Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json)
Hash identifier: LapHgKKcabZd1LBKUROa4ST57EsEoNwdd9M5sQx4kJM=
Subject key identifier: E7:D4:97:6A:C0:6E:94:2C:03:EC:81:B3:23:6C:32:CD:3E:5C:0B:55
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 019511351EC419468AB368FAB413B5F5A8C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
Manifest number: 1458
Signing time: Mon 17 Feb 2025 00:00:48 +0000
Manifest this update: Mon 17 Feb 2025 00:00:48 +0000
Manifest next update: Tue 18 Feb 2025 00:00:48 +0000
Files and hashes: 1: CPqSq0ytAxDio98lkjeb_dYwRZ4.roa (hash: DBQ2P8ThG/7CNm8RF8WiO7psAqOGJ9hYf3OIiBNBEtw=)
2: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: YHR2WwtWpE+73a86HF6RZXVZO4ul4KqVTzjdnr4sPqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:1e:c4:19:46:8a:b3:68:fa:b4:13:b5:f5:a8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Feb 17 00:00:48 2025 GMT
Not After : Feb 18 00:00:48 2025 GMT
Subject: CN=e7d4976ac06e942c03ec81b3236c32cd3e5c0b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:75:e7:b4:37:98:03:8e:f6:8a:9f:d3:8d:64:
fd:27:8e:a1:ee:12:68:07:98:ea:9d:47:91:26:ff:
db:af:c4:70:30:54:f8:80:cc:1d:60:61:16:08:95:
45:b3:37:26:5e:62:2c:f7:23:74:ad:34:ff:f3:e8:
c9:8b:fa:e9:59:e8:dd:e4:51:1a:a6:fa:e6:87:73:
22:13:90:4b:3d:ca:59:c3:c7:c5:c3:bd:8a:50:f1:
7d:18:b1:3b:8d:91:64:98:c4:e6:c6:9f:bd:cc:ce:
00:48:a2:85:d1:d9:3d:9d:03:1e:a9:1e:8e:df:2e:
05:35:fe:c7:90:6b:52:31:2b:ed:81:04:74:b8:64:
d9:a9:ed:c3:f0:5a:e5:c7:99:1b:fb:05:e0:0e:46:
9f:7e:ba:01:e3:5a:5b:a4:01:16:3f:60:ad:09:fe:
15:05:32:7c:48:f2:91:98:9e:42:1c:71:43:e6:e7:
79:76:50:10:27:68:fc:3c:72:54:c6:94:b8:7a:b7:
64:cd:8f:2c:f5:6a:26:a8:51:dd:21:24:b7:d3:cb:
1b:4b:35:e6:cb:7f:f4:d9:3d:e6:af:39:e8:91:23:
62:05:8f:98:64:66:13:0a:c7:13:27:e5:a9:72:3b:
47:6b:fa:3e:b1:aa:8b:7b:05:36:0d:7a:fb:bf:f6:
f4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D4:97:6A:C0:6E:94:2C:03:EC:81:B3:23:6C:32:CD:3E:5C:0B:55
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:00:4a:09:00:d9:61:a0:8d:67:e1:c6:5d:bf:a2:55:2f:0a:
70:40:14:12:ad:fe:ea:4c:8a:bf:61:a3:e9:6a:a2:34:15:ed:
cf:c7:cb:43:76:57:69:87:dd:df:32:1d:35:bc:91:d5:a6:c8:
b2:1b:00:76:d7:80:5f:a6:4e:0c:ec:41:bf:8f:c3:d8:29:5f:
d7:d0:2b:6a:27:6d:50:e0:2d:1d:74:d5:7a:33:71:43:86:17:
9f:02:c4:b8:08:3f:59:3f:3d:87:fb:37:f2:b2:bc:8b:e3:6e:
ff:54:d4:14:3d:ae:60:02:8e:46:05:f3:00:ae:00:9c:da:67:
3b:5a:03:b6:11:bb:fe:b1:20:e8:54:a5:c3:cd:7e:fb:d2:25:
ed:cf:32:05:8e:6c:67:a8:51:a1:f0:f4:27:c5:6f:2d:22:c7:
46:c9:2f:b5:0b:d4:18:9b:69:62:72:fa:89:49:08:3e:ca:65:
a8:e6:78:4f:8e:45:81:52:ad:00:fb:1d:6b:db:99:f3:55:00:
56:b9:f2:aa:43:b1:fa:de:a3:8a:86:90:13:62:07:b4:55:ec:
52:8f:d5:bc:e4:53:b5:30:92:c9:c4:72:ee:d3:84:5c:c7:92:
25:a5:ef:fc:e1:51:c3:d7:3f:0e:ff:c0:28:12:11:4d:af:cc:
1a:13:a4:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNR7EGUaKs2j6tBO19ajIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMjM5YzA4ZWFkOTRiYjA0ZmMzZTZiNGE2NWU2ZTFjN2Rj
ZjM4ZjQwHhcNMjUwMjE3MDAwMDQ4WhcNMjUwMjE4MDAwMDQ4WjAzMTEwLwYDVQQD
EyhlN2Q0OTc2YWMwNmU5NDJjMDNlYzgxYjMyMzZjMzJjZDNlNWMwYjU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXXntDeYA472ip/TjWT9J46h7hJo
B5jqnUeRJv/br8RwMFT4gMwdYGEWCJVFszcmXmIs9yN0rTT/8+jJi/rpWejd5FEa
pvrmh3MiE5BLPcpZw8fFw72KUPF9GLE7jZFkmMTmxp+9zM4ASKKF0dk9nQMeqR6O
3y4FNf7HkGtSMSvtgQR0uGTZqe3D8Frlx5kb+wXgDkaffroB41pbpAEWP2CtCf4V
BTJ8SPKRmJ5CHHFD5ud5dlAQJ2j8PHJUxpS4erdkzY8s9WomqFHdISS308sbSzXm
y3/02T3mrznokSNiBY+YZGYTCscTJ+WpcjtHa/o+saqLewU2DXr7v/b0pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOfUl2rAbpQsA+yBsyNsMs0+XAtVMB8GA1UdIwQY
MBaAFJ0jnAjq2UuwT8PmtKZebhx9zzj0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAt
ZGJiMjkzMWEwZjY0LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAtZGJiMjkzMWEwZjY0
LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVABKCQDZ
YaCNZ+HGXb+iVS8KcEAUEq3+6kyKv2Gj6WqiNBXtz8fLQ3ZXaYfd3zIdNbyR1abI
shsAdteAX6ZODOxBv4/D2Clf19AraidtUOAtHXTVejNxQ4YXnwLEuAg/WT89h/s3
8rK8i+Nu/1TUFD2uYAKORgXzAK4AnNpnO1oDthG7/rEg6FSlw81++9Il7c8yBY5s
Z6hRofD0J8VvLSLHRskvtQvUGJtpYnL6iUkIPsplqOZ4T45FgVKtAPsda9uZ81UA
VrnyqkOx+t6jioaQE2IHtFXsUo/VvORTtTCSycRy7tOEXMeSJaXv/OFRw9c/Dv/A
KBIRTa/MGhOkfQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:24 2025 by rpki-client