Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json)
Hash identifier: 0kvkaR0d5xLF88A0AAccteu3CQD0nA0ia1VR3sJdxLU=
Subject key identifier: FF:E0:F6:0A:C2:6B:7A:DF:C4:56:84:6B:3E:7F:FE:4A:D6:E8:F1:00
Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Certificate serial: 0194BB9723862CF1B43CA39FD696310854B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
Manifest number: 1429
Signing time: Fri 31 Jan 2025 09:00:31 +0000
Manifest this update: Fri 31 Jan 2025 09:00:31 +0000
Manifest next update: Sat 01 Feb 2025 09:00:31 +0000
Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=)
2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: 4LitjvQtGtDpX+GS8czg83cZ41cWXs1Axb1AyKvnAR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:23:86:2c:f1:b4:3c:a3:9f:d6:96:31:08:54:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Validity
Not Before: Jan 31 09:00:31 2025 GMT
Not After : Feb 1 09:00:31 2025 GMT
Subject: CN=ffe0f60ac26b7adfc456846b3e7ffe4ad6e8f100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f4:77:31:a2:cb:c2:ed:4f:13:6e:22:08:13:
d4:f5:bc:60:ac:1f:10:84:72:96:fa:55:32:d6:64:
15:c9:2a:3c:18:6d:1d:8e:c7:8d:f0:54:51:7d:8b:
d2:22:60:93:15:13:56:04:20:7c:b5:ab:84:5b:d6:
f6:16:60:6b:79:9e:30:03:32:21:69:c1:24:93:3e:
0b:e6:52:3f:fc:d4:4c:8d:9a:60:6c:f8:46:48:2c:
e8:c7:07:d4:55:b5:17:06:f5:bc:04:a7:25:d2:7a:
ea:35:65:3d:ce:4c:ed:ed:06:bd:ad:ee:11:31:26:
b1:d1:e0:c4:61:49:34:16:9b:84:c6:2c:35:46:fd:
ce:83:97:36:d8:c6:a3:9a:61:8a:8e:26:96:83:f9:
27:f8:79:ac:49:04:84:c0:2e:2a:eb:1d:2c:51:1e:
23:a2:6f:59:cb:d4:a5:00:79:43:2f:c6:59:58:b3:
c6:4d:ee:b1:a9:cf:28:39:af:fe:22:fa:c8:1b:39:
f2:1a:45:1c:92:27:8d:01:cc:e4:f3:34:17:f1:cf:
12:bb:89:28:61:7c:2d:95:b8:f2:be:55:ea:3d:5c:
4d:ec:95:9e:9e:02:02:ff:bc:4b:5c:4b:3b:5d:cb:
63:c9:54:5b:74:b8:ab:5d:cc:af:26:9b:be:0b:29:
4b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E0:F6:0A:C2:6B:7A:DF:C4:56:84:6B:3E:7F:FE:4A:D6:E8:F1:00
X509v3 Authority Key Identifier:
keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:ee:6d:92:a1:ca:1f:d7:ae:b9:48:85:4c:b4:ae:b9:52:74:
b5:48:0b:c1:4f:fc:f1:34:bb:4a:ea:38:5d:f8:82:7f:53:30:
66:66:76:1e:7d:98:91:be:b6:25:96:52:2a:b0:e5:82:fc:c0:
02:c6:07:6d:02:08:3d:f2:48:b7:5d:88:c9:d6:63:38:6e:ae:
e7:36:a5:11:ef:b8:e6:f9:27:0d:3d:d7:ea:d2:5c:6a:e7:1f:
65:5a:6d:df:c6:80:71:15:01:cc:e6:51:a8:ea:06:d5:5f:13:
e6:11:b1:f3:ba:24:51:d1:e1:70:9d:29:95:36:2b:9c:0f:9a:
6e:2c:1e:bd:ed:b2:cc:17:81:17:58:e4:76:20:e8:f8:cd:59:
16:d8:e3:a3:5d:5d:1b:bc:54:f7:32:43:f8:2c:87:25:5f:2c:
dc:e7:38:8c:9c:f7:ed:c4:a5:15:53:b1:83:7b:52:45:a1:25:
2b:0c:f3:05:bf:7f:69:b4:d5:18:a6:cf:a6:80:28:cc:44:2f:
60:1d:dc:0f:b3:d3:1a:b7:3b:f3:36:57:45:b5:a2:8e:76:d3:
2d:88:51:d8:40:1b:4d:20:ee:50:39:93:e1:ad:30:e9:39:b2:
63:b8:85:7d:a6:70:3f:d9:6b:de:39:54:b9:56:44:e2:19:4c:
4c:50:23:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7lyOGLPG0PKOf1pYxCFSyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNTFjZmVmOGYzZWQ4NmQxMWFlYWJhZDRkMTllMDZhNWQw
NzBkMzAwHhcNMjUwMTMxMDkwMDMxWhcNMjUwMjAxMDkwMDMxWjAzMTEwLwYDVQQD
EyhmZmUwZjYwYWMyNmI3YWRmYzQ1Njg0NmIzZTdmZmU0YWQ2ZThmMTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4PR3MaLLwu1PE24iCBPU9bxgrB8Q
hHKW+lUy1mQVySo8GG0djseN8FRRfYvSImCTFRNWBCB8tauEW9b2FmBreZ4wAzIh
acEkkz4L5lI//NRMjZpgbPhGSCzoxwfUVbUXBvW8BKcl0nrqNWU9zkzt7Qa9re4R
MSax0eDEYUk0FpuExiw1Rv3Og5c22MajmmGKjiaWg/kn+HmsSQSEwC4q6x0sUR4j
om9Zy9SlAHlDL8ZZWLPGTe6xqc8oOa/+IvrIGznyGkUckieNAczk8zQX8c8Su4ko
YXwtlbjyvlXqPVxN7JWengIC/7xLXEs7XctjyVRbdLirXcyvJpu+CylL6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP/g9grCa3rfxFaEaz5//krW6PEAMB8GA1UdIwQY
MBaAFKFRz++PPthtEa6rrU0Z4GpdBw0wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS85NTliOWYtMTQwOC00Y2Y3LThlNzUt
NDA0NmEzMmQyN2E0LzEvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS85NTliOWYtMTQwOC00Y2Y3LThlNzUtNDA0NmEzMmQyN2E0
LzEvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEO5tkqHK
H9euuUiFTLSuuVJ0tUgLwU/88TS7Suo4XfiCf1MwZmZ2Hn2Ykb62JZZSKrDlgvzA
AsYHbQIIPfJIt12IydZjOG6u5zalEe+45vknDT3X6tJcaucfZVpt38aAcRUBzOZR
qOoG1V8T5hGx87okUdHhcJ0plTYrnA+abiweve2yzBeBF1jkdiDo+M1ZFtjjo11d
G7xU9zJD+CyHJV8s3Oc4jJz37cSlFVOxg3tSRaElKwzzBb9/abTVGKbPpoAozEQv
YB3cD7PTGrc78zZXRbWijnbTLYhR2EAbTSDuUDmT4a0w6TmyY7iFfaZwP9lr3jlU
uVZE4hlMTFAjUA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:41:21 2025 by rpki-client on console-fra.rpki-client.org