Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: l5vsKmLGx6eqZV964pA43D/nWgINy4uMavTqEMNjvwo=
Subject key identifier: 0B:3B:2D:3E:9D:91:F5:B8:8C:F3:FE:D5:2D:C3:0C:2F:6D:E5:3D:20
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 0194BB5FE4E6E8A008FE32EAFE4A16A24EAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 0966
Signing time: Fri 31 Jan 2025 08:00:11 +0000
Manifest this update: Fri 31 Jan 2025 08:00:11 +0000
Manifest next update: Sat 01 Feb 2025 08:00:11 +0000
Files and hashes: 1: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: ltR5YZB14KzQDDh6IbSnC77XJ34wGOb3Rf2RWsfjza4=)
2: _GYD1AJUDNposAkJpRDfG9xq6dk.roa (hash: afY5Qh0XccEeUiEofkFyRBQd+JnAG3mTgUzmW0se7YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:e4:e6:e8:a0:08:fe:32:ea:fe:4a:16:a2:4e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Jan 31 08:00:11 2025 GMT
Not After : Feb 1 08:00:11 2025 GMT
Subject: CN=0b3b2d3e9d91f5b88cf3fed52dc30c2f6de53d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c7:48:29:bb:4d:ee:54:1d:48:3a:6c:6b:95:
86:64:ee:da:17:2f:54:ae:f6:5c:55:9a:8b:e8:5b:
71:b1:84:cf:06:c2:b4:9b:0d:6b:a3:90:06:1d:aa:
7d:56:bf:05:c8:c5:4e:39:37:13:2b:d3:8e:2d:b9:
cc:0d:3b:f8:7b:27:bc:14:ec:f5:6f:e2:9a:a8:be:
21:f9:99:4a:23:9b:ae:c3:d1:8f:50:84:83:1b:6a:
6e:cc:97:00:20:07:9d:0c:c1:bf:5e:14:29:da:3d:
f5:2d:44:cb:d0:02:c9:28:37:11:f9:5a:eb:15:e8:
37:0c:39:e3:54:27:4e:8c:8b:a0:fd:cf:62:62:f9:
8c:10:50:3b:91:e4:3d:65:5c:3f:44:2e:92:79:1e:
ce:68:16:4e:ea:97:22:1d:cb:f2:de:40:90:01:80:
b8:7f:11:74:c1:09:8b:20:e9:03:77:18:47:ed:f1:
49:d3:7a:37:27:80:f8:69:22:1b:f5:d9:d7:17:2c:
4a:e8:63:71:e4:5a:b7:7b:05:aa:91:2d:d5:7c:54:
da:c8:0a:6e:f0:84:9e:7c:80:a8:55:06:99:47:62:
4b:03:ba:26:b4:0b:3e:e5:94:4e:23:5b:23:0e:45:
1b:3e:09:e7:de:2c:a9:21:de:ad:56:91:da:83:1b:
e7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:3B:2D:3E:9D:91:F5:B8:8C:F3:FE:D5:2D:C3:0C:2F:6D:E5:3D:20
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:55:5c:97:64:0b:6d:66:6d:00:4a:93:eb:a5:0e:18:05:6a:
04:92:0b:81:dd:33:ca:f5:0f:36:de:b8:78:11:b7:87:0b:e1:
c2:b1:a4:2a:89:c0:9e:5a:83:23:7a:d7:e7:90:34:fa:e9:91:
dd:11:ac:dc:b9:fc:a4:03:f3:08:0e:e4:f8:1f:d6:5e:84:3e:
eb:1e:cc:d3:fb:4e:f8:6f:c5:a4:90:4c:00:a6:6e:1e:c3:e5:
c3:a7:4d:f8:37:b7:01:f9:b2:3b:a9:e0:5f:50:67:a0:a8:b6:
14:20:ce:d9:ef:d5:58:2f:06:fb:a5:c1:3d:b4:c5:0f:37:17:
50:f9:7f:f0:0d:2e:2f:80:94:06:67:60:75:a1:e9:04:59:f2:
d1:95:63:40:f4:14:ba:1d:b6:0c:8b:8b:3a:50:7f:7c:4a:76:
d8:bd:31:d3:2b:e0:ef:29:fe:e3:bb:9e:5b:60:0e:0e:f3:3a:
06:92:8e:d2:16:17:43:25:96:ae:d9:f8:b1:c3:16:dd:4c:85:
31:a3:e3:c8:40:7f:ab:66:a5:f1:6e:06:c6:ae:e0:5a:d2:d0:
9c:db:ec:0e:f1:a7:9b:1d:a5:f8:10:67:b2:dd:3d:78:c6:02:
8e:9d:5d:a2:db:b7:1c:aa:1c:ee:43:97:05:5b:40:45:65:1d:
42:07:48:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7X+Tm6KAI/jLq/koWok6tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNzkxYTFiYTA5YjlkNGQzNThlZjA1YWFkZWQ3ZjBlODVl
ODgxYjYwHhcNMjUwMTMxMDgwMDExWhcNMjUwMjAxMDgwMDExWjAzMTEwLwYDVQQD
EygwYjNiMmQzZTlkOTFmNWI4OGNmM2ZlZDUyZGMzMGMyZjZkZTUzZDIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8dIKbtN7lQdSDpsa5WGZO7aFy9U
rvZcVZqL6FtxsYTPBsK0mw1ro5AGHap9Vr8FyMVOOTcTK9OOLbnMDTv4eye8FOz1
b+KaqL4h+ZlKI5uuw9GPUISDG2puzJcAIAedDMG/XhQp2j31LUTL0ALJKDcR+Vrr
Feg3DDnjVCdOjIug/c9iYvmMEFA7keQ9ZVw/RC6SeR7OaBZO6pciHcvy3kCQAYC4
fxF0wQmLIOkDdxhH7fFJ03o3J4D4aSIb9dnXFyxK6GNx5Fq3ewWqkS3VfFTayApu
8ISefICoVQaZR2JLA7omtAs+5ZROI1sjDkUbPgnn3iypId6tVpHagxvnLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAs7LT6dkfW4jPP+1S3DDC9t5T0gMB8GA1UdIwQY
MBaAFFx5Ghugm51NNY7wWq3tfw6F6IG2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9hMjdhMDMtZjY0NS00NjJiLTk0ZTct
NjZjNWFlOGEzNmI0LzEvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC9hMjdhMDMtZjY0NS00NjJiLTk0ZTctNjZjNWFlOGEzNmI0
LzEvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAFVcl2QL
bWZtAEqT66UOGAVqBJILgd0zyvUPNt64eBG3hwvhwrGkKonAnlqDI3rX55A0+umR
3RGs3Ln8pAPzCA7k+B/WXoQ+6x7M0/tO+G/FpJBMAKZuHsPlw6dN+De3AfmyO6ng
X1BnoKi2FCDO2e/VWC8G+6XBPbTFDzcXUPl/8A0uL4CUBmdgdaHpBFny0ZVjQPQU
uh22DIuLOlB/fEp22L0x0yvg7yn+47ueW2AODvM6BpKO0hYXQyWWrtn4scMW3UyF
MaPjyEB/q2al8W4Gxq7gWtLQnNvsDvGnmx2l+BBnst09eMYCjp1dotu3HKoc7kOX
BVtARWUdQgdIJw==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:48 2025 by rpki-client on console-fra.rpki-client.org