Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
File: a4QIvvwC39bmGQhUh4WgCKS3TWc.mft (raw, json)
Hash identifier: gXf8LTGwJqaF4wra003V/Vhb1Zfgnzd7Mwx2y5hQUFI=
Subject key identifier: BE:50:2A:80:AA:26:29:E3:0F:B9:88:0C:EF:4D:07:4C:5C:89:79:59
Authority key identifier: 6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
Certificate issuer: /CN=6b8408befc02dfd6e61908548785a008a4b74d67
Certificate serial: 0194BA84A6D2E2F19A7BD710468A7E13629C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
Manifest number: 087C
Signing time: Fri 31 Jan 2025 04:00:43 +0000
Manifest this update: Fri 31 Jan 2025 04:00:43 +0000
Manifest next update: Sat 01 Feb 2025 04:00:43 +0000
Files and hashes: 1: XG_GoCIjsfzx85ZAfU48cGk_g2A.roa (hash: O4zvtPOigYM3HdyO+PNnJwZMHPFxCAa0+qt7cBa9RoM=)
2: a4QIvvwC39bmGQhUh4WgCKS3TWc.crl (hash: Dpralwt8nQIJLxzoV7FlIA2DHfZM0fAoaAjoWaoZguw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:a6:d2:e2:f1:9a:7b:d7:10:46:8a:7e:13:62:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b8408befc02dfd6e61908548785a008a4b74d67
Validity
Not Before: Jan 31 04:00:43 2025 GMT
Not After : Feb 1 04:00:43 2025 GMT
Subject: CN=be502a80aa2629e30fb9880cef4d074c5c897959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:42:00:a8:f5:64:2a:5c:c9:78:5d:97:d6:8d:
84:dc:20:28:f0:60:0c:7c:f7:6b:b2:9e:b8:1c:ea:
cd:c5:90:dd:4a:e0:fc:39:c6:7b:3f:6a:2a:5f:14:
40:32:b9:3e:fa:4e:bb:58:0c:ac:2b:90:fe:24:5a:
11:54:ba:b7:30:3c:a5:ad:62:46:64:46:06:8d:d5:
00:f1:f8:cc:c6:e0:f2:dd:d2:c1:1f:3b:45:e2:b7:
34:bb:46:25:0c:c8:fa:e6:8d:e4:96:95:f3:20:7c:
9e:56:6f:53:b4:97:6d:f2:59:81:cd:3c:d4:98:62:
86:58:48:e4:7d:64:37:3f:d3:56:5f:1c:62:3c:b1:
1a:64:c2:15:46:91:d8:b2:69:e7:d8:d9:62:a9:67:
1a:79:64:33:ff:32:a2:13:6b:eb:bb:f7:d5:d3:db:
18:0c:0c:05:0e:80:5d:e6:db:eb:41:53:77:99:01:
fd:6a:a7:28:df:8a:1b:8f:e8:69:07:bd:94:6d:1f:
71:f7:fd:c1:3d:12:96:24:70:6b:52:f8:53:2e:b3:
eb:25:00:bd:9d:ad:81:8f:26:66:d0:2f:fc:98:91:
d8:8c:7d:1b:61:ef:4d:25:c3:1a:fb:0f:de:ac:9e:
36:08:e2:a0:11:1f:b7:11:22:9a:4b:2d:d7:c5:b9:
aa:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:50:2A:80:AA:26:29:E3:0F:B9:88:0C:EF:4D:07:4C:5C:89:79:59
X509v3 Authority Key Identifier:
keyid:6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:38:0b:68:dd:09:a5:33:e3:c0:c8:09:27:88:c8:67:60:32:
f3:fc:4c:e6:a7:aa:1c:3d:0b:2f:0e:35:94:4b:71:1a:d6:83:
ab:36:12:02:b0:01:8f:49:7d:71:65:e4:97:11:23:4d:1b:8c:
2e:c7:a7:23:e8:21:e7:f3:53:bf:09:8d:fc:72:89:fe:4c:2a:
50:c8:08:e2:83:df:14:07:c9:d7:13:99:4f:0e:ac:5b:c1:a6:
d9:de:63:c9:75:c5:64:6f:2b:0b:df:77:49:13:70:bc:d5:97:
9c:5a:4b:60:75:41:69:4f:b2:5f:c8:45:80:60:7d:56:e6:0f:
11:57:b0:dd:72:1a:7e:51:76:de:01:62:4f:e2:39:28:d0:94:
21:48:b2:e5:9d:36:41:e4:bb:c1:d7:5e:82:ac:46:b2:b0:c4:
9c:69:61:f8:b7:ee:79:89:2c:f5:9d:e4:24:04:82:9a:14:8a:
c1:24:12:a3:ef:3a:d2:4f:e4:ce:f6:83:2b:4c:fb:07:06:22:
18:c6:6b:32:8c:92:3b:fb:95:b4:99:3c:55:5a:72:f3:27:2b:
11:b3:f6:7b:2b:56:2b:77:d0:a0:04:fa:b2:50:7c:5e:51:e5:
a3:9b:57:8e:cc:ad:19:57:62:24:5e:38:38:54:20:63:d2:8e:
77:03:8d:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS6hKbS4vGae9cQRop+E2KcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiODQwOGJlZmMwMmRmZDZlNjE5MDg1NDg3ODVhMDA4YTRi
NzRkNjcwHhcNMjUwMTMxMDQwMDQzWhcNMjUwMjAxMDQwMDQzWjAzMTEwLwYDVQQD
EyhiZTUwMmE4MGFhMjYyOWUzMGZiOTg4MGNlZjRkMDc0YzVjODk3OTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0IAqPVkKlzJeF2X1o2E3CAo8GAM
fPdrsp64HOrNxZDdSuD8OcZ7P2oqXxRAMrk++k67WAysK5D+JFoRVLq3MDylrWJG
ZEYGjdUA8fjMxuDy3dLBHztF4rc0u0YlDMj65o3klpXzIHyeVm9TtJdt8lmBzTzU
mGKGWEjkfWQ3P9NWXxxiPLEaZMIVRpHYsmnn2NliqWcaeWQz/zKiE2vru/fV09sY
DAwFDoBd5tvrQVN3mQH9aqco34obj+hpB72UbR9x9/3BPRKWJHBrUvhTLrPrJQC9
na2BjyZm0C/8mJHYjH0bYe9NJcMa+w/erJ42COKgER+3ESKaSy3XxbmqAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL5QKoCqJinjD7mIDO9NB0xciXlZMB8GA1UdIwQY
MBaAFGuECL78At/W5hkIVIeFoAikt01nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTRRSXZ2d0MzOWJtR1FoVWg0V2dDS1MzVFdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS85ZTYxNWUtMzYxMC00NTIwLTk0ODQt
N2E4YmFlZWY1ZWU0LzEvYTRRSXZ2d0MzOWJtR1FoVWg0V2dDS1MzVFdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS85ZTYxNWUtMzYxMC00NTIwLTk0ODQtN2E4YmFlZWY1ZWU0
LzEvYTRRSXZ2d0MzOWJtR1FoVWg0V2dDS1MzVFdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANzgLaN0J
pTPjwMgJJ4jIZ2Ay8/xM5qeqHD0LLw41lEtxGtaDqzYSArABj0l9cWXklxEjTRuM
LsenI+gh5/NTvwmN/HKJ/kwqUMgI4oPfFAfJ1xOZTw6sW8Gm2d5jyXXFZG8rC993
SRNwvNWXnFpLYHVBaU+yX8hFgGB9VuYPEVew3XIaflF23gFiT+I5KNCUIUiy5Z02
QeS7wddegqxGsrDEnGlh+LfueYks9Z3kJASCmhSKwSQSo+860k/kzvaDK0z7BwYi
GMZrMoySO/uVtJk8VVpy8ycrEbP2eytWK3fQoAT6slB8XlHlo5tXjsytGVdiJF44
OFQgY9KOdwONZg==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:45:01 2025 by rpki-client on console-fra.rpki-client.org