Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
File: xJkOwgER9C-2LzmoHHOSqSGVW_I.mft (raw, json)
Hash identifier: LRGPsCg6UQAJ4aAfOWGktNFRhtkKq3UEdEOHIsYafa4=
Subject key identifier: A2:4F:9D:4A:71:42:F4:6E:77:9A:E0:F6:CB:E1:BE:D4:CB:28:8F:D1
Authority key identifier: C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
Certificate issuer: /CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Certificate serial: 0194C3F5988A97A7621E5B213CEB2576FFCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
Manifest number: 8F
Signing time: Sun 02 Feb 2025 00:00:39 +0000
Manifest this update: Sun 02 Feb 2025 00:00:39 +0000
Manifest next update: Mon 03 Feb 2025 00:00:39 +0000
Files and hashes: 1: S6SgkEKXXupg9NGyg85ew2MKuNo.roa (hash: Ccy6wkPiSmvGfzLUcrIC/arlCjWDtB/tLTVQ150opBk=)
2: xJkOwgER9C-2LzmoHHOSqSGVW_I.crl (hash: ktxo9HZvirrM33/GLkHapqQe7O+V0fJz4lu6bWt6ChU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:98:8a:97:a7:62:1e:5b:21:3c:eb:25:76:ff:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Validity
Not Before: Feb 2 00:00:39 2025 GMT
Not After : Feb 3 00:00:39 2025 GMT
Subject: CN=a24f9d4a7142f46e779ae0f6cbe1bed4cb288fd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9d:c9:35:cc:bc:fb:9c:db:76:e1:d4:9b:b9:
87:55:dc:74:f1:41:2d:9a:41:bd:3c:56:b9:b1:41:
d1:f3:c4:44:b8:2c:35:70:52:eb:6c:c8:2b:cc:f0:
2a:76:8d:1d:41:27:c8:2b:9c:d9:5a:43:48:7b:75:
35:e3:30:ca:e4:77:3f:1a:9f:df:3a:1c:9b:29:df:
f9:14:9e:03:8b:b3:5c:ba:f4:32:ce:24:16:fa:d2:
ef:a8:4b:52:71:e6:5d:ea:96:26:59:6c:cf:01:e3:
e8:28:c0:94:7d:27:2e:56:f6:a2:05:28:01:b1:f9:
a3:f0:84:ac:84:04:76:27:e9:cf:7b:9c:35:52:23:
32:f3:4a:3c:94:3c:cc:1c:b4:e7:01:57:a2:46:9e:
35:33:bd:11:8c:78:bb:71:4e:37:33:4c:f6:2d:4f:
b1:7b:57:91:53:22:88:b5:5d:c7:6f:d4:59:6f:7d:
8e:7f:44:be:83:8e:85:c2:30:c1:fe:a9:6d:f2:b7:
14:51:02:f9:44:ee:b1:93:47:60:a7:24:61:db:0e:
8a:7a:fc:0c:03:d1:9f:72:4a:49:49:8b:8b:b5:20:
b7:f1:36:f6:fd:d2:ee:39:23:1a:47:4f:52:47:09:
a3:d7:65:da:c0:1c:2c:98:5c:7c:d1:fc:dd:f4:c6:
0d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:4F:9D:4A:71:42:F4:6E:77:9A:E0:F6:CB:E1:BE:D4:CB:28:8F:D1
X509v3 Authority Key Identifier:
keyid:C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:a5:fd:5f:b5:01:dd:9e:3c:22:c4:ee:b7:c8:06:49:8a:27:
c5:17:67:9a:6b:1c:b2:61:09:bc:df:df:98:4d:73:c5:48:f5:
24:9c:11:48:4a:f8:3a:32:67:45:12:c1:03:06:a0:9e:d2:67:
5b:41:49:5a:2c:91:aa:7c:53:ac:7a:0b:a2:8b:5b:2d:58:01:
c8:5e:bc:58:75:87:01:bd:7d:28:b3:0a:3d:82:dd:2c:64:3e:
80:67:f9:d1:e9:fb:c6:78:c0:49:bd:ef:3f:3d:d8:5e:27:b7:
a2:8e:93:e0:10:71:d0:6b:a0:5c:85:61:59:eb:dd:b8:b8:bb:
88:24:08:9e:fc:fb:d8:ab:41:88:a0:61:2d:f0:74:41:2e:a8:
0a:83:a6:e7:60:53:ad:09:24:3d:d7:bf:6b:74:3d:66:31:38:
16:07:da:71:68:da:5f:65:36:d6:19:2b:27:d4:3b:0c:f8:72:
a9:15:09:f8:6a:8a:73:ad:8f:c0:a0:d1:02:eb:27:e3:dc:1a:
fa:25:bc:07:45:67:0b:a2:b4:0f:d5:3b:9e:0a:cc:fc:0a:04:
3b:ae:85:1e:92:59:ec:70:f5:7d:cf:f5:56:81:44:7e:de:c4:
88:52:ed:62:14:1e:de:02:fc:b9:03:90:0d:e6:eb:87:75:ad:
df:db:d2:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTD9ZiKl6diHlshPOsldv/LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0OTkwZWMyMDExMWY0MmZiNjJmMzlhODFjNzM5MmE5MjE5
NTViZjIwHhcNMjUwMjAyMDAwMDM5WhcNMjUwMjAzMDAwMDM5WjAzMTEwLwYDVQQD
EyhhMjRmOWQ0YTcxNDJmNDZlNzc5YWUwZjZjYmUxYmVkNGNiMjg4ZmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAip3JNcy8+5zbduHUm7mHVdx08UEt
mkG9PFa5sUHR88REuCw1cFLrbMgrzPAqdo0dQSfIK5zZWkNIe3U14zDK5Hc/Gp/f
OhybKd/5FJ4Di7NcuvQyziQW+tLvqEtSceZd6pYmWWzPAePoKMCUfScuVvaiBSgB
sfmj8ISshAR2J+nPe5w1UiMy80o8lDzMHLTnAVeiRp41M70RjHi7cU43M0z2LU+x
e1eRUyKItV3Hb9RZb32Of0S+g46FwjDB/qlt8rcUUQL5RO6xk0dgpyRh2w6KevwM
A9GfckpJSYuLtSC38Tb2/dLuOSMaR09SRwmj12XawBwsmFx80fzd9MYNSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKJPnUpxQvRud5rg9svhvtTLKI/RMB8GA1UdIwQY
MBaAFMSZDsIBEfQvti85qBxzkqkhlVvyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAt
YjBmZTkyMjFlZmI3LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAtYjBmZTkyMjFlZmI3
LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGKX9X7UB
3Z48IsTut8gGSYonxRdnmmscsmEJvN/fmE1zxUj1JJwRSEr4OjJnRRLBAwagntJn
W0FJWiyRqnxTrHoLootbLVgByF68WHWHAb19KLMKPYLdLGQ+gGf50en7xnjASb3v
Pz3YXie3oo6T4BBx0GugXIVhWevduLi7iCQInvz72KtBiKBhLfB0QS6oCoOm52BT
rQkkPde/a3Q9ZjE4FgfacWjaX2U21hkrJ9Q7DPhyqRUJ+GqKc62PwKDRAusn49wa
+iW8B0VnC6K0D9U7ngrM/AoEO66FHpJZ7HD1fc/1VoFEft7EiFLtYhQe3gL8uQOQ
Debrh3Wt39vSeA==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:42:58 2025 by rpki-client