Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
File: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft (raw, json)
Hash identifier: KQ40lp1CuEjlFIlZDOIAgfWsPjRWrI+h2FB21xK1fbk=
Subject key identifier: 5D:60:30:A6:49:47:10:84:6A:4B:0E:4C:27:AD:67:0A:B6:B6:63:95
Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Certificate serial: 0194BAF265A5829E9F3608923BC59CA89E9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
Manifest number: 0E24
Signing time: Fri 31 Jan 2025 06:00:35 +0000
Manifest this update: Fri 31 Jan 2025 06:00:35 +0000
Manifest next update: Sat 01 Feb 2025 06:00:35 +0000
Files and hashes: 1: 8lcVMAvDHKFVWpkIvW003vZxmno.roa (hash: b9AoL9a4Iwp34m1O6gUmOqwjFvFHDHYDPCqNWBeuTCY=)
2: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl (hash: Uzyk6oQsAepQi3MtiMNix57ajRSAdTd2GE1+gHQjcFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:65:a5:82:9e:9f:36:08:92:3b:c5:9c:a8:9e:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Validity
Not Before: Jan 31 06:00:35 2025 GMT
Not After : Feb 1 06:00:35 2025 GMT
Subject: CN=5d6030a6494710846a4b0e4c27ad670ab6b66395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3b:40:a1:77:12:c9:b2:9e:35:9c:2d:99:fc:
d9:06:41:ad:51:e4:65:30:92:ee:8c:35:23:38:b3:
c4:c9:57:a9:49:88:96:86:c4:48:b6:6c:b1:f2:5a:
14:86:d9:3c:0f:3e:ed:58:94:76:95:4e:93:88:dc:
db:8c:b2:6a:14:b1:c6:4a:e0:96:b1:1a:e7:7b:03:
74:34:88:8b:95:be:1c:94:43:db:7b:ed:b7:de:7a:
39:89:5f:bd:75:82:d9:67:c4:49:8e:f4:2e:28:1e:
71:2f:3e:0e:f4:39:16:28:60:46:e9:55:b8:24:0f:
c3:5e:2f:2e:22:59:70:99:7f:75:3d:51:08:cb:ad:
c9:78:85:67:85:41:df:1d:ef:c0:ac:8d:f0:dd:00:
70:19:d0:b7:fa:a5:17:02:bc:b8:64:5b:42:95:28:
99:01:a7:f6:dd:cc:fd:6b:d4:f8:ac:9d:56:dc:c5:
e5:a0:81:e7:2f:bb:da:d0:69:97:1c:ee:09:77:8e:
26:13:aa:f4:b9:d8:5c:90:da:fe:1d:d9:05:8a:28:
ad:e1:a7:3e:a1:d6:78:16:05:20:e0:d7:d6:93:4a:
34:f8:95:65:de:ce:42:37:9f:4d:78:4e:8b:a7:ef:
8f:aa:cb:cb:89:6b:6f:e2:aa:7e:2b:2a:88:54:e8:
62:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:60:30:A6:49:47:10:84:6A:4B:0E:4C:27:AD:67:0A:B6:B6:63:95
X509v3 Authority Key Identifier:
keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:d9:80:66:fb:88:69:69:9d:32:24:46:26:65:8e:47:aa:52:
87:59:55:7c:67:17:15:72:8e:93:a5:b6:de:47:b9:4c:2a:81:
35:5f:85:cc:e9:0f:f6:22:70:45:0e:5b:0e:bf:f4:35:58:d4:
91:b9:78:c2:fd:56:e7:cc:88:65:43:0c:b7:fa:bc:21:2b:92:
57:32:5f:33:15:fb:d6:d7:cf:ba:99:71:76:08:0e:3d:96:1a:
18:ce:27:0e:7f:09:4a:89:dc:db:a1:15:c0:1b:84:96:24:8e:
b3:2e:6b:94:44:9b:9b:f1:ee:e9:0f:78:cb:3c:70:65:fb:b0:
ad:95:a8:cd:eb:4a:5d:d0:99:96:db:45:60:60:65:e3:23:98:
b9:28:1a:8f:36:07:70:c6:b6:66:f9:12:d9:27:66:4d:9c:2e:
c2:cb:f6:57:73:32:96:7e:e9:14:30:e9:86:c8:1e:36:42:63:
62:93:ee:02:d5:57:64:4f:01:b7:59:58:6f:38:6a:cb:25:53:
ea:62:24:cb:0f:6d:dd:4f:b7:cf:80:14:61:53:d4:e9:8d:d0:
15:46:4a:ea:d8:26:85:00:e8:b8:f2:a4:d1:30:f5:10:f7:a8:
2f:04:1b:a1:a2:24:18:e4:be:7e:d7:3e:27:a5:e2:d9:ed:80:
f1:c4:8b:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS68mWlgp6fNgiSO8WcqJ6fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3N2I4YWEwNjNmYzRmMmJiODRhOWY1NmEzYmZhMzhiMmFi
ZWRmOWIwHhcNMjUwMTMxMDYwMDM1WhcNMjUwMjAxMDYwMDM1WjAzMTEwLwYDVQQD
Eyg1ZDYwMzBhNjQ5NDcxMDg0NmE0YjBlNGMyN2FkNjcwYWI2YjY2Mzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkztAoXcSybKeNZwtmfzZBkGtUeRl
MJLujDUjOLPEyVepSYiWhsRItmyx8loUhtk8Dz7tWJR2lU6TiNzbjLJqFLHGSuCW
sRrnewN0NIiLlb4clEPbe+233no5iV+9dYLZZ8RJjvQuKB5xLz4O9DkWKGBG6VW4
JA/DXi8uIllwmX91PVEIy63JeIVnhUHfHe/ArI3w3QBwGdC3+qUXAry4ZFtClSiZ
Aaf23cz9a9T4rJ1W3MXloIHnL7va0GmXHO4Jd44mE6r0udhckNr+HdkFiiit4ac+
odZ4FgUg4NfWk0o0+JVl3s5CN59NeE6Lp++PqsvLiWtv4qp+KyqIVOhiOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF1gMKZJRxCEaksOTCetZwq2tmOVMB8GA1UdIwQY
MBaAFJd7iqBj/E8ruEqfVqO/o4sqvt+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9iZDU5ZDktNjkwYS00ZmUyLWIyOTUt
N2VjNTEyM2JlMTYyLzEvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9iZDU5ZDktNjkwYS00ZmUyLWIyOTUtN2VjNTEyM2JlMTYy
LzEvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo9mAZvuI
aWmdMiRGJmWOR6pSh1lVfGcXFXKOk6W23ke5TCqBNV+FzOkP9iJwRQ5bDr/0NVjU
kbl4wv1W58yIZUMMt/q8ISuSVzJfMxX71tfPuplxdggOPZYaGM4nDn8JSonc26EV
wBuEliSOsy5rlESbm/Hu6Q94yzxwZfuwrZWozetKXdCZlttFYGBl4yOYuSgajzYH
cMa2ZvkS2SdmTZwuwsv2V3Myln7pFDDphsgeNkJjYpPuAtVXZE8Bt1lYbzhqyyVT
6mIkyw9t3U+3z4AUYVPU6Y3QFUZK6tgmhQDouPKk0TD1EPeoLwQboaIkGOS+ftc+
J6Xi2e2A8cSLlg==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:35 2025 by rpki-client on console-fra.rpki-client.org