Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: uv/Q6q7effkbmBosL3vdY79lZlhX/eWS5MhBxhz0iwE=
Subject key identifier: B7:ED:49:97:E6:86:83:27:A5:7F:28:76:44:48:89:84:BE:28:2C:3B
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 019512475365CD46ABC783BE3FB94FA22942
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 1459
Signing time: Mon 17 Feb 2025 05:00:19 +0000
Manifest this update: Mon 17 Feb 2025 05:00:19 +0000
Manifest next update: Tue 18 Feb 2025 05:00:19 +0000
Files and hashes: 1: Dk5BhXJ_gIsgQ0utb4gvZ39LMIc.roa (hash: 9IdU4NLUHr5S9QPXNXQfwW6+YPaEhUYFtSNkpxSH/2Q=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: q0cZlH98zroMcO/XZiFgGasXrU0d/7OwBTnOOcrhO/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:53:65:cd:46:ab:c7:83:be:3f:b9:4f:a2:29:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Feb 17 05:00:19 2025 GMT
Not After : Feb 18 05:00:19 2025 GMT
Subject: CN=b7ed4997e6868327a57f287644488984be282c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f7:11:19:d3:c6:cf:f7:1d:54:18:7d:e4:4f:
7b:04:1b:fe:59:ca:46:10:2e:4d:ba:da:5b:e5:10:
94:35:6b:a7:60:03:c6:e4:06:fa:a6:70:7b:e8:64:
35:e5:76:70:99:10:cf:44:08:13:22:7e:43:ee:0e:
24:dd:f7:6c:a0:17:76:e7:ee:31:3f:3e:f6:8f:ec:
11:4b:e7:5a:d1:f4:6c:38:22:d2:83:c5:76:27:a7:
63:a9:8a:8b:b7:7b:a4:a1:09:8e:b2:96:4d:2a:3f:
86:14:cb:5a:58:0b:2e:ee:04:d7:3a:b4:dc:ec:83:
f5:06:70:9a:c1:3e:8c:d6:97:7e:93:e2:48:84:ff:
26:86:97:cf:cf:f6:a9:3d:b8:b3:c6:fc:28:18:d1:
81:e3:15:cc:9a:b6:e9:21:ba:3b:5f:31:9b:38:b5:
f9:08:2d:2e:ea:57:a8:1e:f0:fa:4f:4c:a0:a6:51:
00:bd:9d:fd:b4:54:75:db:5d:96:4d:49:07:0c:58:
09:13:c3:9c:b1:a1:e0:02:34:4f:7e:9d:d9:0d:bb:
d7:e7:49:7e:8d:38:3d:ce:0e:fe:35:13:36:56:7a:
40:fb:08:6f:c1:83:90:fb:aa:66:32:d8:ee:46:95:
d0:0b:80:39:ef:76:8c:a7:42:af:45:a7:71:e4:94:
3e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:ED:49:97:E6:86:83:27:A5:7F:28:76:44:48:89:84:BE:28:2C:3B
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:6e:39:68:22:cf:4e:20:1f:34:24:da:f4:e0:6f:5f:64:9a:
8f:3d:5f:ca:82:66:8d:07:73:7d:90:2e:4f:a3:42:a9:eb:33:
94:f3:5f:2c:18:51:b1:25:95:0e:7d:68:df:ad:e9:e0:b7:4f:
17:46:7f:67:65:64:76:6b:78:5e:d0:5c:a7:42:b4:13:df:15:
43:63:fd:07:77:3a:8a:92:1e:76:7a:65:1f:97:6e:61:93:c4:
82:61:8a:49:1d:1c:a4:53:47:ba:ae:95:22:9e:d6:60:94:6a:
23:6f:5e:5d:3e:6c:31:22:0c:c2:71:47:ff:ea:12:75:76:27:
bd:f5:82:79:c6:a7:3c:31:89:9d:15:1c:5e:a1:55:d0:55:8e:
51:f1:69:6d:1d:12:a6:22:ec:85:7e:a3:3f:38:2f:01:45:71:
97:d2:5e:48:52:07:92:c3:ef:0b:83:18:ac:21:fe:7d:c0:fb:
f6:77:5f:42:1f:4e:2b:da:88:0d:f0:e8:03:ff:38:7c:3a:e7:
62:ef:78:6d:a9:93:d9:77:cb:a1:b6:04:1d:e0:09:f2:8c:d3:
36:08:4a:99:8b:51:48:97:60:1e:d1:de:89:1a:12:a6:0b:2c:
34:1c:41:93:af:b6:6c:08:6a:bd:9b:22:f1:90:7b:e6:64:c3:
de:d5:17:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSR1NlzUarx4O+P7lPoilCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3N2FhZDMwN2FkMzMwZWJiOGNmNDRlYzIxMzg5YTE3MDQz
NmZkNTMwHhcNMjUwMjE3MDUwMDE5WhcNMjUwMjE4MDUwMDE5WjAzMTEwLwYDVQQD
EyhiN2VkNDk5N2U2ODY4MzI3YTU3ZjI4NzY0NDQ4ODk4NGJlMjgyYzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfcRGdPGz/cdVBh95E97BBv+WcpG
EC5Nutpb5RCUNWunYAPG5Ab6pnB76GQ15XZwmRDPRAgTIn5D7g4k3fdsoBd25+4x
Pz72j+wRS+da0fRsOCLSg8V2J6djqYqLt3ukoQmOspZNKj+GFMtaWAsu7gTXOrTc
7IP1BnCawT6M1pd+k+JIhP8mhpfPz/apPbizxvwoGNGB4xXMmrbpIbo7XzGbOLX5
CC0u6leoHvD6T0ygplEAvZ39tFR1212WTUkHDFgJE8OcsaHgAjRPfp3ZDbvX50l+
jTg9zg7+NRM2VnpA+whvwYOQ+6pmMtjuRpXQC4A573aMp0KvRadx5JQ+SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLftSZfmhoMnpX8odkRIiYS+KCw7MB8GA1UdIwQY
MBaAFId6rTB60zDruM9E7CE4mhcENv1TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUt
NTA4MDk5YzEzM2JiLzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUtNTA4MDk5YzEzM2Ji
LzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbW45aCLP
TiAfNCTa9OBvX2Sajz1fyoJmjQdzfZAuT6NCqeszlPNfLBhRsSWVDn1o363p4LdP
F0Z/Z2Vkdmt4XtBcp0K0E98VQ2P9B3c6ipIednplH5duYZPEgmGKSR0cpFNHuq6V
Ip7WYJRqI29eXT5sMSIMwnFH/+oSdXYnvfWCecanPDGJnRUcXqFV0FWOUfFpbR0S
piLshX6jPzgvAUVxl9JeSFIHksPvC4MYrCH+fcD79ndfQh9OK9qIDfDoA/84fDrn
Yu94bamT2XfLobYEHeAJ8ozTNghKmYtRSJdgHtHeiRoSpgssNBxBk6+2bAhqvZsi
8ZB75mTD3tUX+A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:05 2025 by rpki-client