Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier: v/xaLYaTKjnGwfik0rEnUsxc9cSJqBXcrp/MaraZd6g=
Subject key identifier: F0:E0:98:D5:34:E3:DA:8E:08:32:94:E5:60:89:97:B0:C2:C1:75:4B
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 0195116C307CC9FF132FF9020E0109859B45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number: 0FF2
Signing time: Mon 17 Feb 2025 01:00:57 +0000
Manifest this update: Mon 17 Feb 2025 01:00:57 +0000
Manifest next update: Tue 18 Feb 2025 01:00:57 +0000
Files and hashes: 1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: tlWNnBIomlYm64EsA4ey/gofvdBuqpQ6eHu+FQoN4Lg=)
2: zLripgfgA2h1PROmUFrV2xnn3qg.roa (hash: RFD7P9+ANXyKn760nUDc4MZf68DTdcPjH9V+Py4Xd04=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6c:30:7c:c9:ff:13:2f:f9:02:0e:01:09:85:9b:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Feb 17 01:00:57 2025 GMT
Not After : Feb 18 01:00:57 2025 GMT
Subject: CN=f0e098d534e3da8e083294e5608997b0c2c1754b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:30:94:e2:f0:91:b9:67:47:8f:69:91:9e:d8:
ca:56:ed:90:6f:57:82:b6:3f:21:76:a4:86:9a:42:
e1:f8:a4:18:00:bc:cb:d2:0b:8d:19:c8:80:b5:25:
67:72:73:97:0d:f2:cc:91:63:b3:53:3d:06:c1:f6:
c5:51:3e:16:ca:eb:a2:72:7d:47:57:30:48:e5:74:
08:65:7c:ec:5c:f7:35:a3:88:05:e5:11:79:25:45:
4c:b6:49:c3:cd:e6:d6:4e:d1:20:8b:5f:db:e2:11:
bc:b2:97:8a:9f:2b:0b:ce:52:54:b4:d6:64:dd:3e:
13:d4:09:b3:9d:e7:a6:14:16:db:10:80:40:85:d9:
33:81:0d:91:2a:88:66:dd:66:51:bc:39:28:a9:33:
c2:ff:74:d0:fb:4b:ff:bf:8e:62:da:48:6d:65:d1:
ae:b1:15:b4:b2:7f:0c:2c:87:7d:28:3b:c6:13:24:
e8:d2:e5:a4:28:01:71:f8:63:9b:d0:34:fa:6f:95:
b3:74:5b:7e:56:a6:81:a2:d0:2a:2a:50:5a:79:62:
79:08:a2:a1:71:14:23:5f:74:a2:a7:18:3d:e1:bd:
66:05:ec:fd:19:c9:2b:09:f4:3a:a9:75:de:e2:b3:
e8:e5:7c:f5:c3:5e:45:e0:56:93:85:c0:ce:96:64:
b2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E0:98:D5:34:E3:DA:8E:08:32:94:E5:60:89:97:B0:C2:C1:75:4B
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:ac:ed:6f:83:d8:36:81:fe:f5:97:07:d4:26:68:a8:7e:28:
2f:77:b2:9d:1d:df:9f:8b:35:71:ae:42:ec:b2:ff:e8:08:16:
6b:6b:08:f6:22:61:cc:36:27:12:51:c8:0d:fc:1a:72:62:3e:
88:58:08:e0:b6:64:69:43:c6:c2:a9:d6:73:3f:fa:2d:54:c2:
6b:68:ea:56:03:06:fe:72:75:a0:e9:1b:e1:db:79:4a:69:39:
c6:12:83:c8:db:5a:fb:b9:3f:c5:7f:ee:80:67:61:f2:0e:52:
17:89:9a:29:17:dc:a6:cd:5d:3a:77:42:da:cd:7d:23:b8:00:
5e:a5:51:10:bf:a4:1f:c3:71:7a:c6:0c:9e:dc:92:06:9d:64:
24:9b:f7:24:e6:0e:0d:38:cf:8d:7c:62:96:cd:44:6f:4a:86:
d8:24:98:6b:1e:8e:34:ed:33:ac:d8:3c:39:8e:a9:ef:a5:71:
6d:49:da:23:94:88:ca:13:a8:0f:0e:db:a3:b7:8f:fa:e6:20:
58:56:ed:28:d6:10:ff:30:61:74:52:17:a8:25:5d:53:60:96:
ba:e9:8d:70:51:3a:dc:95:f6:9a:18:13:49:e7:e7:c9:f9:af:
6c:e6:c8:e3:06:df:fe:7c:03:13:c5:73:90:84:73:ec:f1:47:
fd:c1:6e:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURbDB8yf8TL/kCDgEJhZtFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjMGY3YTA0ZGQ3MjQ5YTVkMTRiN2RlMDU0MmE0MTk3Mzgw
MDA2Y2MwHhcNMjUwMjE3MDEwMDU3WhcNMjUwMjE4MDEwMDU3WjAzMTEwLwYDVQQD
EyhmMGUwOThkNTM0ZTNkYThlMDgzMjk0ZTU2MDg5OTdiMGMyYzE3NTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDCU4vCRuWdHj2mRntjKVu2Qb1eC
tj8hdqSGmkLh+KQYALzL0guNGciAtSVncnOXDfLMkWOzUz0GwfbFUT4Wyuuicn1H
VzBI5XQIZXzsXPc1o4gF5RF5JUVMtknDzebWTtEgi1/b4hG8speKnysLzlJUtNZk
3T4T1AmzneemFBbbEIBAhdkzgQ2RKohm3WZRvDkoqTPC/3TQ+0v/v45i2khtZdGu
sRW0sn8MLId9KDvGEyTo0uWkKAFx+GOb0DT6b5WzdFt+VqaBotAqKlBaeWJ5CKKh
cRQjX3Sipxg94b1mBez9GckrCfQ6qXXe4rPo5Xz1w15F4FaThcDOlmSyAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPDgmNU049qOCDKU5WCJl7DCwXVLMB8GA1UdIwQY
MBaAFAwPegTdckml0Ut94FQqQZc4AAbMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREE5NkJOMXlTYVhSUzMzZ1ZDcEJsemdBQnN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8xMWRiMTQtZTg0NS00ZTRmLWE2OTIt
YTNjYmVmZmY3Nzc3LzEvREE5NkJOMXlTYVhSUzMzZ1ZDcEJsemdBQnN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8xMWRiMTQtZTg0NS00ZTRmLWE2OTItYTNjYmVmZmY3Nzc3
LzEvREE5NkJOMXlTYVhSUzMzZ1ZDcEJsemdBQnN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWKztb4PY
NoH+9ZcH1CZoqH4oL3eynR3fn4s1ca5C7LL/6AgWa2sI9iJhzDYnElHIDfwacmI+
iFgI4LZkaUPGwqnWcz/6LVTCa2jqVgMG/nJ1oOkb4dt5Smk5xhKDyNta+7k/xX/u
gGdh8g5SF4maKRfcps1dOndC2s19I7gAXqVREL+kH8NxesYMntySBp1kJJv3JOYO
DTjPjXxils1Eb0qG2CSYax6ONO0zrNg8OY6p76VxbUnaI5SIyhOoDw7bo7eP+uYg
WFbtKNYQ/zBhdFIXqCVdU2CWuumNcFE63JX2mhgTSefnyfmvbObI4wbf/nwDE8Vz
kIRz7PFH/cFubg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:54 2025 by rpki-client