Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: TwOFgurfoxUF/ufOr0pbSY1UnWE4qg5agmoScZuI4bw=
Subject key identifier: 03:C9:6A:24:41:F8:A9:C4:40:51:68:05:45:10:3C:8C:F1:D6:66:AE
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 0195124732EF7A6F85778C796A308FA8D468
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 0868
Signing time: Mon 17 Feb 2025 05:00:10 +0000
Manifest this update: Mon 17 Feb 2025 05:00:10 +0000
Manifest next update: Tue 18 Feb 2025 05:00:10 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: yDF6Fy5Ic0P2S9G+rFXKApL7vFW/oV63XBqU291NucQ=)
2: jU0yi7PHweJFHYaEaX0jg-4Q_RU.roa (hash: 8PA9xbvSb0ZvYzYhTOCmIzBIyrP4FgGrFueLXskDR54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:32:ef:7a:6f:85:77:8c:79:6a:30:8f:a8:d4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: Feb 17 05:00:10 2025 GMT
Not After : Feb 18 05:00:10 2025 GMT
Subject: CN=03c96a2441f8a9c44051680545103c8cf1d666ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:59:e5:26:44:2e:e2:4a:97:ef:73:d5:68:33:
4b:d9:30:62:32:05:68:2d:06:94:9c:a5:91:c3:c5:
b1:1e:50:0f:1a:83:c3:41:dc:71:62:17:9b:f8:31:
da:2a:73:29:98:e9:cb:63:c1:4e:68:34:c2:cd:b8:
ab:dd:3e:de:37:80:5d:ca:60:87:77:a1:02:ab:30:
d2:75:bb:a0:1a:5d:f8:fa:fd:54:18:61:e0:b1:b8:
7d:5e:7d:73:1b:ca:ea:2d:3e:50:03:34:21:9c:09:
72:10:2c:1b:ba:b6:ad:f1:cc:94:fb:52:b6:6b:76:
cf:58:7f:8f:ca:35:08:87:38:bf:95:c8:d5:63:b0:
de:1c:bb:92:e9:af:09:c3:98:7d:2a:c6:4f:bf:2d:
57:5d:d8:a3:26:03:b4:bf:c8:00:7e:88:ce:8b:91:
f1:2f:77:5a:c4:ed:8b:d1:f5:a1:ee:62:c3:a7:b2:
ee:a4:01:0c:0b:d3:11:ac:44:ff:e3:04:a1:2a:ab:
97:de:75:77:c5:26:e9:79:cd:81:5f:47:3d:60:e9:
0c:ee:04:97:38:d4:1e:f6:74:89:1d:fd:34:8e:63:
4b:48:fd:8d:91:43:f2:89:24:52:7b:2f:2f:fa:df:
96:c6:cf:84:84:4d:c6:5c:d8:76:af:95:84:bc:a6:
12:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C9:6A:24:41:F8:A9:C4:40:51:68:05:45:10:3C:8C:F1:D6:66:AE
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:8f:11:9b:17:c8:7c:1f:3a:cc:68:86:ad:20:85:61:36:38:
20:93:ba:97:2e:d7:8f:44:ef:ca:6b:53:b7:08:b7:0f:5e:ad:
3e:50:f4:40:89:e5:94:ec:5e:82:4d:c5:eb:3a:e8:0f:99:d6:
61:62:ae:9d:9f:b9:96:28:b2:1d:2f:a2:57:d3:8b:cd:94:c6:
e0:44:81:5d:32:c9:5c:65:6e:47:4d:ce:ea:91:ac:e0:43:13:
b6:ad:c1:5c:06:83:bc:bd:90:a8:d7:a8:36:21:2b:69:93:03:
1d:41:59:f9:07:57:90:66:eb:ae:c1:71:e3:33:f7:4b:a2:8b:
68:16:91:5d:6c:89:40:0d:bf:1a:70:81:62:99:0b:ba:41:c4:
70:02:a4:8a:1d:b2:8a:26:a7:20:c3:ea:fa:b9:47:92:27:33:
3f:25:4c:39:ee:dd:c9:42:ea:34:e0:78:94:ee:1e:87:d5:9a:
51:b3:93:99:20:63:f0:d1:83:bf:af:d9:74:6f:9d:d6:02:3f:
c8:34:03:10:d2:d4:c2:ba:00:e9:9b:2b:f5:2d:a8:56:de:50:
b1:af:fe:f9:56:bf:64:ce:2b:e4:40:e0:c5:73:cf:43:1d:4c:
c6:02:83:92:b5:49:24:fe:5a:a1:bb:ad:3c:4e:69:c2:4b:46:
a9:33:4e:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSRzLvem+Fd4x5ajCPqNRoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNWIyMjRiNjU5M2U1NTgwMzhhOWU0MGU2NjBjNzcxNDI3
NTVjMWIwHhcNMjUwMjE3MDUwMDEwWhcNMjUwMjE4MDUwMDEwWjAzMTEwLwYDVQQD
EygwM2M5NmEyNDQxZjhhOWM0NDA1MTY4MDU0NTEwM2M4Y2YxZDY2NmFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1nlJkQu4kqX73PVaDNL2TBiMgVo
LQaUnKWRw8WxHlAPGoPDQdxxYheb+DHaKnMpmOnLY8FOaDTCzbir3T7eN4BdymCH
d6ECqzDSdbugGl34+v1UGGHgsbh9Xn1zG8rqLT5QAzQhnAlyECwburat8cyU+1K2
a3bPWH+PyjUIhzi/lcjVY7DeHLuS6a8Jw5h9KsZPvy1XXdijJgO0v8gAfojOi5Hx
L3daxO2L0fWh7mLDp7LupAEMC9MRrET/4wShKquX3nV3xSbpec2BX0c9YOkM7gSX
ONQe9nSJHf00jmNLSP2NkUPyiSRSey8v+t+Wxs+EhE3GXNh2r5WEvKYSoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAPJaiRB+KnEQFFoBUUQPIzx1mauMB8GA1UdIwQY
MBaAFN1bIktlk+VYA4qeQOZgx3FCdVwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMt
MzBiYmZjMDg1NWU0LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMtMzBiYmZjMDg1NWU0
LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe48RmxfI
fB86zGiGrSCFYTY4IJO6ly7Xj0TvymtTtwi3D16tPlD0QInllOxegk3F6zroD5nW
YWKunZ+5liiyHS+iV9OLzZTG4ESBXTLJXGVuR03O6pGs4EMTtq3BXAaDvL2QqNeo
NiEraZMDHUFZ+QdXkGbrrsFx4zP3S6KLaBaRXWyJQA2/GnCBYpkLukHEcAKkih2y
iianIMPq+rlHkiczPyVMOe7dyULqNOB4lO4eh9WaUbOTmSBj8NGDv6/ZdG+d1gI/
yDQDENLUwroA6Zsr9S2oVt5Qsa/++Va/ZM4r5EDgxXPPQx1MxgKDkrVJJP5aobut
PE5pwktGqTNOaQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:29 2025 by rpki-client