:2a:ec:41:55:c9:ce:a7:7a:60:ba:d4:80:fa:ac:
45:3b:94:27:69:52:92:d7:4a:48:7c:14:01:f1:81:5b:62:94:
c8:db:02:6e:4c:16:6c:d7:71:fa:27:38:43:01:7f:6c:73:c3:
fb:32:7e:ad:95:a9:84:50:dc:10:e0:fa:0c:dc:79:f9:8e:bf:
77:9c:2a:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQx1bK4Q7Zf9bEx9nKrac1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZjFmNGU4OTRiN2YyZDZkZTE5NjE3N2QwZWNjMGRlY2Uy
ODY5OTYwHhcNMjUwMjE2MjIwMDU0WhcNMjUwMjE3MjIwMDU0WjAzMTEwLwYDVQQD
EyhjMmRkZjgxOTk4YmZlOTA2MDFhOWZhOGI2NjMyMWFmMjJhNTEzNDljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ7ti5UXKinGcOR4NagWgcOwwJ7l
Cx3THLdAu4xCFQisSzsafHr/xtY3tlEmgFSLQwDiq9TjggBXeuKCB3ZmkvSs9ucN
N+FcHqqzHOgoPZOIB5OQ9uZ6S6Gg7NBEU7DiIjI4x2t7ciT0+aGgxFS7BAgAiOy8
ro2FSW2GkbdXDkA64JHFrExuy9Xru6TDqXgeBdmP2V26odhVzgi/YW4qsBDqoAQk
tiy1qLwXpNZ0NplS0wNnbvLuDp7569lrAV8Sr8k5FrOdn2KHmo6pyLqRy/q1gDty
GuTdCu3Nx8p04tOURXGeMxkYyhlBpEyY179MTALS/a5UKmN8S4YNMluWswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMLd+BmYv+kGAan6i2YyGvIqUTScMB8GA1UdIwQY
MBaAFIbx9OiUt/LW3hlhd9DswN7OKGmWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHZIMDZKUzM4dGJlR1dGMzBPekEzczRvYVpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS84YjBiOTMtODY3ZS00MDYyLWE2NWIt
NjY3NzViMGFiN2QxLzEvaHZIMDZKUzM4dGJlR1dGMzBPekEzczRvYVpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS84YjBiOTMtODY3ZS00MDYyLWE2NWItNjY3NzViMGFiN2Qx
LzEvaHZIMDZKUzM4dGJlR1dGMzBPekEzczRvYVpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOE2MtPDJ
kKTzk3PEBYXyMp4LcNNtj1GvznCy5LJ+tVXn2xoxc7aQqO0QfhKRkE0tO5wAzFaq
9iuTpAe+v4XEDzVJTe1J16WGLWS2PdrcDdRlqQ6ctoPd4KbaAgVU9NhqqXj99kCX
J6UbP0LU2YrFj5aD9FAwIiHoplsmA4WzXnczNP2N5YyFnUBANpn4oNVtafYdLyQx
X1BCanORhb0XHRjWthGbs4V4X/uGxvru2MywgWlFijuPAyrsQVXJzqd6YLrUgPqs
RTuUJ2lSktdKSHwUAfGBW2KUyNsCbkwWbNdx+ic4QwF/bHPD+zJ+rZWphFDcEOD6
DNx5+Y6/d5wqHQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:38 2025 by rpki-client