Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
File: oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft (raw, json)
Hash identifier: 4LiGVvIoMyixdDSLKMTbo2p3m/6XofXtbGyHnerWvrI=
Subject key identifier: 0E:FE:17:8C:15:A6:13:ED:17:46:8B:CE:C7:7F:D4:1B:6C:29:84:41
Authority key identifier: A1:0F:34:1D:3A:B5:63:B9:FC:40:98:0A:E7:C1:74:02:C2:15:EF:2A
Certificate issuer: /CN=a10f341d3ab563b9fc40980ae7c17402c215ef2a
Certificate serial: 0194C38874B958D22D9C1D3391428E73E901
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQ80HTq1Y7n8QJgK58F0AsIV7yo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
Manifest number: 142A
Signing time: Sat 01 Feb 2025 22:01:27 +0000
Manifest this update: Sat 01 Feb 2025 22:01:27 +0000
Manifest next update: Sun 02 Feb 2025 22:01:27 +0000
Files and hashes: 1: oQ80HTq1Y7n8QJgK58F0AsIV7yo.crl (hash: egD0RfV/gzjULQGNWyQur772LUnEusYzSY7UQAi0eK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQ80HTq1Y7n8QJgK58F0AsIV7yo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:74:b9:58:d2:2d:9c:1d:33:91:42:8e:73:e9:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a10f341d3ab563b9fc40980ae7c17402c215ef2a
Validity
Not Before: Feb 1 22:01:27 2025 GMT
Not After : Feb 2 22:01:27 2025 GMT
Subject: CN=0efe178c15a613ed17468bcec77fd41b6c298441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:67:96:7d:00:11:07:17:9f:66:fa:08:18:48:
aa:27:aa:84:f3:06:fb:7d:a9:e1:cd:cb:b0:1a:0a:
72:4a:0a:5a:eb:53:54:06:ae:0f:44:6a:cf:23:2b:
2e:33:fe:e8:ce:14:75:81:8e:13:8e:6e:09:a9:1f:
b6:59:da:52:fd:06:d3:89:50:be:ef:ae:a8:2e:85:
20:8d:cd:22:23:fe:80:fb:3e:05:bc:19:9f:39:84:
5b:37:02:d1:c4:0f:fa:09:84:e0:04:73:82:1a:e0:
04:37:91:d0:fb:4c:71:33:82:a9:48:f0:7a:41:86:
94:32:e0:26:56:11:ee:68:58:a9:9a:8e:0f:22:9a:
b2:fb:45:fd:f4:f4:16:98:4a:c7:76:73:10:c2:f9:
cd:4f:92:a4:e2:7d:bf:b9:e5:9d:20:40:a6:18:b1:
c5:58:d3:fc:e1:b6:00:c3:b1:2b:e1:6e:8c:9e:a9:
ae:c6:6b:5f:e0:58:e5:93:bb:9f:42:f3:c6:41:b1:
6d:6b:89:a2:d8:94:8f:fc:f9:e5:05:09:30:86:d1:
06:2e:2e:ea:18:b0:32:d2:2f:8f:18:5e:6e:9f:9c:
74:92:8a:a7:12:3e:b0:ad:cd:2d:1e:ca:32:64:13:
fe:ee:76:c8:5d:7a:8b:0b:17:52:3c:56:11:ce:e6:
f7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FE:17:8C:15:A6:13:ED:17:46:8B:CE:C7:7F:D4:1B:6C:29:84:41
X509v3 Authority Key Identifier:
keyid:A1:0F:34:1D:3A:B5:63:B9:FC:40:98:0A:E7:C1:74:02:C2:15:EF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQ80HTq1Y7n8QJgK58F0AsIV7yo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:bc:52:82:3c:58:7f:58:35:10:93:14:59:2f:9b:30:36:97:
f8:13:ca:f3:4e:a9:f4:c5:dc:bf:1b:0f:24:9b:a1:9c:91:dc:
2e:91:65:3e:35:5b:af:2f:53:df:ff:01:73:f2:fb:90:af:79:
6c:84:33:82:f4:57:20:89:a2:b3:0d:7b:57:c3:ad:9e:42:97:
d5:4b:12:28:21:ad:89:f0:5f:31:29:60:5c:9e:b9:bd:1e:1d:
ec:23:56:34:01:37:89:3f:c8:f6:49:6a:e2:79:cc:09:3d:52:
3c:dd:5c:ea:15:e4:fe:51:bc:77:e9:cc:56:98:2d:86:44:15:
51:a2:59:b2:46:86:f7:32:fc:71:31:ef:5b:eb:23:6c:16:d2:
1e:18:9f:9f:5f:70:5b:5d:d2:00:78:6d:81:2f:fa:7b:3e:8d:
0b:e6:60:e7:d7:dc:73:56:5d:f9:25:f5:3e:3b:f5:05:7a:b2:
73:e8:56:c0:ab:96:84:bd:eb:ae:8c:9b:26:38:44:86:cc:81:
96:52:b4:86:11:6c:82:4f:6f:a6:eb:25:71:19:ce:59:73:d8:
3a:53:e6:03:b3:13:c0:17:99:6c:20:c6:14:0a:4f:e8:e6:ba:
51:be:be:44:01:65:79:c7:bd:a3:aa:e8:41:fc:7b:60:cd:06:
0b:32:bf:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDiHS5WNItnB0zkUKOc+kBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExMGYzNDFkM2FiNTYzYjlmYzQwOTgwYWU3YzE3NDAyYzIx
NWVmMmEwHhcNMjUwMjAxMjIwMTI3WhcNMjUwMjAyMjIwMTI3WjAzMTEwLwYDVQQD
EygwZWZlMTc4YzE1YTYxM2VkMTc0NjhiY2VjNzdmZDQxYjZjMjk4NDQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGeWfQARBxefZvoIGEiqJ6qE8wb7
fanhzcuwGgpySgpa61NUBq4PRGrPIysuM/7ozhR1gY4Tjm4JqR+2WdpS/QbTiVC+
766oLoUgjc0iI/6A+z4FvBmfOYRbNwLRxA/6CYTgBHOCGuAEN5HQ+0xxM4KpSPB6
QYaUMuAmVhHuaFipmo4PIpqy+0X99PQWmErHdnMQwvnNT5Kk4n2/ueWdIECmGLHF
WNP84bYAw7Er4W6Mnqmuxmtf4Fjlk7ufQvPGQbFta4mi2JSP/PnlBQkwhtEGLi7q
GLAy0i+PGF5un5x0koqnEj6wrc0tHsoyZBP+7nbIXXqLCxdSPFYRzub3lQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA7+F4wVphPtF0aLzsd/1BtsKYRBMB8GA1UdIwQY
MBaAFKEPNB06tWO5/ECYCufBdALCFe8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1E4MEhUcTFZN244UUpnSzU4RjBBc0lWN3lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84YjJmMTQtYzMyOS00Y2JiLWFkNDEt
MTc0MDcxNjVhZmU2LzEvb1E4MEhUcTFZN244UUpnSzU4RjBBc0lWN3lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS84YjJmMTQtYzMyOS00Y2JiLWFkNDEtMTc0MDcxNjVhZmU2
LzEvb1E4MEhUcTFZN244UUpnSzU4RjBBc0lWN3lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUrxSgjxY
f1g1EJMUWS+bMDaX+BPK806p9MXcvxsPJJuhnJHcLpFlPjVbry9T3/8Bc/L7kK95
bIQzgvRXIImisw17V8OtnkKX1UsSKCGtifBfMSlgXJ65vR4d7CNWNAE3iT/I9klq
4nnMCT1SPN1c6hXk/lG8d+nMVpgthkQVUaJZskaG9zL8cTHvW+sjbBbSHhifn19w
W13SAHhtgS/6ez6NC+Zg59fcc1Zd+SX1Pjv1BXqyc+hWwKuWhL3rroybJjhEhsyB
llK0hhFsgk9vpuslcRnOWXPYOlPmA7MTwBeZbCDGFApP6Oa6Ub6+RAFlece9o6ro
Qfx7YM0GCzK/jg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:55:43 2025 by rpki-client