Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
File: bNmlABXpaTdlb8DKW21WXkWb02A.mft (raw, json)
Hash identifier: CIkwvZD2evQz9oNjI4ZjteNxEVMPzbs0vzJB0zQIX0Q=
Subject key identifier: 21:02:56:05:E6:F7:C0:3D:58:7E:E7:C8:E1:40:FA:BA:95:64:87:41
Authority key identifier: 6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
Certificate issuer: /CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Certificate serial: 0194C38830FBFCFD47ABAE4D034452C3BA68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
Manifest number: 142C
Signing time: Sat 01 Feb 2025 22:01:09 +0000
Manifest this update: Sat 01 Feb 2025 22:01:09 +0000
Manifest next update: Sun 02 Feb 2025 22:01:09 +0000
Files and hashes: 1: bNmlABXpaTdlb8DKW21WXkWb02A.crl (hash: rc4SDBXWk2e1UEv5ivxsYLDd79sF5Mx2DZqRzGH7hKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:30:fb:fc:fd:47:ab:ae:4d:03:44:52:c3:ba:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Validity
Not Before: Feb 1 22:01:09 2025 GMT
Not After : Feb 2 22:01:09 2025 GMT
Subject: CN=21025605e6f7c03d587ee7c8e140faba95648741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ac:c6:0c:b6:bc:98:1a:88:8c:e3:39:1e:03:
71:ce:b3:ee:6f:3c:6d:32:61:d9:15:81:25:6c:6f:
0e:d1:3f:9c:85:b0:60:cb:3a:77:bf:65:8c:e8:d1:
bc:20:99:60:e0:32:45:99:51:c1:44:09:88:a0:42:
83:ba:ba:84:9c:34:8f:3b:cf:bc:7e:50:2e:9e:01:
45:1b:28:9e:aa:65:96:3c:a8:e3:03:93:0e:8f:84:
fd:e1:4d:74:30:22:20:a1:59:3f:5d:0b:27:0d:c7:
e5:b2:c4:68:88:c8:27:19:85:d9:ab:65:46:37:fe:
84:32:cc:de:d4:c8:25:6b:bb:4b:55:37:32:34:10:
21:f5:a5:16:1f:59:39:64:c6:54:92:8c:b7:66:61:
25:d9:5b:fd:39:ea:aa:92:0a:c0:e7:2b:3c:25:1e:
9b:5b:7a:6a:81:17:85:95:93:56:c0:67:27:48:be:
5c:eb:24:f8:7f:a2:5d:a2:5f:15:59:d2:25:7a:fc:
61:a1:a1:f4:69:9d:47:dc:48:d3:89:a6:d9:72:d2:
cd:fb:83:26:28:ba:e4:ec:1c:75:68:6c:a5:a4:97:
22:5e:86:3e:a6:35:37:e7:77:60:11:1b:7c:38:6f:
41:03:4e:24:a3:c3:9a:fb:26:d1:76:bf:c2:ab:0b:
61:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:02:56:05:E6:F7:C0:3D:58:7E:E7:C8:E1:40:FA:BA:95:64:87:41
X509v3 Authority Key Identifier:
keyid:6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:63:17:58:06:42:80:d1:6e:6d:8c:30:9b:ec:ce:e7:a4:1e:
8e:50:43:b6:6c:f0:0b:31:06:17:63:9e:52:cd:9e:a9:96:db:
07:8d:d1:2b:2a:92:c5:61:c4:b0:3c:df:42:ec:ca:62:a2:a6:
29:44:a1:7e:9f:4b:c1:93:0a:d2:5c:ed:08:c8:6a:2a:5b:64:
c1:de:d1:01:a9:10:6e:04:38:4a:32:09:07:86:40:e2:7e:db:
4b:09:42:b9:7c:50:0e:95:4c:44:dd:27:93:9f:13:14:b9:f9:
6e:22:05:fd:69:5b:33:82:17:d8:e6:a9:5f:d2:5f:8f:48:d8:
41:ff:aa:13:fe:ec:7e:b5:23:26:a2:a6:52:9d:81:03:fd:03:
df:0c:c2:74:ea:2a:58:a6:de:a7:e7:13:d3:f3:a3:47:32:97:
43:c1:14:28:a5:29:35:9e:35:1b:15:f3:ce:9d:11:33:90:b4:
7c:a6:55:0e:cf:6f:dc:7f:3c:f1:eb:86:af:fb:64:2f:4b:56:
44:aa:3e:ee:2c:b9:5c:d8:6e:ef:96:29:b1:75:6b:fe:ce:16:
61:4a:f3:62:32:83:8b:22:97:f6:da:85:d1:e7:b4:1a:65:1b:
bb:1a:51:0d:e2:9b:dd:81:01:3d:20:83:39:b0:39:f1:f9:74:
70:fa:74:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDiDD7/P1Hq65NA0RSw7poMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZDlhNTAwMTVlOTY5Mzc2NTZmYzBjYTViNmQ1NjVlNDU5
YmQzNjAwHhcNMjUwMjAxMjIwMTA5WhcNMjUwMjAyMjIwMTA5WjAzMTEwLwYDVQQD
EygyMTAyNTYwNWU2ZjdjMDNkNTg3ZWU3YzhlMTQwZmFiYTk1NjQ4NzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA76zGDLa8mBqIjOM5HgNxzrPubzxt
MmHZFYElbG8O0T+chbBgyzp3v2WM6NG8IJlg4DJFmVHBRAmIoEKDurqEnDSPO8+8
flAungFFGyieqmWWPKjjA5MOj4T94U10MCIgoVk/XQsnDcflssRoiMgnGYXZq2VG
N/6EMsze1Mgla7tLVTcyNBAh9aUWH1k5ZMZUkoy3ZmEl2Vv9OeqqkgrA5ys8JR6b
W3pqgReFlZNWwGcnSL5c6yT4f6Jdol8VWdIlevxhoaH0aZ1H3EjTiabZctLN+4Mm
KLrk7Bx1aGylpJciXoY+pjU353dgERt8OG9BA04ko8Oa+ybRdr/CqwthLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCECVgXm98A9WH7nyOFA+rqVZIdBMB8GA1UdIwQY
MBaAFGzZpQAV6Wk3ZW/AylttVl5Fm9NgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk5tbEFCWHBhVGRsYjhES1cyMVdYa1diMDJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi83ZGJkMTEtMWIyMi00MDRjLTk0ZDMt
MmI5ZDQzN2ZlOTAyLzEvYk5tbEFCWHBhVGRsYjhES1cyMVdYa1diMDJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi83ZGJkMTEtMWIyMi00MDRjLTk0ZDMtMmI5ZDQzN2ZlOTAy
LzEvYk5tbEFCWHBhVGRsYjhES1cyMVdYa1diMDJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjWMXWAZC
gNFubYwwm+zO56QejlBDtmzwCzEGF2OeUs2eqZbbB43RKyqSxWHEsDzfQuzKYqKm
KUShfp9LwZMK0lztCMhqKltkwd7RAakQbgQ4SjIJB4ZA4n7bSwlCuXxQDpVMRN0n
k58TFLn5biIF/WlbM4IX2OapX9Jfj0jYQf+qE/7sfrUjJqKmUp2BA/0D3wzCdOoq
WKbep+cT0/OjRzKXQ8EUKKUpNZ41GxXzzp0RM5C0fKZVDs9v3H888euGr/tkL0tW
RKo+7iy5XNhu75YpsXVr/s4WYUrzYjKDiyKX9tqF0ee0GmUbuxpRDeKb3YEBPSCD
ObA58fl0cPp0dw==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:46:21 2025 by rpki-client