Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.mft
File: dtQhWmJUV7wFMhkciAP3xkt_kGU.mft (raw, json)
Hash identifier: 0aBgF57FEQ74z2o5SeZk9qV1pbK2eDv7BYEji1ylGSY=
Subject key identifier: 98:C4:66:CB:2B:0F:C6:C1:30:76:D8:52:C9:75:93:B3:C7:FF:4A:7F
Authority key identifier: 76:D4:21:5A:62:54:57:BC:05:32:19:1C:88:03:F7:C6:4B:7F:90:65
Certificate issuer: /CN=76d4215a625457bc0532191c8803f7c64b7f9065
Certificate serial: 0194C49A41E534D67CCB5D209F3A24FA83D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dtQhWmJUV7wFMhkciAP3xkt_kGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.mft
Manifest number: 0205
Signing time: Sun 02 Feb 2025 03:00:31 +0000
Manifest this update: Sun 02 Feb 2025 03:00:31 +0000
Manifest next update: Mon 03 Feb 2025 03:00:31 +0000
Files and hashes: 1: dtQhWmJUV7wFMhkciAP3xkt_kGU.crl (hash: NZLavft5Mn1XxMcuD8VRXIYWlPQ4avz9QO6woW2jnkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/dtQhWmJUV7wFMhkciAP3xkt_kGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:41:e5:34:d6:7c:cb:5d:20:9f:3a:24:fa:83:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76d4215a625457bc0532191c8803f7c64b7f9065
Validity
Not Before: Feb 2 03:00:31 2025 GMT
Not After : Feb 3 03:00:31 2025 GMT
Subject: CN=98c466cb2b0fc6c13076d852c97593b3c7ff4a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:17:6e:7b:25:48:53:9a:cd:dc:e1:6d:5a:09:
e1:49:98:5e:d8:b6:df:a9:ff:75:36:1b:85:14:4d:
71:50:b1:97:b6:a8:fc:4e:79:7a:69:0e:c2:63:8d:
37:b2:91:32:95:8a:cd:03:c2:72:6f:f4:eb:5c:5a:
3f:dd:af:2a:41:b4:30:af:73:6f:fc:06:6a:f9:85:
28:fb:09:85:09:b8:64:e3:43:3b:a6:13:f0:8f:24:
7c:97:fe:f1:4d:a0:30:2f:73:29:dd:2e:8c:a1:5a:
03:33:01:bb:0f:ed:c5:8e:d2:18:55:58:14:fb:f6:
d3:f2:b0:72:24:94:e2:a3:21:03:19:8b:84:48:cc:
13:bb:69:e4:94:cf:43:ab:08:ad:20:0a:09:44:63:
36:45:11:a6:86:5a:95:86:72:d0:9e:5b:df:08:44:
22:e8:71:e1:b5:66:bc:f9:fa:ac:17:c4:38:ac:6b:
8b:d5:47:af:60:74:98:bd:4c:71:ed:a7:01:dc:b8:
28:dc:4e:9b:59:de:b6:ef:21:3e:3f:d6:f8:25:16:
09:43:12:90:50:1f:e2:9d:0a:de:78:18:0d:70:74:
7a:c3:ff:70:d2:a5:be:e2:aa:2a:6e:04:f0:a4:2e:
23:9f:8b:fe:96:73:06:50:44:d5:56:8a:73:20:27:
b6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C4:66:CB:2B:0F:C6:C1:30:76:D8:52:C9:75:93:B3:C7:FF:4A:7F
X509v3 Authority Key Identifier:
keyid:76:D4:21:5A:62:54:57:BC:05:32:19:1C:88:03:F7:C6:4B:7F:90:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dtQhWmJUV7wFMhkciAP3xkt_kGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:fc:7f:62:52:15:db:60:40:11:cb:56:67:17:b5:1b:58:14:
3c:6a:40:b9:42:88:d7:3c:9d:31:0f:f1:28:57:c1:eb:48:29:
21:d1:3b:7b:d1:b8:4c:3b:13:71:72:75:0b:a2:c8:5a:aa:80:
4f:6c:73:1f:26:0d:fb:23:ae:b3:f9:6e:dd:38:13:5f:b6:ca:
08:ff:60:87:11:24:5c:d5:42:ce:60:b3:cc:2a:d1:b6:5e:5c:
f4:09:81:53:c1:c7:8b:fc:0e:29:5d:04:7a:c0:47:7a:51:57:
11:2e:d5:56:d8:80:ad:9c:cf:48:bf:93:6a:ce:75:b3:27:00:
b2:32:eb:70:e6:d1:ed:90:8f:83:6e:f8:7a:65:a0:11:ba:89:
0a:8c:82:9f:79:5a:67:b3:b4:c9:7f:a4:4e:46:34:89:58:ae:
88:08:0b:1c:5f:3f:64:bf:15:80:ce:ab:bb:f1:e7:e8:35:d1:
cc:fd:a4:76:3c:84:cc:b4:9d:c0:08:17:51:6d:29:34:2d:26:
e2:3e:e8:9b:c5:0e:58:b1:af:78:fd:3f:57:96:49:d6:63:97:
86:31:24:40:7d:7b:20:95:f6:6f:7c:b4:b7:dd:a0:19:a7:1a:
66:c6:59:f2:96:85:37:16:1e:b9:f2:52:b1:23:0e:9c:1f:aa:
9e:b4:31:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTEmkHlNNZ8y10gnzok+oPSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2ZDQyMTVhNjI1NDU3YmMwNTMyMTkxYzg4MDNmN2M2NGI3
ZjkwNjUwHhcNMjUwMjAyMDMwMDMxWhcNMjUwMjAzMDMwMDMxWjAzMTEwLwYDVQQD
Eyg5OGM0NjZjYjJiMGZjNmMxMzA3NmQ4NTJjOTc1OTNiM2M3ZmY0YTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4RdueyVIU5rN3OFtWgnhSZhe2Lbf
qf91NhuFFE1xULGXtqj8Tnl6aQ7CY403spEylYrNA8Jyb/TrXFo/3a8qQbQwr3Nv
/AZq+YUo+wmFCbhk40M7phPwjyR8l/7xTaAwL3Mp3S6MoVoDMwG7D+3FjtIYVVgU
+/bT8rByJJTioyEDGYuESMwTu2nklM9DqwitIAoJRGM2RRGmhlqVhnLQnlvfCEQi
6HHhtWa8+fqsF8Q4rGuL1UevYHSYvUxx7acB3Lgo3E6bWd627yE+P9b4JRYJQxKQ
UB/inQreeBgNcHR6w/9w0qW+4qoqbgTwpC4jn4v+lnMGUETVVopzICe21QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJjEZssrD8bBMHbYUsl1k7PH/0p/MB8GA1UdIwQY
MBaAFHbUIVpiVFe8BTIZHIgD98ZLf5BlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHRRaFdtSlVWN3dGTWhrY2lBUDN4a3Rfa0dVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iNTAxZGUtM2IxZC00ZDgwLWI2ZTkt
Zjg4ZDdlYzNhNTI2LzEvZHRRaFdtSlVWN3dGTWhrY2lBUDN4a3Rfa0dVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9iNTAxZGUtM2IxZC00ZDgwLWI2ZTktZjg4ZDdlYzNhNTI2
LzEvZHRRaFdtSlVWN3dGTWhrY2lBUDN4a3Rfa0dVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUvx/YlIV
22BAEctWZxe1G1gUPGpAuUKI1zydMQ/xKFfB60gpIdE7e9G4TDsTcXJ1C6LIWqqA
T2xzHyYN+yOus/lu3TgTX7bKCP9ghxEkXNVCzmCzzCrRtl5c9AmBU8HHi/wOKV0E
esBHelFXES7VVtiArZzPSL+Tas51sycAsjLrcObR7ZCPg274emWgEbqJCoyCn3la
Z7O0yX+kTkY0iViuiAgLHF8/ZL8VgM6ru/Hn6DXRzP2kdjyEzLSdwAgXUW0pNC0m
4j7om8UOWLGveP0/V5ZJ1mOXhjEkQH17IJX2b3y0t92gGacaZsZZ8paFNxYeufJS
sSMOnB+qnrQxvg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:46:58 2025 by rpki-client