Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
File: otP5vJZWutwm594auw-nLD1yjdg.mft (raw, json)
Hash identifier: hlwGuP3/cSIAuUrptT+Zy9p2AIaJuIlBfu/3oZ0tDis=
Subject key identifier: F2:D1:E1:FB:BD:6F:B6:BE:8D:50:87:D4:8A:5D:FD:29:36:D2:4A:BC
Authority key identifier: A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
Certificate issuer: /CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Certificate serial: 0194C3F56844AAC7D13EAE01D96033B5A9C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
Manifest number: 93
Signing time: Sun 02 Feb 2025 00:00:27 +0000
Manifest this update: Sun 02 Feb 2025 00:00:27 +0000
Manifest next update: Mon 03 Feb 2025 00:00:27 +0000
Files and hashes: 1: otP5vJZWutwm594auw-nLD1yjdg.crl (hash: hMi/cGcTr4PTrh1+Ysn5wolUSThJ/htWG9O3lJFChKg=)
2: yntKueGdh_gRYfTjbFRGz4s6BD8.roa (hash: 8wVmYZSgIm0dCsPvd2oqoO7MS+FukiT5t5Ke1EaX2FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:68:44:aa:c7:d1:3e:ae:01:d9:60:33:b5:a9:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Validity
Not Before: Feb 2 00:00:27 2025 GMT
Not After : Feb 3 00:00:27 2025 GMT
Subject: CN=f2d1e1fbbd6fb6be8d5087d48a5dfd2936d24abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3b:13:3d:cc:3b:f3:35:ef:d7:04:e3:2c:1a:
12:55:e4:8d:f7:80:06:48:63:02:fd:1b:b6:42:d9:
91:f8:34:82:68:dc:1e:f7:ef:7b:9c:78:da:53:d2:
5e:5b:5e:43:74:11:0d:bf:84:0f:e4:df:7e:02:e4:
82:50:15:99:ae:f2:f7:ba:27:13:19:11:39:9f:a4:
19:14:9f:e4:9c:71:31:7b:5a:fe:09:a1:12:06:f1:
35:c7:66:c2:4f:cc:21:90:8d:f4:37:fe:39:29:b0:
af:3d:b8:75:15:e7:be:4e:02:47:0e:d0:d1:a7:98:
44:96:e5:70:dd:7c:dd:22:71:a4:4c:02:27:a0:12:
bd:37:f2:05:f4:29:5f:f7:5b:9a:ad:00:f8:8c:2c:
f8:20:85:c1:36:47:15:ea:18:dd:cf:ab:90:26:4c:
e2:ad:07:31:69:af:96:18:00:c1:89:52:ea:78:12:
51:59:1b:fb:90:75:78:4d:ff:85:21:40:c9:65:22:
56:03:c2:e5:43:e7:00:4a:9b:96:dd:0a:2a:54:0d:
3e:3f:21:26:12:c2:5d:37:b5:2e:5e:61:07:62:33:
cd:cf:dd:42:3e:bd:05:52:ae:92:40:ce:62:17:49:
ca:97:36:24:05:85:e4:df:70:99:97:2f:25:7f:df:
c4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D1:E1:FB:BD:6F:B6:BE:8D:50:87:D4:8A:5D:FD:29:36:D2:4A:BC
X509v3 Authority Key Identifier:
keyid:A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:59:76:8a:c9:0b:c2:1a:71:9e:9d:48:05:33:07:c1:33:97:
b9:64:4b:bf:23:f9:30:dc:c6:bd:6e:46:6a:53:03:07:3a:43:
7e:8f:79:40:ad:ec:95:76:1b:71:d6:ef:79:7b:26:37:46:67:
6f:e8:c5:5b:04:cf:02:8f:13:04:6a:5e:6b:1a:31:7f:f6:de:
c8:7f:b5:84:08:d1:d4:4a:2f:24:c6:ea:5c:e4:4b:30:e1:72:
d7:a5:23:18:73:b6:2d:51:3f:d4:cf:19:22:5e:1d:82:69:33:
b3:85:a1:f0:e4:21:7a:73:10:f6:b3:fa:b5:1b:c4:1c:28:56:
2c:37:e8:87:f5:c5:c0:b5:dd:40:26:6b:bf:88:7b:55:d6:2f:
eb:34:4d:91:99:b0:41:cb:71:89:68:4f:90:3a:7a:40:12:5a:
d2:a2:bf:1a:33:ee:d5:9c:5b:8c:dd:24:f3:24:45:99:dc:b2:
cc:4d:48:9a:29:c8:96:d5:45:4d:f8:03:ee:74:13:b8:e9:86:
a8:ea:03:9d:96:48:d2:08:01:f1:f1:a1:e4:77:76:19:79:7f:
01:40:39:33:37:4d:1b:0a:e9:64:5d:1b:73:72:0a:ac:a5:f5:
da:03:2e:2c:a5:dd:26:5e:eb:54:96:6e:1e:aa:7d:3f:1a:e0:
4a:2b:b4:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTD9WhEqsfRPq4B2WAztanHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZDNmOWJjOTY1NmJhZGMyNmU3ZGUxYWJiMGZhNzJjM2Q3
MjhkZDgwHhcNMjUwMjAyMDAwMDI3WhcNMjUwMjAzMDAwMDI3WjAzMTEwLwYDVQQD
EyhmMmQxZTFmYmJkNmZiNmJlOGQ1MDg3ZDQ4YTVkZmQyOTM2ZDI0YWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlTsTPcw78zXv1wTjLBoSVeSN94AG
SGMC/Ru2QtmR+DSCaNwe9+97nHjaU9JeW15DdBENv4QP5N9+AuSCUBWZrvL3uicT
GRE5n6QZFJ/knHExe1r+CaESBvE1x2bCT8whkI30N/45KbCvPbh1Fee+TgJHDtDR
p5hEluVw3XzdInGkTAInoBK9N/IF9Clf91uarQD4jCz4IIXBNkcV6hjdz6uQJkzi
rQcxaa+WGADBiVLqeBJRWRv7kHV4Tf+FIUDJZSJWA8LlQ+cASpuW3QoqVA0+PyEm
EsJdN7UuXmEHYjPNz91CPr0FUq6SQM5iF0nKlzYkBYXk33CZly8lf9/EAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPLR4fu9b7a+jVCH1Ipd/Sk20kq8MB8GA1UdIwQY
MBaAFKLT+byWVrrcJufeGrsPpyw9co3YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3RQNXZKWld1dHdtNTk0YXV3LW5MRDF5amRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82OGZkMGYtMmI4Ny00NzA0LWEzMmYt
ZDcxMWU4NGMyOWExLzEvb3RQNXZKWld1dHdtNTk0YXV3LW5MRDF5amRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi82OGZkMGYtMmI4Ny00NzA0LWEzMmYtZDcxMWU4NGMyOWEx
LzEvb3RQNXZKWld1dHdtNTk0YXV3LW5MRDF5amRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO1l2iskL
whpxnp1IBTMHwTOXuWRLvyP5MNzGvW5GalMDBzpDfo95QK3slXYbcdbveXsmN0Zn
b+jFWwTPAo8TBGpeaxoxf/beyH+1hAjR1EovJMbqXORLMOFy16UjGHO2LVE/1M8Z
Il4dgmkzs4Wh8OQhenMQ9rP6tRvEHChWLDfoh/XFwLXdQCZrv4h7VdYv6zRNkZmw
QctxiWhPkDp6QBJa0qK/GjPu1ZxbjN0k8yRFmdyyzE1IminIltVFTfgD7nQTuOmG
qOoDnZZI0ggB8fGh5Hd2GXl/AUA5MzdNGwrpZF0bc3IKrKX12gMuLKXdJl7rVJZu
Hqp9PxrgSiu0mg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:47:12 2025 by rpki-client