Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
File: uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft (raw, json)
Hash identifier: YG+5PrREkIuTxX3paPejkneonJi4ZpnAnWRebxA4d4I=
Subject key identifier: B7:B1:0B:0E:8D:7E:F6:3A:0C:69:82:2B:57:E3:27:84:31:71:85:E7
Authority key identifier: B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02
Certificate issuer: /CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02
Certificate serial: 019510C75C1B283ABC498593D55517644CEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
Manifest number: 0EA7
Signing time: Sun 16 Feb 2025 22:00:55 +0000
Manifest this update: Sun 16 Feb 2025 22:00:55 +0000
Manifest next update: Mon 17 Feb 2025 22:00:55 +0000
Files and hashes: 1: uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl (hash: m+fxv6d8Eqruu20ewFsHAk3w/U7CQv3KblazkpZil8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:5c:1b:28:3a:bc:49:85:93:d5:55:17:64:4c:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02
Validity
Not Before: Feb 16 22:00:55 2025 GMT
Not After : Feb 17 22:00:55 2025 GMT
Subject: CN=b7b10b0e8d7ef63a0c69822b57e32784317185e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ff:f7:2f:97:91:18:4f:9a:df:85:dc:31:b4:
67:27:21:0e:c3:a8:fc:b3:e5:17:b5:eb:f2:2b:0b:
77:e8:c2:1b:a4:2b:63:84:2d:30:9e:04:fb:ee:1f:
c9:bb:fe:40:f4:5a:08:3c:16:05:ed:2f:79:9b:97:
16:65:5a:bd:b6:82:5a:8f:19:5a:cd:6c:c1:dc:e2:
61:5c:32:fc:c5:4e:86:d0:35:9a:17:8a:dd:9c:ef:
b8:51:e2:7d:26:e2:6d:3f:92:7d:06:9f:33:65:f3:
a4:30:fb:9e:1d:f5:a9:0f:75:eb:70:b2:40:d4:e1:
fc:56:3e:32:58:2a:aa:a9:39:40:07:90:68:5e:6a:
21:77:f8:a2:3c:e7:76:64:cc:6a:1c:c8:47:bf:90:
86:57:8d:1d:cc:c0:29:f6:fe:9b:fc:a2:3a:4e:14:
f4:5a:3e:f2:73:e2:1b:42:eb:f1:db:43:70:8f:a3:
9f:d3:f9:62:4c:87:8f:e2:5a:b4:a9:fe:0f:eb:2d:
c2:78:1a:7e:db:60:24:22:45:33:15:5a:01:19:00:
5b:67:65:b1:1d:d2:38:73:95:43:55:c7:06:2b:e0:
c0:38:5a:95:51:43:00:dd:35:0d:4c:dd:f7:0c:16:
88:a4:97:36:f4:f6:8b:86:d1:be:b0:9a:f7:9a:f1:
77:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B1:0B:0E:8D:7E:F6:3A:0C:69:82:2B:57:E3:27:84:31:71:85:E7
X509v3 Authority Key Identifier:
keyid:B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:97:9f:77:29:64:6c:42:61:61:66:c1:46:d6:e8:22:45:b5:
33:c0:d6:cf:b0:97:15:ed:9d:97:c9:ad:9e:ee:4e:75:23:e8:
50:90:55:b4:d6:9e:41:ba:b6:de:fc:69:52:bf:24:c7:ee:db:
39:35:17:b9:d9:52:fa:14:98:02:a4:cf:99:4d:bd:c4:8b:59:
6b:84:8d:87:de:16:c2:86:9c:ff:2a:32:77:2b:03:ac:36:88:
87:2f:c4:89:a9:87:41:f3:23:e9:e6:15:2e:46:87:14:e3:25:
93:fe:e7:eb:b4:3f:13:45:f8:29:24:75:81:ff:83:30:56:60:
52:e3:64:20:97:a0:4f:85:ce:7d:29:6b:6d:20:58:92:ac:11:
ee:e3:71:df:03:5f:4f:28:07:5b:70:6e:d5:01:44:5d:87:bc:
53:58:82:55:bd:0e:18:aa:81:c4:1d:e0:63:01:63:fe:cd:5e:
f4:1b:bb:8d:26:52:a1:1c:83:f4:32:0c:da:af:62:dd:44:df:
f5:f6:26:17:d5:39:21:97:d0:a0:1e:f6:69:9d:32:8a:97:b0:
62:e8:26:4a:b0:07:6b:2c:32:8f:1a:59:f3:61:84:2e:27:52:
d6:71:ad:f4:20:bd:dd:5b:3c:00:be:d8:78:2f:74:84:c0:ee:
6d:4a:59:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQx1wbKDq8SYWT1VUXZEzsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4NWUwYmU2YjcyNzljZGVjZjc4YmRkNjQxMDVmODQ0M2Qw
YzBjMDIwHhcNMjUwMjE2MjIwMDU1WhcNMjUwMjE3MjIwMDU1WjAzMTEwLwYDVQQD
EyhiN2IxMGIwZThkN2VmNjNhMGM2OTgyMmI1N2UzMjc4NDMxNzE4NWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApf/3L5eRGE+a34XcMbRnJyEOw6j8
s+UXtevyKwt36MIbpCtjhC0wngT77h/Ju/5A9FoIPBYF7S95m5cWZVq9toJajxla
zWzB3OJhXDL8xU6G0DWaF4rdnO+4UeJ9JuJtP5J9Bp8zZfOkMPueHfWpD3XrcLJA
1OH8Vj4yWCqqqTlAB5BoXmohd/iiPOd2ZMxqHMhHv5CGV40dzMAp9v6b/KI6ThT0
Wj7yc+IbQuvx20Nwj6Of0/liTIeP4lq0qf4P6y3CeBp+22AkIkUzFVoBGQBbZ2Wx
HdI4c5VDVccGK+DAOFqVUUMA3TUNTN33DBaIpJc29PaLhtG+sJr3mvF3vwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLexCw6NfvY6DGmCK1fjJ4QxcYXnMB8GA1UdIwQY
MBaAFLheC+a3J5zez3i91kEF+EQ9DAwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUY0TDVyY25uTjdQZUwzV1FRWDRSRDBNREFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC82ZTFmMzgtNjgwNy00ODY2LWE5ZWQt
NDNiZjFjNDNlYzBmLzEvdUY0TDVyY25uTjdQZUwzV1FRWDRSRDBNREFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC82ZTFmMzgtNjgwNy00ODY2LWE5ZWQtNDNiZjFjNDNlYzBm
LzEvdUY0TDVyY25uTjdQZUwzV1FRWDRSRDBNREFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqJefdylk
bEJhYWbBRtboIkW1M8DWz7CXFe2dl8mtnu5OdSPoUJBVtNaeQbq23vxpUr8kx+7b
OTUXudlS+hSYAqTPmU29xItZa4SNh94Wwoac/yoydysDrDaIhy/EiamHQfMj6eYV
LkaHFOMlk/7n67Q/E0X4KSR1gf+DMFZgUuNkIJegT4XOfSlrbSBYkqwR7uNx3wNf
TygHW3Bu1QFEXYe8U1iCVb0OGKqBxB3gYwFj/s1e9Bu7jSZSoRyD9DIM2q9i3UTf
9fYmF9U5IZfQoB72aZ0yipewYugmSrAHaywyjxpZ82GELidS1nGt9CC93Vs8AL7Y
eC90hMDubUpZVA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:01 2025 by rpki-client