Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
File: OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft (raw, json)
Hash identifier: 3Q+EHczX893P0CK9S5WZHuejTtpB29hWb4YnAkdVtUU=
Subject key identifier: B3:34:57:8F:A4:42:5B:96:7A:06:C0:DF:B9:E7:2E:D6:6C:DC:53:89
Authority key identifier: 38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58
Certificate issuer: /CN=386ab970bfb6947597e97cefb916ec76a0c56858
Certificate serial: 019511D9555229C10D63AB5304729DF1485E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
Manifest number: 1459
Signing time: Mon 17 Feb 2025 03:00:10 +0000
Manifest this update: Mon 17 Feb 2025 03:00:10 +0000
Manifest next update: Tue 18 Feb 2025 03:00:10 +0000
Files and hashes: 1: I01Lo7qwhvaLI2U54ucZ10pkExs.roa (hash: mTrGRc4f1Skt/0lHfZ3XZbVEvrQ9mBUuWZXJpIXORz4=)
2: OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl (hash: kw2ANZQdYQ7tIgbWRHTkr2v8rGWs69iGXiUbeU+6Muc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:55:52:29:c1:0d:63:ab:53:04:72:9d:f1:48:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=386ab970bfb6947597e97cefb916ec76a0c56858
Validity
Not Before: Feb 17 03:00:10 2025 GMT
Not After : Feb 18 03:00:10 2025 GMT
Subject: CN=b334578fa4425b967a06c0dfb9e72ed66cdc5389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:70:a2:6f:5d:77:06:75:1e:a4:d6:eb:63:6f:
fb:8b:60:4a:00:f2:35:d7:2a:02:cc:e9:e4:fd:89:
df:4d:be:f9:af:1c:c3:f9:89:5c:9f:bd:d5:1f:b7:
e8:7f:1e:74:c5:17:f7:26:ef:0a:cd:48:94:8d:6e:
67:e0:f6:1c:bc:fb:17:09:52:37:92:11:52:81:12:
92:e4:29:1b:60:68:e8:75:5e:b8:71:cb:f4:7a:ab:
da:c4:7f:3e:87:05:ee:e9:31:7f:28:17:2a:5c:54:
87:b5:e3:3c:6a:7c:68:2b:77:1c:56:0c:03:fe:09:
74:74:d8:be:bd:70:25:7d:37:d8:4e:42:95:1f:aa:
ff:d1:0c:c5:42:52:b2:ae:55:a5:c4:f4:90:66:16:
6f:39:37:b1:56:e8:d3:23:10:36:90:2f:64:c0:03:
86:89:13:d8:1a:5c:be:92:d8:30:27:70:92:71:2d:
f7:ba:14:ca:42:d3:9c:dc:90:a8:0f:96:e5:23:fe:
cc:98:87:08:3a:49:85:f7:83:e9:b5:ca:dd:3b:76:
a9:16:48:ae:72:79:d9:fc:f4:b3:b7:89:56:d2:19:
4a:a0:97:6a:b3:40:53:1a:65:95:b4:2f:b0:27:2c:
f8:4d:db:16:5a:db:b0:de:53:be:15:51:c7:76:a3:
35:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:34:57:8F:A4:42:5B:96:7A:06:C0:DF:B9:E7:2E:D6:6C:DC:53:89
X509v3 Authority Key Identifier:
keyid:38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:0f:70:02:d1:dc:b0:0f:e4:79:ed:b9:3d:af:08:92:a8:49:
12:af:19:57:c9:a7:34:75:48:89:38:87:e1:ab:53:4f:9e:6b:
33:86:23:0e:c0:0e:b9:73:69:04:5a:bd:7a:bb:68:83:22:7c:
09:26:85:a3:7f:d1:10:ae:4d:db:9e:14:14:13:2f:c9:f4:3e:
3d:97:e1:3f:2f:0f:b5:33:b2:03:30:57:f3:0d:ae:66:45:53:
6d:8c:4f:ff:7a:bb:64:b8:b7:2d:41:37:b8:14:43:a6:c6:ed:
33:ca:b6:b2:ef:2c:b7:74:71:17:c0:81:92:05:ea:51:a4:9f:
c7:f8:f3:4f:6a:41:85:92:ef:24:8a:ea:0d:fd:d5:b9:50:bf:
13:37:81:0a:d9:1f:02:35:c5:48:be:7a:99:0c:7a:36:33:30:
ec:60:e0:cf:03:10:48:12:03:0b:62:5b:3c:d0:49:1c:24:b1:
20:4f:27:0e:bf:22:41:76:89:a5:94:11:ad:a7:74:c9:d1:26:
01:34:a7:0c:ab:64:f4:8d:bc:59:ed:6e:69:66:8d:74:3c:2d:
2d:61:67:1e:7c:8e:a9:c9:4c:f6:fb:67:e2:7e:28:86:6e:ea:
d8:db:8c:83:11:81:a7:f4:c9:14:ec:f8:2e:16:f3:e5:73:31:
f8:56:c2:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUR2VVSKcENY6tTBHKd8UheMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NmFiOTcwYmZiNjk0NzU5N2U5N2NlZmI5MTZlYzc2YTBj
NTY4NTgwHhcNMjUwMjE3MDMwMDEwWhcNMjUwMjE4MDMwMDEwWjAzMTEwLwYDVQQD
EyhiMzM0NTc4ZmE0NDI1Yjk2N2EwNmMwZGZiOWU3MmVkNjZjZGM1Mzg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nCib113BnUepNbrY2/7i2BKAPI1
1yoCzOnk/YnfTb75rxzD+Ylcn73VH7fofx50xRf3Ju8KzUiUjW5n4PYcvPsXCVI3
khFSgRKS5CkbYGjodV64ccv0eqvaxH8+hwXu6TF/KBcqXFSHteM8anxoK3ccVgwD
/gl0dNi+vXAlfTfYTkKVH6r/0QzFQlKyrlWlxPSQZhZvOTexVujTIxA2kC9kwAOG
iRPYGly+ktgwJ3CScS33uhTKQtOc3JCoD5blI/7MmIcIOkmF94PptcrdO3apFkiu
cnnZ/PSzt4lW0hlKoJdqs0BTGmWVtC+wJyz4TdsWWtuw3lO+FVHHdqM1FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLM0V4+kQluWegbA37nnLtZs3FOJMB8GA1UdIwQY
MBaAFDhquXC/tpR1l+l877kW7HagxWhYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0dxNWNMLTJsSFdYNlh6dnVSYnNkcURGYUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC80MWZkYTktOTcwMi00NThkLTk4MmYt
OGQxMTI1N2Q0YWY2LzEvT0dxNWNMLTJsSFdYNlh6dnVSYnNkcURGYUZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC80MWZkYTktOTcwMi00NThkLTk4MmYtOGQxMTI1N2Q0YWY2
LzEvT0dxNWNMLTJsSFdYNlh6dnVSYnNkcURGYUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAg9wAtHc
sA/kee25Pa8IkqhJEq8ZV8mnNHVIiTiH4atTT55rM4YjDsAOuXNpBFq9ertogyJ8
CSaFo3/REK5N254UFBMvyfQ+PZfhPy8PtTOyAzBX8w2uZkVTbYxP/3q7ZLi3LUE3
uBRDpsbtM8q2su8st3RxF8CBkgXqUaSfx/jzT2pBhZLvJIrqDf3VuVC/EzeBCtkf
AjXFSL56mQx6NjMw7GDgzwMQSBIDC2JbPNBJHCSxIE8nDr8iQXaJpZQRrad0ydEm
ATSnDKtk9I28We1uaWaNdDwtLWFnHnyOqclM9vtn4n4ohm7q2NuMgxGBp/TJFOz4
Lhbz5XMx+FbCng==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:01 2025 by rpki-client