Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json)
Hash identifier: prpg0Ni/v/eyh+UVSCK45/5ax7hPXL5TUo/DbRqlf40=
Subject key identifier: 45:FE:FB:B6:BF:F3:76:A0:A1:6C:43:43:19:EA:14:D7:E6:ED:9A:99
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 0194BB6028FD0454D070CB48A5AC67B4ED42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
Manifest number: 13B9
Signing time: Fri 31 Jan 2025 08:00:28 +0000
Manifest this update: Fri 31 Jan 2025 08:00:28 +0000
Manifest next update: Sat 01 Feb 2025 08:00:28 +0000
Files and hashes: 1: 98pSG03PsWjsaovooO14-BTQ9Vo.roa (hash: Nos0vMcOhKzLe90FJjKrPfa+9LXdDpzz5DlngxI3jBk=)
2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: Lmrt5V+lkVqH5Bf4VPa0t/ddnjBGA41PCk1AgOxfLRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:28:fd:04:54:d0:70:cb:48:a5:ac:67:b4:ed:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: Jan 31 08:00:28 2025 GMT
Not After : Feb 1 08:00:28 2025 GMT
Subject: CN=45fefbb6bff376a0a16c434319ea14d7e6ed9a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9e:65:e0:5f:7c:60:47:b3:96:d5:0f:6b:01:
d4:61:7f:d5:48:b4:ba:bc:c2:78:98:9d:e1:29:83:
09:41:26:3a:af:2c:32:ae:27:24:9f:d7:69:2c:07:
7d:13:01:84:3d:3e:a1:36:0f:ef:90:1d:ae:78:0c:
45:15:45:63:a9:30:bb:84:8a:75:e7:13:e7:f0:b6:
d5:dc:b0:d1:db:06:2f:98:86:bc:3c:1d:63:a9:0e:
c4:60:87:9a:bd:02:cd:67:91:b0:8e:8f:28:ad:5e:
af:a0:f1:19:b2:3e:2a:75:6e:61:bd:ae:c7:07:cd:
d7:34:04:b1:61:c8:b5:3b:9c:78:b6:d8:0e:9b:08:
e5:32:51:2d:7a:e6:06:cb:be:fc:16:75:e5:21:cd:
33:3f:28:cc:ab:d6:eb:44:ed:b2:57:c3:ee:68:89:
17:97:69:b2:79:bc:a3:7c:bc:68:51:cf:99:9d:91:
e7:56:3a:55:42:22:24:42:a7:9a:b1:27:ab:e4:1b:
f3:85:9b:9c:d3:b4:d9:c8:f9:b9:2a:60:dc:3b:79:
75:d3:cd:88:64:fd:dc:df:ae:51:c2:15:59:8d:a4:
0f:93:7b:28:3e:6a:88:1e:c6:a7:9f:63:05:f9:03:
17:98:5c:50:97:45:45:27:97:87:33:0f:ea:01:dd:
bc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:FE:FB:B6:BF:F3:76:A0:A1:6C:43:43:19:EA:14:D7:E6:ED:9A:99
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:39:1d:4a:a6:ec:b5:f4:49:db:27:14:16:4c:2a:bd:ba:00:
5b:02:e4:36:e4:31:74:7c:29:51:3d:19:5a:b7:fd:97:ef:2c:
f8:98:12:0b:50:bd:d3:df:5e:de:f1:28:2a:ce:8f:48:b5:01:
25:1e:3a:d2:77:33:d4:15:3b:20:48:56:b4:e5:35:ab:5f:ff:
11:b0:ea:a7:e6:07:09:54:45:c8:2c:45:1b:a8:ba:25:ee:d9:
96:3b:eb:2b:1e:aa:c4:70:60:14:65:64:ed:31:f7:3c:eb:7e:
a9:b4:0a:c6:f4:f1:17:83:6b:63:4f:95:31:21:55:d4:43:76:
ab:f5:f8:de:97:82:8a:e4:b5:99:d5:19:40:f2:e9:1d:2e:19:
d7:9e:a3:fe:92:41:05:40:fd:63:31:7d:87:31:4a:ab:53:26:
4a:39:85:10:9d:75:da:d4:2d:3a:fe:c4:b9:57:55:29:a6:f9:
70:41:f1:ef:db:eb:79:37:b3:eb:37:d2:9b:c3:bf:64:a0:53:
da:fe:3c:67:9c:26:72:8f:14:74:e7:86:8f:d0:fe:f3:07:52:
bc:fa:cc:0d:6d:9d:ee:0b:15:4a:82:a8:22:27:47:ab:dc:d9:
14:ac:ff:95:f5:c4:bb:14:0f:a8:94:61:b8:c8:e9:c8:42:57:
66:5d:79:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7YCj9BFTQcMtIpaxntO1CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDBhMGM2OGEyMDM5ZmYwY2E1MTQwMjQxMTUyNzFjOGEw
NDY2MDgwHhcNMjUwMTMxMDgwMDI4WhcNMjUwMjAxMDgwMDI4WjAzMTEwLwYDVQQD
Eyg0NWZlZmJiNmJmZjM3NmEwYTE2YzQzNDMxOWVhMTRkN2U2ZWQ5YTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk55l4F98YEezltUPawHUYX/VSLS6
vMJ4mJ3hKYMJQSY6rywyrickn9dpLAd9EwGEPT6hNg/vkB2ueAxFFUVjqTC7hIp1
5xPn8LbV3LDR2wYvmIa8PB1jqQ7EYIeavQLNZ5Gwjo8orV6voPEZsj4qdW5hva7H
B83XNASxYci1O5x4ttgOmwjlMlEteuYGy778FnXlIc0zPyjMq9brRO2yV8PuaIkX
l2myebyjfLxoUc+ZnZHnVjpVQiIkQqeasSer5BvzhZuc07TZyPm5KmDcO3l1082I
ZP3c365RwhVZjaQPk3soPmqIHsann2MF+QMXmFxQl0VFJ5eHMw/qAd28IQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEX++7a/83agoWxDQxnqFNfm7ZqZMB8GA1UdIwQY
MBaAFLLQoMaKIDn/DKUUAkEVJxyKBGYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQt
NDFhYjdjODcyZmVhLzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQtNDFhYjdjODcyZmVh
LzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJTkdSqbs
tfRJ2ycUFkwqvboAWwLkNuQxdHwpUT0ZWrf9l+8s+JgSC1C9099e3vEoKs6PSLUB
JR460ncz1BU7IEhWtOU1q1//EbDqp+YHCVRFyCxFG6i6Je7ZljvrKx6qxHBgFGVk
7TH3POt+qbQKxvTxF4NrY0+VMSFV1EN2q/X43peCiuS1mdUZQPLpHS4Z156j/pJB
BUD9YzF9hzFKq1MmSjmFEJ112tQtOv7EuVdVKab5cEHx79vreTez6zfSm8O/ZKBT
2v48Z5wmco8UdOeGj9D+8wdSvPrMDW2d7gsVSoKoIidHq9zZFKz/lfXEuxQPqJRh
uMjpyEJXZl15BA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:42:08 2025 by rpki-client on console-fra.rpki-client.org