Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
File: D48Gw1SUYI2azOsHCkzRarlf9qY.mft (raw, json)
Hash identifier: vyU6/qYA8ebyLBfXsUNjK6oLmGNU6qJWKUtzZ/Hdw2U=
Subject key identifier: 6E:F8:F0:CD:B4:01:35:65:A1:EB:6C:16:1F:A5:24:49:94:1F:97:13
Authority key identifier: 0F:8F:06:C3:54:94:60:8D:9A:CC:EB:07:0A:4C:D1:6A:B9:5F:F6:A6
Certificate issuer: /CN=0f8f06c35494608d9acceb070a4cd16ab95ff6a6
Certificate serial: 0194C3BE297AF2AAF4BAFE902171315EB7DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D48Gw1SUYI2azOsHCkzRarlf9qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
Manifest number: 34
Signing time: Sat 01 Feb 2025 23:00:07 +0000
Manifest this update: Sat 01 Feb 2025 23:00:07 +0000
Manifest next update: Sun 02 Feb 2025 23:00:07 +0000
Files and hashes: 1: D48Gw1SUYI2azOsHCkzRarlf9qY.crl (hash: fPEr3MqaGiUGbjZwbBmmI0HlIcC74BotDekpAysc3E0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D48Gw1SUYI2azOsHCkzRarlf9qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:29:7a:f2:aa:f4:ba:fe:90:21:71:31:5e:b7:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f8f06c35494608d9acceb070a4cd16ab95ff6a6
Validity
Not Before: Feb 1 23:00:07 2025 GMT
Not After : Feb 2 23:00:07 2025 GMT
Subject: CN=6ef8f0cdb4013565a1eb6c161fa52449941f9713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:12:d5:05:a9:ba:0f:e4:cb:8c:7e:7c:8f:2b:
a5:33:4e:bb:2f:cd:d4:df:48:40:9d:3a:53:dc:4b:
5e:48:51:1a:7e:09:c6:81:b8:4d:7b:2d:46:d4:fe:
92:b9:dc:1f:1d:d6:e9:70:06:f3:6a:54:2d:39:bf:
70:5b:c5:0c:7c:f2:e4:6c:42:42:3f:25:ae:ed:d4:
9e:45:73:41:31:0d:fb:30:f5:f7:7f:63:8b:00:5f:
79:57:cf:b5:0d:65:23:3f:99:08:b2:ec:86:96:22:
73:cd:e6:15:14:8b:1e:0e:a1:69:32:3a:b1:7c:16:
2b:d2:97:a4:41:fa:90:f5:ca:36:4e:48:9f:05:e8:
22:4c:f2:bc:31:5a:e1:e7:06:f3:85:1b:ef:43:b7:
03:ca:31:b8:af:62:22:78:45:d9:8c:88:a7:70:f3:
ad:d3:60:42:16:6d:c8:9e:16:18:48:06:43:77:67:
8a:83:29:bb:1a:df:95:2d:18:ee:ea:55:89:72:cb:
00:10:e5:53:b6:43:d4:00:0d:0a:a9:07:58:30:20:
8b:af:0f:14:04:ca:bd:e7:c4:07:4d:37:6e:8c:2a:
17:f7:97:e1:98:06:70:1c:81:9e:31:19:33:6b:6f:
da:9f:26:d8:f5:33:b2:e0:1a:32:8e:cc:3a:8d:d9:
89:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F8:F0:CD:B4:01:35:65:A1:EB:6C:16:1F:A5:24:49:94:1F:97:13
X509v3 Authority Key Identifier:
keyid:0F:8F:06:C3:54:94:60:8D:9A:CC:EB:07:0A:4C:D1:6A:B9:5F:F6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D48Gw1SUYI2azOsHCkzRarlf9qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:db:4d:b7:c2:a0:18:1b:74:1b:10:ad:38:36:ff:5d:05:bb:
d7:20:8f:66:63:85:85:75:6f:0f:fe:12:15:d9:5c:c0:fe:61:
d9:9c:f0:b9:be:e3:03:c0:77:76:cb:64:98:8d:ac:7b:c8:4f:
cc:27:34:37:ea:75:6c:89:33:00:85:27:d7:22:cd:77:5d:78:
59:e8:3e:35:d3:37:2e:4e:09:8d:14:21:67:ba:31:a1:76:e8:
79:c7:41:81:7d:94:a4:b4:d0:2c:23:7e:7a:b1:d2:ee:14:c7:
b3:7c:e8:39:4d:17:46:dc:ee:13:0c:ff:3d:e1:1e:6b:34:da:
b1:2c:54:d4:d3:2e:cc:4c:ad:09:97:1c:7b:f9:6c:b1:95:93:
79:b2:e7:3b:79:cc:74:22:db:db:78:03:8a:3c:53:da:7f:60:
04:d4:c2:28:c9:b7:4c:d2:06:16:f6:6b:00:68:2c:43:5c:ea:
81:f4:84:4a:3a:aa:e0:5a:3f:d5:11:f3:6a:b0:3d:f9:ac:d0:
68:18:8c:9c:bd:c5:3a:bb:9d:15:d8:83:04:94:be:73:dd:48:
48:f6:91:02:5f:48:2a:af:6c:7f:4b:2d:c7:c8:8f:2c:d4:a0:
2e:5b:02:07:03:58:18:77:27:62:fc:49:f5:7e:ab:c1:fe:b9:
ff:85:2c:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDvil68qr0uv6QIXExXrfcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmOGYwNmMzNTQ5NDYwOGQ5YWNjZWIwNzBhNGNkMTZhYjk1
ZmY2YTYwHhcNMjUwMjAxMjMwMDA3WhcNMjUwMjAyMjMwMDA3WjAzMTEwLwYDVQQD
Eyg2ZWY4ZjBjZGI0MDEzNTY1YTFlYjZjMTYxZmE1MjQ0OTk0MWY5NzEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xLVBam6D+TLjH58jyulM067L83U
30hAnTpT3EteSFEafgnGgbhNey1G1P6SudwfHdbpcAbzalQtOb9wW8UMfPLkbEJC
PyWu7dSeRXNBMQ37MPX3f2OLAF95V8+1DWUjP5kIsuyGliJzzeYVFIseDqFpMjqx
fBYr0pekQfqQ9co2TkifBegiTPK8MVrh5wbzhRvvQ7cDyjG4r2IieEXZjIincPOt
02BCFm3InhYYSAZDd2eKgym7Gt+VLRju6lWJcssAEOVTtkPUAA0KqQdYMCCLrw8U
BMq958QHTTdujCoX95fhmAZwHIGeMRkza2/anybY9TOy4Boyjsw6jdmJPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG748M20ATVloetsFh+lJEmUH5cTMB8GA1UdIwQY
MBaAFA+PBsNUlGCNmszrBwpM0Wq5X/amMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDQ4R3cxU1VZSTJhek9zSENrelJhcmxmOXFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9iMDkyMTgtODllNy00ODU5LWIzMmMt
NjBlOWI3ZGM1NTBiLzEvRDQ4R3cxU1VZSTJhek9zSENrelJhcmxmOXFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9iMDkyMTgtODllNy00ODU5LWIzMmMtNjBlOWI3ZGM1NTBi
LzEvRDQ4R3cxU1VZSTJhek9zSENrelJhcmxmOXFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACttNt8Kg
GBt0GxCtODb/XQW71yCPZmOFhXVvD/4SFdlcwP5h2Zzwub7jA8B3dstkmI2se8hP
zCc0N+p1bIkzAIUn1yLNd114Weg+NdM3Lk4JjRQhZ7oxoXboecdBgX2UpLTQLCN+
erHS7hTHs3zoOU0XRtzuEwz/PeEeazTasSxU1NMuzEytCZcce/lssZWTebLnO3nM
dCLb23gDijxT2n9gBNTCKMm3TNIGFvZrAGgsQ1zqgfSESjqq4Fo/1RHzarA9+azQ
aBiMnL3FOrudFdiDBJS+c91ISPaRAl9IKq9sf0stx8iPLNSgLlsCBwNYGHcnYvxJ
9X6rwf65/4UsVw==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:57:24 2025 by rpki-client