Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft
File: vVhFViKSj0TenBVdcGjh0RtEVPE.mft (raw, json)
Hash identifier: WHN9C/bEDpBZxyuj637WHZkyn6+QGlLp3k4f2iFfs3Q=
Subject key identifier: 83:EF:EB:5E:E4:B6:F8:B5:22:8A:33:AF:07:B6:7E:46:07:F1:97:D7
Authority key identifier: BD:58:45:56:22:92:8F:44:DE:9C:15:5D:70:68:E1:D1:1B:44:54:F1
Certificate issuer: /CN=bd58455622928f44de9c155d7068e1d11b4454f1
Certificate serial: 0194C38755DC943271189705CCA3E7EC8D3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vVhFViKSj0TenBVdcGjh0RtEVPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft
Manifest number: 142A
Signing time: Sat 01 Feb 2025 22:00:13 +0000
Manifest this update: Sat 01 Feb 2025 22:00:13 +0000
Manifest next update: Sun 02 Feb 2025 22:00:13 +0000
Files and hashes: 1: vVhFViKSj0TenBVdcGjh0RtEVPE.crl (hash: 52FzpOhlwpRPTISLK6cYkNwqwIxLmg8dCf4en4tTlBw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vVhFViKSj0TenBVdcGjh0RtEVPE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:55:dc:94:32:71:18:97:05:cc:a3:e7:ec:8d:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd58455622928f44de9c155d7068e1d11b4454f1
Validity
Not Before: Feb 1 22:00:13 2025 GMT
Not After : Feb 2 22:00:13 2025 GMT
Subject: CN=83efeb5ee4b6f8b5228a33af07b67e4607f197d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:04:34:df:0d:78:31:68:35:56:df:21:45:e7:
54:17:ae:1b:9d:ab:e4:cf:b1:d8:c4:f0:8c:38:fc:
f8:c6:54:be:c7:3b:2c:63:b9:5a:0d:bf:a3:5f:13:
31:ea:eb:22:eb:8f:73:d4:4e:3e:71:be:8d:90:b6:
ac:79:49:c4:1d:d7:36:9b:15:05:55:cc:ca:8f:85:
46:5c:3d:c2:d2:7e:8c:a8:cd:76:6a:9c:5d:19:fb:
59:ef:05:5b:83:b9:62:0a:15:ef:34:71:3c:02:cd:
80:dd:eb:d7:c5:c7:d7:5a:06:f1:e4:cf:3c:ef:b6:
3b:a2:59:3b:07:42:ee:95:84:45:94:c7:3c:e4:dc:
6b:13:14:0e:50:04:ca:64:fd:4f:32:fc:90:9c:c5:
3d:18:a3:c6:37:97:6d:ef:2d:14:8d:7b:cb:01:b8:
11:88:25:c2:c7:86:af:58:69:f7:c1:21:35:66:87:
60:d1:04:ad:ce:e5:e9:8a:a3:5f:58:18:34:00:3a:
35:ef:53:d2:ea:52:bb:02:4a:b4:51:e2:cb:9e:5e:
2f:06:f8:44:e4:6d:dd:ec:86:3d:76:d2:94:96:52:
f3:40:ac:ae:42:96:ba:4b:cb:90:12:3b:3a:47:ce:
ab:15:ec:3e:e3:01:23:f5:61:70:22:c5:1a:a6:e3:
fd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EF:EB:5E:E4:B6:F8:B5:22:8A:33:AF:07:B6:7E:46:07:F1:97:D7
X509v3 Authority Key Identifier:
keyid:BD:58:45:56:22:92:8F:44:DE:9C:15:5D:70:68:E1:D1:1B:44:54:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vVhFViKSj0TenBVdcGjh0RtEVPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:bc:dd:9c:23:cc:2e:c0:c8:60:7f:27:19:46:ac:bd:84:f7:
c8:84:ac:70:38:c5:81:ae:e1:47:8f:0b:ce:b2:ad:92:df:0c:
8f:6a:f1:5c:82:81:c6:0f:34:68:7f:da:81:19:8b:15:48:ff:
8e:e0:a3:81:d2:df:3d:b0:62:e4:3e:54:d4:f8:3f:df:32:a5:
2b:0d:98:4a:09:19:48:84:1c:7b:11:18:0b:05:ea:26:12:c7:
28:3b:ee:d7:72:af:b0:3a:f3:b0:22:99:0c:7c:7d:7c:9a:33:
b7:49:78:1c:d4:05:da:2b:0a:30:65:c4:2a:2f:13:dd:3f:5e:
f8:6a:6d:e9:c2:bf:db:93:44:39:bd:d1:10:58:e4:ba:4c:c1:
4c:cb:d4:95:6c:5b:9b:da:0a:b1:4f:d6:94:49:bc:43:7d:88:
5f:e7:b2:90:b6:49:d7:06:79:39:17:b1:77:c2:8f:5d:cf:b5:
da:0b:74:fa:81:3d:c5:d6:53:c2:6e:5c:73:23:70:10:c2:4d:
2b:aa:11:c5:3e:ce:11:09:61:d0:a8:08:50:b8:37:db:47:ae:
91:d4:ac:3a:a4:e5:c8:d7:7f:04:49:41:27:05:28:ed:7d:ab:
7f:cc:13:c3:ac:ea:22:23:32:1e:0f:70:5d:83:96:58:8d:bd:
a3:67:93:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDh1XclDJxGJcFzKPn7I08MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkNTg0NTU2MjI5MjhmNDRkZTljMTU1ZDcwNjhlMWQxMWI0
NDU0ZjEwHhcNMjUwMjAxMjIwMDEzWhcNMjUwMjAyMjIwMDEzWjAzMTEwLwYDVQQD
Eyg4M2VmZWI1ZWU0YjZmOGI1MjI4YTMzYWYwN2I2N2U0NjA3ZjE5N2Q3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3gQ03w14MWg1Vt8hRedUF64bnavk
z7HYxPCMOPz4xlS+xzssY7laDb+jXxMx6usi649z1E4+cb6NkLaseUnEHdc2mxUF
VczKj4VGXD3C0n6MqM12apxdGftZ7wVbg7liChXvNHE8As2A3evXxcfXWgbx5M88
77Y7olk7B0LulYRFlMc85NxrExQOUATKZP1PMvyQnMU9GKPGN5dt7y0UjXvLAbgR
iCXCx4avWGn3wSE1Zodg0QStzuXpiqNfWBg0ADo171PS6lK7Akq0UeLLnl4vBvhE
5G3d7IY9dtKUllLzQKyuQpa6S8uQEjs6R86rFew+4wEj9WFwIsUapuP91wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIPv617ktvi1Ioozrwe2fkYH8ZfXMB8GA1UdIwQY
MBaAFL1YRVYiko9E3pwVXXBo4dEbRFTxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlZoRlZpS1NqMFRlbkJWZGNHamgwUnRFVlBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS8xZGM5N2MtZWU2Ny00YzJiLTgwYmEt
MjkwODlkYTQwYzk5LzEvdlZoRlZpS1NqMFRlbkJWZGNHamgwUnRFVlBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS8xZGM5N2MtZWU2Ny00YzJiLTgwYmEtMjkwODlkYTQwYzk5
LzEvdlZoRlZpS1NqMFRlbkJWZGNHamgwUnRFVlBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGbzdnCPM
LsDIYH8nGUasvYT3yISscDjFga7hR48LzrKtkt8Mj2rxXIKBxg80aH/agRmLFUj/
juCjgdLfPbBi5D5U1Pg/3zKlKw2YSgkZSIQcexEYCwXqJhLHKDvu13KvsDrzsCKZ
DHx9fJozt0l4HNQF2isKMGXEKi8T3T9e+Gpt6cK/25NEOb3REFjkukzBTMvUlWxb
m9oKsU/WlEm8Q32IX+eykLZJ1wZ5ORexd8KPXc+12gt0+oE9xdZTwm5ccyNwEMJN
K6oRxT7OEQlh0KgIULg320eukdSsOqTlyNd/BElBJwUo7X2rf8wTw6zqIiMyHg9w
XYOWWI29o2eTMg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:51:34 2025 by rpki-client