Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
File: iq94tpd0pVUH3qv4xMlpQunvDSA.mft (raw, json)
Hash identifier: cBiQPBTAe4k1O9sKcAvgc2jt+TbmbqRVCNd8hXake3E=
Subject key identifier: CA:24:CB:78:89:44:0D:61:15:F5:0A:A4:41:E1:65:B6:F1:77:71:65
Authority key identifier: 8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20
Certificate issuer: /CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20
Certificate serial: 0194BB28FE7084F4298DF00F913B6DFCE37A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
Manifest number: 0B25
Signing time: Fri 31 Jan 2025 07:00:13 +0000
Manifest this update: Fri 31 Jan 2025 07:00:13 +0000
Manifest next update: Sat 01 Feb 2025 07:00:13 +0000
Files and hashes: 1: JQCJu_zj_dBb25hVe1CPLuILo-c.roa (hash: ppq/kkdZOhkWPFmrOFoKNIk30mkp2cJ+7oYbrYYHQUY=)
2: iq94tpd0pVUH3qv4xMlpQunvDSA.crl (hash: +DvtrXSqC2nNBTjXNUREimPvFEYPnVBfKdss8fQQhrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:28:fe:70:84:f4:29:8d:f0:0f:91:3b:6d:fc:e3:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20
Validity
Not Before: Jan 31 07:00:13 2025 GMT
Not After : Feb 1 07:00:13 2025 GMT
Subject: CN=ca24cb7889440d6115f50aa441e165b6f1777165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:49:a9:bd:02:e3:8a:c2:a7:d6:c7:8e:1d:39:
ef:b1:7b:33:42:b6:04:f1:6c:13:a8:6a:3e:4f:7e:
c3:c5:23:e1:b8:6f:5a:11:d0:ca:d1:72:83:21:4e:
f1:26:21:c8:7f:c7:1d:e1:d0:4e:c0:33:bf:55:a1:
04:bc:e1:b2:78:df:20:5f:c1:3b:b0:bf:79:3b:94:
1b:9a:5f:f8:c5:ae:69:81:b8:96:3a:d9:8b:a4:aa:
12:13:32:30:53:80:bf:38:67:f3:3b:24:13:9b:29:
27:8e:20:65:4a:3a:6f:99:93:22:a6:14:22:95:9e:
11:7c:2b:b2:9a:63:20:95:1e:1c:32:89:81:44:ef:
71:c0:42:84:e2:69:95:dc:c6:aa:95:cc:57:3d:95:
9d:5e:ae:73:3b:8b:99:4a:16:3b:9d:35:79:71:0c:
f7:e0:cb:0f:e4:10:aa:46:38:90:81:11:53:a1:b0:
18:c6:bc:6c:c0:9d:82:a9:b6:3f:65:99:7d:5c:e5:
51:c7:e5:d0:b8:3b:54:02:ac:59:03:d4:65:78:96:
7d:51:54:85:4a:2a:be:cc:ed:29:4b:51:e4:d8:a2:
f9:26:5d:bd:a8:3a:bb:02:2d:e7:98:7b:c1:f5:28:
66:08:42:06:98:c6:95:30:a4:30:0a:3e:99:9c:96:
35:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:24:CB:78:89:44:0D:61:15:F5:0A:A4:41:E1:65:B6:F1:77:71:65
X509v3 Authority Key Identifier:
keyid:8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:9f:9d:36:78:66:29:81:29:c3:12:f9:92:34:10:20:9f:b8:
ee:24:cd:25:16:32:55:58:cf:b2:1f:0f:e3:ed:17:70:2d:67:
67:a5:24:0a:ce:91:6b:4b:99:65:f5:22:b2:0d:d2:f5:5d:c4:
f6:db:9c:ca:6d:09:86:fb:e2:eb:36:45:a9:c9:8a:9f:41:67:
ef:38:e2:89:0d:32:0e:a5:5a:dd:1a:80:0a:75:2b:0c:3e:35:
16:e5:47:b9:63:54:7a:e3:b9:19:05:3c:19:bd:51:7b:d6:1e:
33:1e:82:91:e9:f7:51:2e:86:09:6a:8e:14:04:4e:a7:54:15:
18:be:a9:78:54:e4:dc:19:cf:2b:78:3b:43:ee:ed:84:af:bb:
25:2b:f1:5f:51:14:51:4b:46:71:46:c3:2e:14:46:db:b7:91:
77:d6:56:fc:5d:e8:49:1a:59:00:d8:dc:12:45:19:06:47:f3:
d7:a2:7d:f3:b0:a1:92:53:83:cf:e0:f3:75:47:af:15:34:05:
90:ff:24:9b:5b:cf:83:cf:8a:3d:54:91:87:a2:58:e4:e1:b5:
ff:b3:24:42:c4:e4:e0:f0:88:79:07:f3:4a:66:ad:8a:df:fa:
b5:5b:b2:b4:54:ee:78:0f:49:79:ef:c4:79:6c:ce:ca:89:b7:
db:0d:d0:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7KP5whPQpjfAPkTtt/ON6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWY3OGI2OTc3NGE1NTUwN2RlYWJmOGM0Yzk2OTQyZTll
ZjBkMjAwHhcNMjUwMTMxMDcwMDEzWhcNMjUwMjAxMDcwMDEzWjAzMTEwLwYDVQQD
EyhjYTI0Y2I3ODg5NDQwZDYxMTVmNTBhYTQ0MWUxNjViNmYxNzc3MTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEmpvQLjisKn1seOHTnvsXszQrYE
8WwTqGo+T37DxSPhuG9aEdDK0XKDIU7xJiHIf8cd4dBOwDO/VaEEvOGyeN8gX8E7
sL95O5Qbml/4xa5pgbiWOtmLpKoSEzIwU4C/OGfzOyQTmyknjiBlSjpvmZMiphQi
lZ4RfCuymmMglR4cMomBRO9xwEKE4mmV3MaqlcxXPZWdXq5zO4uZShY7nTV5cQz3
4MsP5BCqRjiQgRFTobAYxrxswJ2CqbY/ZZl9XOVRx+XQuDtUAqxZA9RleJZ9UVSF
Siq+zO0pS1Hk2KL5Jl29qDq7Ai3nmHvB9ShmCEIGmMaVMKQwCj6ZnJY1zQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMoky3iJRA1hFfUKpEHhZbbxd3FlMB8GA1UdIwQY
MBaAFIqveLaXdKVVB96r+MTJaULp7w0gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXE5NHRwZDBwVlVIM3F2NHhNbHBRdW52RFNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS83OTczOTAtODFkNC00YzVkLWFiNzEt
NzA4ODU2OGM1MWMwLzEvaXE5NHRwZDBwVlVIM3F2NHhNbHBRdW52RFNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS83OTczOTAtODFkNC00YzVkLWFiNzEtNzA4ODU2OGM1MWMw
LzEvaXE5NHRwZDBwVlVIM3F2NHhNbHBRdW52RFNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc5+dNnhm
KYEpwxL5kjQQIJ+47iTNJRYyVVjPsh8P4+0XcC1nZ6UkCs6Ra0uZZfUisg3S9V3E
9tucym0Jhvvi6zZFqcmKn0Fn7zjiiQ0yDqVa3RqACnUrDD41FuVHuWNUeuO5GQU8
Gb1Re9YeMx6Cken3US6GCWqOFAROp1QVGL6peFTk3BnPK3g7Q+7thK+7JSvxX1EU
UUtGcUbDLhRG27eRd9ZW/F3oSRpZANjcEkUZBkfz16J987ChklODz+DzdUevFTQF
kP8km1vPg8+KPVSRh6JY5OG1/7MkQsTk4PCIeQfzSmatit/6tVuytFTueA9Jee/E
eWzOyom32w3QcA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:30 2025 by rpki-client on console-fra.rpki-client.org