Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
File: fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft (raw, json)
Hash identifier: +5FUpLa3XHxCe4xyorAGTZBySZu3kLTlS35wWc3MIBQ=
Subject key identifier: 73:F2:28:F6:74:C1:FC:03:07:F1:BE:A2:A1:E6:50:1E:8F:E6:3B:FB
Authority key identifier: 7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
Certificate issuer: /CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Certificate serial: 0194BAF25C9EF63E55A3C4758AE07D15D6AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
Manifest number: 1427
Signing time: Fri 31 Jan 2025 06:00:33 +0000
Manifest this update: Fri 31 Jan 2025 06:00:33 +0000
Manifest next update: Sat 01 Feb 2025 06:00:33 +0000
Files and hashes: 1: JcAhZrilsZkvSyojajHWDjOF_6I.roa (hash: W7eqhWRP/GcuUd5Q71f0zaMk5StnfS4hfdbNGseVYE0=)
2: fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl (hash: UpnxC9eXj3309FDDFMr3SUVv1PxcCJGwHBzEUEpHDX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:5c:9e:f6:3e:55:a3:c4:75:8a:e0:7d:15:d6:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Validity
Not Before: Jan 31 06:00:33 2025 GMT
Not After : Feb 1 06:00:33 2025 GMT
Subject: CN=73f228f674c1fc0307f1bea2a1e6501e8fe63bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c1:0d:9a:87:03:43:47:59:75:99:46:2a:b0:
8a:41:9c:43:aa:46:1d:c6:a4:e9:a0:25:02:a9:a1:
46:a9:93:84:c7:df:28:d1:c3:df:52:92:60:80:85:
6a:d9:c6:c9:3a:ed:79:09:e5:8a:8f:42:24:25:06:
2e:51:3c:bc:4e:97:b0:f2:c6:54:dd:3b:b4:bb:fa:
57:97:51:b1:91:cc:ad:c6:65:36:7b:ec:5f:55:b1:
9d:36:42:c4:67:71:1a:9a:b1:87:cf:a9:d6:c8:59:
23:2c:aa:ea:7f:a3:31:c8:4c:14:59:a4:96:01:1b:
18:8f:b8:37:66:43:f1:fb:e6:f5:59:59:5e:4f:32:
a4:10:f2:ec:a8:28:c9:ae:cf:66:a3:8d:23:e1:fe:
8d:0b:c8:ac:f4:5d:63:99:e4:c7:49:d1:31:8e:53:
80:b8:89:0b:22:8d:88:c0:da:9a:e3:bc:1a:df:8a:
e2:d2:00:cc:0e:ce:c9:93:2c:d0:f0:3d:b9:95:db:
a8:69:e4:8b:b4:1e:61:fb:84:a9:d4:fe:df:84:5e:
65:fc:e8:dc:2d:9a:81:51:b4:45:12:e3:ac:7e:75:
67:1a:03:fb:47:5b:30:c4:d5:ff:5a:06:18:b7:cc:
a2:f9:98:87:6c:9e:0b:ea:50:21:22:ad:d4:2e:c3:
6f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F2:28:F6:74:C1:FC:03:07:F1:BE:A2:A1:E6:50:1E:8F:E6:3B:FB
X509v3 Authority Key Identifier:
keyid:7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:b1:e5:8c:7a:dd:36:7d:08:8b:9c:c4:b5:12:e0:43:dd:02:
39:25:28:29:12:a1:41:f8:bc:43:3a:fe:25:45:7c:24:26:01:
47:27:b2:3f:b9:a1:79:0a:4c:ac:63:77:aa:17:ba:42:62:a0:
8a:f0:e9:ae:84:57:9c:c9:16:a6:6c:ed:9b:09:78:a6:af:f6:
5a:05:a9:ce:99:57:25:e3:8c:99:ce:c0:c6:19:bb:91:75:63:
92:04:56:b4:5c:59:71:77:4c:09:b2:ef:9f:31:56:9c:02:68:
94:94:0d:a2:59:82:3a:c9:4c:99:8f:88:27:bc:5e:fb:39:93:
ce:bb:36:e0:d1:10:66:3a:4d:fe:a1:c4:5b:46:b1:4f:46:4a:
49:67:dd:92:4d:b6:2f:ac:36:79:28:db:39:25:94:a7:86:5b:
a1:00:01:43:23:01:af:63:6a:95:f3:d8:d6:57:e4:f6:53:ee:
58:f5:98:ec:81:06:18:1f:9e:d2:22:2c:f7:6b:91:2e:5b:5a:
83:af:4d:95:17:bf:7d:4a:68:02:ab:70:92:a5:56:97:7e:e3:
5a:60:5c:c8:a0:c0:2c:86:01:88:30:f1:db:11:fa:a9:70:c0:
18:33:cb:1e:62:6b:31:6b:ab:37:be:95:6f:fa:15:81:5e:2d:
e0:f3:b8:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS68lye9j5Vo8R1iuB9FdasMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlYzYxMGQyMTVkMzg5MTM0MmJjMzI4NzJhNTBmNGQwY2Zh
OWRjOWYwHhcNMjUwMTMxMDYwMDMzWhcNMjUwMjAxMDYwMDMzWjAzMTEwLwYDVQQD
Eyg3M2YyMjhmNjc0YzFmYzAzMDdmMWJlYTJhMWU2NTAxZThmZTYzYmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMENmocDQ0dZdZlGKrCKQZxDqkYd
xqTpoCUCqaFGqZOEx98o0cPfUpJggIVq2cbJOu15CeWKj0IkJQYuUTy8Tpew8sZU
3Tu0u/pXl1GxkcytxmU2e+xfVbGdNkLEZ3EamrGHz6nWyFkjLKrqf6MxyEwUWaSW
ARsYj7g3ZkPx++b1WVleTzKkEPLsqCjJrs9mo40j4f6NC8is9F1jmeTHSdExjlOA
uIkLIo2IwNqa47wa34ri0gDMDs7JkyzQ8D25lduoaeSLtB5h+4Sp1P7fhF5l/Ojc
LZqBUbRFEuOsfnVnGgP7R1swxNX/WgYYt8yi+ZiHbJ4L6lAhIq3ULsNvYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHPyKPZ0wfwDB/G+oqHmUB6P5jv7MB8GA1UdIwQY
MBaAFH7GENIV04kTQrwyhypQ9NDPqdyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnNZUTBoWFRpUk5DdkRLSEtsRDAwTS1wM0o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8yMjkxMWMtY2U1MS00MzhiLTg2Y2Yt
ZTg1NjYxM2QyYjEwLzEvZnNZUTBoWFRpUk5DdkRLSEtsRDAwTS1wM0o4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8yMjkxMWMtY2U1MS00MzhiLTg2Y2YtZTg1NjYxM2QyYjEw
LzEvZnNZUTBoWFRpUk5DdkRLSEtsRDAwTS1wM0o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgLHljHrd
Nn0Ii5zEtRLgQ90COSUoKRKhQfi8Qzr+JUV8JCYBRyeyP7mheQpMrGN3qhe6QmKg
ivDproRXnMkWpmztmwl4pq/2WgWpzplXJeOMmc7Axhm7kXVjkgRWtFxZcXdMCbLv
nzFWnAJolJQNolmCOslMmY+IJ7xe+zmTzrs24NEQZjpN/qHEW0axT0ZKSWfdkk22
L6w2eSjbOSWUp4ZboQABQyMBr2NqlfPY1lfk9lPuWPWY7IEGGB+e0iIs92uRLlta
g69NlRe/fUpoAqtwkqVWl37jWmBcyKDALIYBiDDx2xH6qXDAGDPLHmJrMWurN76V
b/oVgV4t4PO4zA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:39:50 2025 by rpki-client on console-fra.rpki-client.org