Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: HZpyi6DVFLKZOzkbb0c680QWD9KPqHnZWqcMYQZ5rx8=
Subject key identifier: 43:62:37:4A:16:FF:E4:73:94:1F:F6:1E:07:AD:D5:18:FF:D3:31:D9
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 0194C387D3B67BD933997BEE8CB3B05221C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 0571
Signing time: Sat 01 Feb 2025 22:00:46 +0000
Manifest this update: Sat 01 Feb 2025 22:00:46 +0000
Manifest next update: Sun 02 Feb 2025 22:00:46 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: cozeE6mlEgbRv8QZPfZIIKvT2bJGB73FOe+GU9QFKh0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:d3:b6:7b:d9:33:99:7b:ee:8c:b3:b0:52:21:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Feb 1 22:00:46 2025 GMT
Not After : Feb 2 22:00:46 2025 GMT
Subject: CN=4362374a16ffe473941ff61e07add518ffd331d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:39:91:f5:6d:43:4f:89:8f:3e:48:cd:a2:8e:
93:c8:6d:eb:36:c2:20:30:c1:1f:51:b8:c9:27:04:
70:30:70:fe:49:61:68:1c:03:1c:3f:f5:bc:d4:58:
c7:a4:eb:98:fe:63:92:7f:fd:23:d0:fe:c3:0c:96:
7f:b7:6f:80:dc:fb:1a:6d:b1:dc:76:bd:9a:9e:65:
6f:55:fa:9f:5a:5a:db:f0:72:2e:e4:65:73:e2:4d:
ce:37:38:30:29:5e:4f:3b:65:bd:a3:44:b1:1a:ac:
ca:0c:dc:ab:36:76:14:9d:c6:92:a6:7a:c0:74:88:
28:d3:ae:38:18:27:d7:90:ef:1a:04:4d:d9:b9:37:
b8:aa:96:ce:f1:47:62:64:c9:2c:72:a1:97:b5:8d:
fe:49:5c:bf:37:bb:6f:4e:3f:d7:53:0c:72:da:4c:
f5:ea:6c:bb:66:f6:48:62:23:02:ca:5b:9d:1a:73:
e4:90:aa:7d:45:59:de:09:cb:76:1b:f5:66:ce:a4:
00:05:5e:0e:6a:3a:43:6c:5c:7a:87:f9:ee:1b:73:
61:d3:fe:2a:ff:df:4a:c4:1e:47:5a:bb:2e:73:4e:
3b:96:39:58:02:04:c9:2a:7f:d8:79:99:8f:d5:1c:
eb:9e:1a:9c:f3:94:15:4b:cc:f0:6f:7f:72:85:9b:
13:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:62:37:4A:16:FF:E4:73:94:1F:F6:1E:07:AD:D5:18:FF:D3:31:D9
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:0a:7b:f2:32:cd:46:7c:23:9e:ed:8e:84:1b:f7:1a:be:73:
eb:cc:f4:66:c6:33:0d:a8:90:8f:f6:ce:3e:e5:98:f2:a1:72:
7a:08:49:53:58:7d:d9:6d:10:fc:4b:9e:00:32:f6:c6:19:27:
df:15:df:21:39:72:5d:1f:f8:71:81:48:3b:63:5a:fa:ce:81:
d3:eb:b9:a6:37:c9:1a:b2:c1:46:22:64:76:29:1d:b1:c3:ec:
b1:c2:70:0c:d2:5e:87:8d:c0:ef:fa:ea:0d:8d:79:b6:cf:ed:
db:05:06:17:f1:4f:72:df:de:f4:c9:50:6d:1f:5f:26:62:55:
59:cd:47:b1:a2:6c:a0:c8:a3:58:54:c7:c4:ee:81:35:8f:dd:
85:dd:ee:3e:67:00:35:c8:1b:bd:d6:00:8b:47:2e:7d:d4:fd:
99:ff:4d:12:64:74:e0:63:83:3e:5f:fc:83:93:bc:7f:03:44:
24:69:97:ea:f1:b0:84:4a:7b:fd:d8:f5:7e:f3:40:42:2f:e4:
10:01:c4:4b:6d:58:b6:d6:c4:5d:3b:d6:e4:d1:20:d8:0c:5b:
00:e5:f8:c6:ad:4e:0d:07:65:f5:08:3b:19:d0:e6:23:6b:0a:
5d:6c:4a:0c:36:e6:1c:b7:dc:39:59:dc:e8:44:a2:00:82:f0:
f3:d1:b3:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDh9O2e9kzmXvujLOwUiHCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NGRkZjZmMDMzMzFjZDc3M2M3ZTdhYmIxNTQyOWJhOGQy
MGJkNzgwHhcNMjUwMjAxMjIwMDQ2WhcNMjUwMjAyMjIwMDQ2WjAzMTEwLwYDVQQD
Eyg0MzYyMzc0YTE2ZmZlNDczOTQxZmY2MWUwN2FkZDUxOGZmZDMzMWQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTmR9W1DT4mPPkjNoo6TyG3rNsIg
MMEfUbjJJwRwMHD+SWFoHAMcP/W81FjHpOuY/mOSf/0j0P7DDJZ/t2+A3PsabbHc
dr2anmVvVfqfWlrb8HIu5GVz4k3ONzgwKV5PO2W9o0SxGqzKDNyrNnYUncaSpnrA
dIgo0644GCfXkO8aBE3ZuTe4qpbO8UdiZMkscqGXtY3+SVy/N7tvTj/XUwxy2kz1
6my7ZvZIYiMCyludGnPkkKp9RVneCct2G/VmzqQABV4OajpDbFx6h/nuG3Nh0/4q
/99KxB5HWrsuc047ljlYAgTJKn/YeZmP1Rzrnhqc85QVS8zwb39yhZsTXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFENiN0oW/+RzlB/2Hget1Rj/0zHZMB8GA1UdIwQY
MBaAFLVN328DMxzXc8fnq7FUKbqNIL14MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFUzZmJ3TXpITmR6eC1lcnNWUXB1bzBndlhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82NWJjZmYtYmEwMS00OThjLWI1NGQt
ODQwMjZiYzg1MmYwLzEvdFUzZmJ3TXpITmR6eC1lcnNWUXB1bzBndlhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC82NWJjZmYtYmEwMS00OThjLWI1NGQtODQwMjZiYzg1MmYw
LzEvdFUzZmJ3TXpITmR6eC1lcnNWUXB1bzBndlhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFQp78jLN
Rnwjnu2OhBv3Gr5z68z0ZsYzDaiQj/bOPuWY8qFyeghJU1h92W0Q/EueADL2xhkn
3xXfITlyXR/4cYFIO2Na+s6B0+u5pjfJGrLBRiJkdikdscPsscJwDNJeh43A7/rq
DY15ts/t2wUGF/FPct/e9MlQbR9fJmJVWc1HsaJsoMijWFTHxO6BNY/dhd3uPmcA
NcgbvdYAi0cufdT9mf9NEmR04GODPl/8g5O8fwNEJGmX6vGwhEp7/dj1fvNAQi/k
EAHES21YttbEXTvW5NEg2AxbAOX4xq1ODQdl9Qg7GdDmI2sKXWxKDDbmHLfcOVnc
6ESiAILw89Gz6g==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:59:53 2025 by rpki-client