Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: WaSPtSoF2K/1qnVrARxwvYFgyKLCYZ4HbEqeYuemB9w=
Subject key identifier: 4B:A7:67:62:0B:9C:04:55:A8:15:5E:27:31:05:49:CE:42:EB:3F:2F
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 0194C3F5BFE2F2D1A52EF2F7D5F76F48356F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 8C
Signing time: Sun 02 Feb 2025 00:00:49 +0000
Manifest this update: Sun 02 Feb 2025 00:00:49 +0000
Manifest next update: Mon 03 Feb 2025 00:00:49 +0000
Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: qd9OdPxzeMDoXerAcEk90CVGMj034ekjIxKRnussBrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:bf:e2:f2:d1:a5:2e:f2:f7:d5:f7:6f:48:35:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Feb 2 00:00:49 2025 GMT
Not After : Feb 3 00:00:49 2025 GMT
Subject: CN=4ba767620b9c0455a8155e27310549ce42eb3f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0b:8a:e2:c8:1e:a1:d1:48:6b:81:2e:c5:c9:
27:db:d0:cd:57:22:75:48:ea:a3:b8:41:c2:9b:d9:
20:50:8a:b7:91:e0:90:5e:c9:6d:e8:7b:0b:cf:9e:
84:27:9e:c1:4a:c6:d5:24:f9:07:c5:db:83:ac:f0:
61:74:7d:22:c0:ae:ee:41:ca:18:1a:5e:8f:8a:cd:
60:40:5d:82:b0:8e:0a:56:5b:df:be:cd:7f:cc:18:
ea:f3:af:4e:2a:95:96:1e:24:67:53:90:01:a2:bc:
3b:cc:10:11:c9:00:db:3e:5d:7b:14:87:a0:bf:7e:
a2:0a:57:df:47:54:c1:40:4b:a7:01:f0:9b:27:c6:
de:30:ce:0f:99:d7:f6:79:04:2b:41:0e:e8:b1:6e:
4f:fd:e2:ce:24:a9:b7:d7:41:fb:83:99:dc:38:89:
ea:f1:df:7c:c6:24:a1:b9:b4:5c:77:cf:54:ff:e5:
3b:97:4e:4c:b4:df:b9:10:42:2b:d3:f3:70:67:24:
e9:e5:6f:24:55:26:07:db:8a:9f:32:d6:e7:fa:df:
19:e1:1c:eb:f8:b0:d8:a0:a9:56:a7:1f:43:20:82:
7c:04:99:e8:cf:06:a4:7d:d6:9a:d7:c4:a3:a0:0b:
23:dc:9c:7b:2b:41:dc:f5:0b:15:93:d2:5e:b2:ca:
80:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A7:67:62:0B:9C:04:55:A8:15:5E:27:31:05:49:CE:42:EB:3F:2F
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:78:ae:61:b7:73:3b:c9:39:1e:34:4c:c8:e4:e3:8b:b0:48:
0d:8e:8a:62:72:9e:f1:f6:6d:7a:0e:88:59:e0:a5:cc:38:d3:
c6:44:d6:c9:24:ca:29:ce:f0:9d:7a:b6:14:e2:c4:cc:ad:5c:
ef:4a:f8:f5:0d:df:67:9f:e3:75:08:17:6e:c0:b9:e1:4b:4a:
70:d1:16:e4:f6:c1:5f:01:65:4d:b6:1a:64:1e:de:f2:6c:36:
3c:36:bd:e1:a5:b9:c5:79:69:57:a0:66:f3:2f:90:f8:9b:59:
9f:98:08:a0:97:be:8e:34:09:8b:7c:b0:3e:90:fe:1a:62:b5:
4a:fd:27:78:40:24:6a:28:ce:2f:b7:b6:61:a4:2a:b2:6e:62:
0e:84:6a:90:80:f2:dd:61:af:6e:1d:5c:cf:6e:6f:0a:be:06:
c1:ca:73:be:0e:cd:09:ae:6c:76:03:4a:ab:00:79:b3:b6:4b:
d3:8c:66:f7:98:77:4e:86:17:7d:41:88:74:ed:2e:33:dd:7a:
ff:96:0b:cf:33:30:4f:e6:4a:13:af:e7:69:00:7d:f6:29:d1:
e7:e5:08:42:9c:92:84:88:c1:e3:e4:f2:29:03:3a:eb:89:6b:
a8:1a:95:16:76:fe:a2:cf:04:73:51:3b:9e:88:f4:61:d5:ba:
99:c2:62:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTD9b/i8tGlLvL31fdvSDVvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzA5OTAwZTY0OGI2NWEzMDdhNzg2MDEwMmJmNzhiMTZm
NTVkNzUwHhcNMjUwMjAyMDAwMDQ5WhcNMjUwMjAzMDAwMDQ5WjAzMTEwLwYDVQQD
Eyg0YmE3Njc2MjBiOWMwNDU1YTgxNTVlMjczMTA1NDljZTQyZWIzZjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsguK4sgeodFIa4Euxckn29DNVyJ1
SOqjuEHCm9kgUIq3keCQXslt6HsLz56EJ57BSsbVJPkHxduDrPBhdH0iwK7uQcoY
Gl6Pis1gQF2CsI4KVlvfvs1/zBjq869OKpWWHiRnU5ABorw7zBARyQDbPl17FIeg
v36iClffR1TBQEunAfCbJ8beMM4Pmdf2eQQrQQ7osW5P/eLOJKm310H7g5ncOInq
8d98xiShubRcd89U/+U7l05MtN+5EEIr0/NwZyTp5W8kVSYH24qfMtbn+t8Z4Rzr
+LDYoKlWpx9DIIJ8BJnozwakfdaa18SjoAsj3Jx7K0Hc9QsVk9JessqAwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEunZ2ILnARVqBVeJzEFSc5C6z8vMB8GA1UdIwQY
MBaAFGgwmQDmSLZaMHp4YBAr94sW9V11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYt
OWZhNzgwNzUzMzBiLzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYtOWZhNzgwNzUzMzBi
LzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdXiuYbdz
O8k5HjRMyOTji7BIDY6KYnKe8fZteg6IWeClzDjTxkTWySTKKc7wnXq2FOLEzK1c
70r49Q3fZ5/jdQgXbsC54UtKcNEW5PbBXwFlTbYaZB7e8mw2PDa94aW5xXlpV6Bm
8y+Q+JtZn5gIoJe+jjQJi3ywPpD+GmK1Sv0neEAkaijOL7e2YaQqsm5iDoRqkIDy
3WGvbh1cz25vCr4Gwcpzvg7NCa5sdgNKqwB5s7ZL04xm95h3ToYXfUGIdO0uM916
/5YLzzMwT+ZKE6/naQB99inR5+UIQpyShIjB4+TyKQM664lrqBqVFnb+os8Ec1E7
noj0YdW6mcJiuQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:38 2025 by rpki-client