Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
File: dhrP1knI7q2FUZQngfoW9o29EPM.mft (raw, json)
Hash identifier: RoLdoNu60JQ8PVr0dprfC20bGd6E5MMcW7GPkMyWC60=
Subject key identifier: 95:4F:08:35:FE:9F:53:A4:15:AC:FE:58:9E:8E:84:84:6D:11:AB:EA
Authority key identifier: 76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
Certificate issuer: /CN=761acfd649c8eead8551942781fa16f68dbd10f3
Certificate serial: 0194BB293B343B9357F5B94CC2C85D45626E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
Manifest number: 142B
Signing time: Fri 31 Jan 2025 07:00:29 +0000
Manifest this update: Fri 31 Jan 2025 07:00:29 +0000
Manifest next update: Sat 01 Feb 2025 07:00:29 +0000
Files and hashes: 1: UdkvXpXGLdhITVh5jtCCMBnxb7M.roa (hash: HifSo99m/eGKn8WJh44GwrCR837RJMUrmbV81B/JjSg=)
2: dhrP1knI7q2FUZQngfoW9o29EPM.crl (hash: ztosTauyugunfvdtxmGkoTTkAYkBtRQIBQJKkXGnbVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:3b:34:3b:93:57:f5:b9:4c:c2:c8:5d:45:62:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761acfd649c8eead8551942781fa16f68dbd10f3
Validity
Not Before: Jan 31 07:00:29 2025 GMT
Not After : Feb 1 07:00:29 2025 GMT
Subject: CN=954f0835fe9f53a415acfe589e8e84846d11abea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fa:5e:e8:7c:62:92:c0:15:88:3a:8e:c5:23:
c8:f1:8e:46:7e:fc:fd:a5:f9:68:89:79:cb:3b:c4:
f6:a0:21:60:0f:af:7a:38:bb:b0:35:43:81:60:6d:
66:15:2e:22:2c:25:3d:aa:c6:47:7e:99:03:be:d7:
a5:39:3e:54:f8:87:05:af:13:3e:01:68:ee:b8:b3:
dc:73:45:0b:cb:39:a8:5c:4c:50:78:d1:fd:e6:f1:
ef:bb:be:8d:da:35:da:0c:e8:88:42:0c:7a:9a:b5:
9b:89:21:a5:e4:47:b0:a5:9d:00:6c:1a:bf:bf:56:
d2:c0:49:b4:3d:a4:78:52:f0:1e:84:39:e0:8b:f6:
e3:09:36:ba:e5:fb:14:fc:3c:8b:45:6c:89:1d:4a:
78:87:37:88:b1:64:7d:95:a7:75:bf:16:dd:e2:10:
20:1b:2d:15:7a:d0:11:43:1d:6b:75:1a:7d:92:09:
a9:07:ae:ab:64:a1:2f:12:26:6e:70:00:b1:47:b5:
19:48:15:87:44:c6:fc:7c:0e:4a:c0:fb:fc:a4:8a:
ea:3e:67:3c:34:b0:f0:e2:df:46:a2:c4:fc:04:de:
e3:11:8f:7e:2c:2f:d9:b3:ff:32:20:00:1e:cc:d1:
8a:2a:85:29:03:e2:e6:5b:42:36:e9:5c:da:df:ee:
97:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4F:08:35:FE:9F:53:A4:15:AC:FE:58:9E:8E:84:84:6D:11:AB:EA
X509v3 Authority Key Identifier:
keyid:76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:6a:fc:4f:f3:37:27:ea:1d:22:c6:71:60:99:ab:a5:1a:22:
03:9f:bd:7d:98:37:1e:21:e8:13:98:56:8c:7e:97:fa:d8:df:
a2:9e:79:5e:a8:6e:e5:37:34:1e:fd:03:1f:e7:66:0e:6f:6c:
6d:5e:b8:e9:1b:9a:a9:81:f9:e5:68:8c:10:4a:43:ed:b0:b5:
5f:37:ed:63:6a:6f:ba:42:58:ed:65:1a:e5:24:f9:c8:ad:10:
1b:dd:b3:31:28:95:55:b1:72:bc:4d:18:d3:3e:d3:c7:59:98:
5a:13:9e:be:bf:bc:7e:7c:41:0b:15:0e:d0:52:61:be:bf:fd:
19:ef:91:0e:e5:36:98:ac:cf:1b:d2:ec:07:25:9e:6b:71:60:
aa:c2:c3:51:19:91:e1:ed:60:26:93:a4:5d:ba:5e:25:70:8b:
3a:de:75:31:88:c2:36:ec:0f:7e:b4:e5:e7:f6:e9:a2:63:45:
07:b3:2f:25:8b:3a:0b:65:f5:08:29:ad:e8:a7:ad:09:bf:99:
56:99:f2:1c:a7:09:ac:5f:1a:32:46:21:38:6d:a3:05:d8:1a:
31:a3:c5:50:7c:82:62:6b:b2:8e:13:43:22:d8:b4:c8:dc:86:
32:2d:1e:60:2d:3c:fd:1b:48:ab:f2:69:ea:9b:d9:4f:6b:2b:
2d:f6:8d:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7KTs0O5NX9blMwshdRWJuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MWFjZmQ2NDljOGVlYWQ4NTUxOTQyNzgxZmExNmY2OGRi
ZDEwZjMwHhcNMjUwMTMxMDcwMDI5WhcNMjUwMjAxMDcwMDI5WjAzMTEwLwYDVQQD
Eyg5NTRmMDgzNWZlOWY1M2E0MTVhY2ZlNTg5ZThlODQ4NDZkMTFhYmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuvpe6HxiksAViDqOxSPI8Y5Gfvz9
pfloiXnLO8T2oCFgD696OLuwNUOBYG1mFS4iLCU9qsZHfpkDvtelOT5U+IcFrxM+
AWjuuLPcc0ULyzmoXExQeNH95vHvu76N2jXaDOiIQgx6mrWbiSGl5EewpZ0AbBq/
v1bSwEm0PaR4UvAehDngi/bjCTa65fsU/DyLRWyJHUp4hzeIsWR9lad1vxbd4hAg
Gy0VetARQx1rdRp9kgmpB66rZKEvEiZucACxR7UZSBWHRMb8fA5KwPv8pIrqPmc8
NLDw4t9GosT8BN7jEY9+LC/Zs/8yIAAezNGKKoUpA+LmW0I26Vza3+6XPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJVPCDX+n1OkFaz+WJ6OhIRtEavqMB8GA1UdIwQY
MBaAFHYaz9ZJyO6thVGUJ4H6FvaNvRDzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGhyUDFrbkk3cTJGVVpRbmdmb1c5bzI5RVBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC82ZjkyODMtYjRkNC00NGNkLWE2OWIt
YzczMjAxZGY5OTk1LzEvZGhyUDFrbkk3cTJGVVpRbmdmb1c5bzI5RVBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC82ZjkyODMtYjRkNC00NGNkLWE2OWItYzczMjAxZGY5OTk1
LzEvZGhyUDFrbkk3cTJGVVpRbmdmb1c5bzI5RVBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMGr8T/M3
J+odIsZxYJmrpRoiA5+9fZg3HiHoE5hWjH6X+tjfop55Xqhu5Tc0Hv0DH+dmDm9s
bV646RuaqYH55WiMEEpD7bC1XzftY2pvukJY7WUa5ST5yK0QG92zMSiVVbFyvE0Y
0z7Tx1mYWhOevr+8fnxBCxUO0FJhvr/9Ge+RDuU2mKzPG9LsByWea3FgqsLDURmR
4e1gJpOkXbpeJXCLOt51MYjCNuwPfrTl5/bpomNFB7MvJYs6C2X1CCmt6KetCb+Z
VpnyHKcJrF8aMkYhOG2jBdgaMaPFUHyCYmuyjhNDIti0yNyGMi0eYC08/RtIq/Jp
6pvZT2srLfaN4g==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:39:34 2025 by rpki-client on console-fra.rpki-client.org