Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft (raw, json)
Hash identifier: SYHPoZxXLkstfAr8U+/RSfRxRHJbQNde10W804ZZdMM=
Subject key identifier: 5F:A4:20:BC:B3:F9:01:32:73:B2:D3:87:AE:21:B0:4F:61:F6:95:B7
Authority key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
Certificate issuer: /CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Certificate serial: 0194BABB075E3ACB3C66CF5AB3EA66CA721D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
Manifest number: 03EC
Signing time: Fri 31 Jan 2025 05:00:06 +0000
Manifest this update: Fri 31 Jan 2025 05:00:06 +0000
Manifest next update: Sat 01 Feb 2025 05:00:06 +0000
Files and hashes: 1: VftZMAe-HTAVpMfwxes2FDGztqs.roa (hash: KKajIYpdkVhXrGRISoXddoe+7uEBtFz7JC2M/TbIWjs=)
2: aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl (hash: UeciIikD7mDmqO74b4azhFzDT6c5hD/cjuMNB2iCRWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:07:5e:3a:cb:3c:66:cf:5a:b3:ea:66:ca:72:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Validity
Not Before: Jan 31 05:00:06 2025 GMT
Not After : Feb 1 05:00:06 2025 GMT
Subject: CN=5fa420bcb3f9013273b2d387ae21b04f61f695b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:31:f1:67:9b:0c:5d:e2:0d:1c:c5:f6:20:03:
d1:14:37:41:bc:3e:d7:55:df:41:42:d8:7a:34:f2:
af:9c:b2:c4:de:1c:13:08:38:4c:61:7f:a6:70:70:
c5:0b:63:4e:bd:bd:98:9f:d3:d1:36:6a:fb:a6:a4:
6b:99:7d:39:d8:a1:63:97:88:14:62:d6:c3:17:f0:
d2:b4:88:02:72:2a:84:cc:18:ad:2f:28:63:2d:44:
d6:63:09:cc:96:80:73:9e:38:1f:d1:a1:86:33:1a:
49:b1:f3:06:f6:ac:6a:d2:a5:61:eb:5e:e3:32:8b:
37:d4:7a:84:2c:55:5a:ad:e7:01:57:0f:7f:cd:91:
1b:e6:b3:cf:90:de:b6:0a:a1:65:68:f7:02:d5:37:
85:83:7e:07:d7:93:ab:6b:03:f9:5c:e0:6d:38:4d:
15:a3:33:f3:da:ed:a4:3e:2a:19:9a:0f:1b:b5:8f:
60:2a:32:b9:fd:87:66:6d:9a:6c:4c:87:64:d9:a3:
19:80:da:14:f9:70:fd:0e:53:0d:8d:40:70:32:a6:
fb:60:23:3e:f9:62:9d:4a:9a:95:e2:26:ef:f8:a8:
a4:f9:19:f0:9d:ff:af:9e:67:40:42:3b:c7:cf:01:
d5:7f:50:47:d5:5e:2d:69:ff:da:5c:68:33:c7:1e:
df:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A4:20:BC:B3:F9:01:32:73:B2:D3:87:AE:21:B0:4F:61:F6:95:B7
X509v3 Authority Key Identifier:
keyid:68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:4f:4c:42:d6:a5:e4:77:8d:78:a1:23:4c:91:a7:89:41:62:
7b:40:31:2f:2e:b6:32:dc:d4:b3:2d:66:87:91:29:99:98:6b:
d5:2a:96:42:c8:b5:06:49:05:b8:c3:48:98:87:4f:b2:e8:85:
82:6a:fc:53:9f:bb:8b:e9:1e:dc:05:59:d5:1d:bf:c2:5f:f4:
d9:e9:6e:fd:3f:4f:a2:4f:d0:e9:c0:2d:39:e7:91:b1:ea:cb:
9a:33:8a:c1:82:bb:d8:19:84:ca:85:1a:77:5c:02:6e:8b:79:
6f:84:f6:f2:33:a5:c9:e0:cf:0d:b6:78:3d:0f:4b:af:29:d5:
67:22:0f:4a:b9:e1:06:86:ac:3f:ea:0c:6d:97:66:77:66:4a:
0b:28:f9:f8:3d:3d:cd:e9:80:78:c6:ff:88:dd:0f:c9:6c:fb:
ff:bf:1f:d8:bc:5a:0b:3a:bc:cd:82:b2:53:15:46:9c:b7:6f:
78:c2:76:00:3f:86:18:9c:3d:78:50:63:28:ca:24:82:3c:55:
b8:cc:ff:47:ba:1e:05:4f:2c:f7:be:2d:fd:dd:e1:f9:73:d3:
f9:f3:28:1c:d4:bd:fb:02:e4:60:e9:7a:1c:51:36:25:c3:11:
d7:43:d7:06:d9:9f:40:2c:5f:ec:97:b5:5f:bf:0a:25:ae:4d:
99:60:1c:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS6uwdeOss8Zs9as+pmynIdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4OWM2OGE0NTY2MWY5MGE0MDU5YmQ4YzI5YTNjOTY3YmY5
MmU4NTUwHhcNMjUwMTMxMDUwMDA2WhcNMjUwMjAxMDUwMDA2WjAzMTEwLwYDVQQD
Eyg1ZmE0MjBiY2IzZjkwMTMyNzNiMmQzODdhZTIxYjA0ZjYxZjY5NWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzHxZ5sMXeINHMX2IAPRFDdBvD7X
Vd9BQth6NPKvnLLE3hwTCDhMYX+mcHDFC2NOvb2Yn9PRNmr7pqRrmX052KFjl4gU
YtbDF/DStIgCciqEzBitLyhjLUTWYwnMloBznjgf0aGGMxpJsfMG9qxq0qVh617j
Mos31HqELFVarecBVw9/zZEb5rPPkN62CqFlaPcC1TeFg34H15OrawP5XOBtOE0V
ozPz2u2kPioZmg8btY9gKjK5/YdmbZpsTIdk2aMZgNoU+XD9DlMNjUBwMqb7YCM+
+WKdSpqV4ibv+Kik+Rnwnf+vnmdAQjvHzwHVf1BH1V4taf/aXGgzxx7fOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+kILyz+QEyc7LTh64hsE9h9pW3MB8GA1UdIwQY
MBaAFGicaKRWYfkKQFm9jCmjyWe/kuhVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUp4b3BGWmgtUXBBV2IyTUthUEpaNy1TNkZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8zOWRhY2MtMWM1Ny00ZGViLWEyMjUt
YjYyMDdmNzU1MjY3LzEvYUp4b3BGWmgtUXBBV2IyTUthUEpaNy1TNkZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC8zOWRhY2MtMWM1Ny00ZGViLWEyMjUtYjYyMDdmNzU1MjY3
LzEvYUp4b3BGWmgtUXBBV2IyTUthUEpaNy1TNkZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq09MQtal
5HeNeKEjTJGniUFie0AxLy62MtzUsy1mh5EpmZhr1SqWQsi1BkkFuMNImIdPsuiF
gmr8U5+7i+ke3AVZ1R2/wl/02elu/T9Pok/Q6cAtOeeRserLmjOKwYK72BmEyoUa
d1wCbot5b4T28jOlyeDPDbZ4PQ9LrynVZyIPSrnhBoasP+oMbZdmd2ZKCyj5+D09
zemAeMb/iN0PyWz7/78f2LxaCzq8zYKyUxVGnLdveMJ2AD+GGJw9eFBjKMokgjxV
uMz/R7oeBU8s974t/d3h+XPT+fMoHNS9+wLkYOl6HFE2JcMR10PXBtmfQCxf7Je1
X78KJa5NmWAc9w==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:03 2025 by rpki-client on console-fra.rpki-client.org