Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
File: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft (raw, json)
Hash identifier: /hSw2GlEmrD87WaFhy6d6v6grM/GchHNRQ/SBy0uLsU=
Subject key identifier: 93:77:37:3D:88:79:D7:54:B4:5C:5A:6C:75:8D:91:58:2D:0F:28:7C
Authority key identifier: 8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
Certificate issuer: /CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Certificate serial: 0194C3BE914CF20CAB8F6910D86E3BBC65EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
Manifest number: A8
Signing time: Sat 01 Feb 2025 23:00:33 +0000
Manifest this update: Sat 01 Feb 2025 23:00:33 +0000
Manifest next update: Sun 02 Feb 2025 23:00:33 +0000
Files and hashes: 1: a8IXKpHV3NWa7LICJ758JvcRIvY.roa (hash: X2zHQ2bSxMYP23moGooOgAvqdrG84QharuHsT6bVARw=)
2: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl (hash: YAa5iBAkqSiiMfw5v5XMHj6A59FUzw+bJB3NRhZKUk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:91:4c:f2:0c:ab:8f:69:10:d8:6e:3b:bc:65:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Validity
Not Before: Feb 1 23:00:33 2025 GMT
Not After : Feb 2 23:00:33 2025 GMT
Subject: CN=9377373d8879d754b45c5a6c758d91582d0f287c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b8:89:05:3c:7a:d2:3d:81:6b:b6:c6:12:24:
8c:eb:f1:1f:65:e6:cf:83:c7:07:41:49:41:8d:c8:
89:3f:1c:95:04:fc:a1:cb:53:c8:5f:52:42:b7:08:
e6:ae:e5:25:d2:65:d4:12:31:02:79:fb:7b:7e:4d:
b6:8f:fc:26:f1:14:3c:9d:11:56:91:89:90:5f:6e:
b1:8d:69:02:f8:8f:61:2f:4e:2b:0b:9b:20:3e:d0:
65:71:98:18:38:0e:b6:0c:80:0a:97:58:9a:b5:5c:
ad:e5:68:9e:bf:c7:68:55:25:f1:9d:78:b1:de:67:
08:87:7e:9c:25:55:54:1e:f5:03:fe:b4:87:67:7a:
1e:ca:be:3c:d0:ba:b7:35:85:13:2b:f0:70:1c:d7:
00:a6:64:74:a2:cc:f3:3a:6f:49:1d:c3:b3:ad:97:
64:25:68:f9:5f:69:a5:76:43:75:e3:8a:4b:22:4b:
ef:43:22:bd:c6:e4:f6:7a:02:60:93:15:a4:79:e7:
7d:f3:53:dc:4a:ba:0f:1b:f7:9d:3d:cf:d9:50:e1:
1c:ac:c6:4f:a7:17:43:18:8e:52:95:47:4a:02:b9:
bf:6c:12:12:c4:c2:b8:91:85:e0:0b:57:e2:07:1e:
ce:48:fa:ba:35:10:cd:ac:f4:be:68:4e:1f:34:56:
f9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:77:37:3D:88:79:D7:54:B4:5C:5A:6C:75:8D:91:58:2D:0F:28:7C
X509v3 Authority Key Identifier:
keyid:8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:97:b3:5a:09:c1:58:16:4b:73:fd:97:c8:4d:30:c7:47:19:
32:20:07:31:7a:0b:86:5f:29:3f:54:8c:6e:42:bb:01:f2:1f:
cf:16:84:3d:4e:bc:8d:54:41:e0:84:e5:0c:8b:ac:ef:23:82:
26:57:f8:b2:c1:da:0d:d8:6b:f0:9f:84:95:00:3b:66:4f:1f:
8d:e3:db:ad:87:a9:11:88:f2:2f:2b:89:3d:22:70:88:08:36:
ea:83:21:be:1f:f3:71:ac:a1:ea:38:38:b2:e0:ce:60:91:4f:
8a:89:f1:f4:bd:04:37:cb:d1:28:13:51:d4:f6:f4:84:54:c6:
6a:bd:e6:44:cd:1a:d8:e6:aa:e0:50:80:9d:8e:aa:fb:b9:99:
a4:93:19:9e:d0:99:cc:13:14:20:ab:91:9c:ad:1d:9b:7c:c0:
98:3e:ab:bb:7c:b5:11:c5:62:ab:c8:3b:9d:f2:d5:81:05:92:
ef:c5:61:c0:fc:1e:12:04:ee:1f:a1:ab:81:fb:8c:ee:b7:30:
3b:56:0c:ca:0c:c1:b4:4a:97:68:4b:63:a6:6f:f8:81:5e:af:
0f:3a:67:38:68:8f:e2:a5:34:58:e8:7d:db:e6:2d:e2:b0:cd:
bb:01:e0:56:a5:f7:f4:d9:be:b2:ff:df:a1:10:75:83:f0:3e:
94:7a:7e:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDvpFM8gyrj2kQ2G47vGXqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkNTBiM2E5YTA1MDM5MDU1OTZjNzdmNTgwMmJlZjlmYzcz
ZDY0N2QwHhcNMjUwMjAxMjMwMDMzWhcNMjUwMjAyMjMwMDMzWjAzMTEwLwYDVQQD
Eyg5Mzc3MzczZDg4NzlkNzU0YjQ1YzVhNmM3NThkOTE1ODJkMGYyODdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLiJBTx60j2Ba7bGEiSM6/EfZebP
g8cHQUlBjciJPxyVBPyhy1PIX1JCtwjmruUl0mXUEjECeft7fk22j/wm8RQ8nRFW
kYmQX26xjWkC+I9hL04rC5sgPtBlcZgYOA62DIAKl1iatVyt5Wiev8doVSXxnXix
3mcIh36cJVVUHvUD/rSHZ3oeyr480Lq3NYUTK/BwHNcApmR0oszzOm9JHcOzrZdk
JWj5X2mldkN144pLIkvvQyK9xuT2egJgkxWkeed981PcSroPG/edPc/ZUOEcrMZP
pxdDGI5SlUdKArm/bBISxMK4kYXgC1fiBx7OSPq6NRDNrPS+aE4fNFb56wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJN3Nz2IeddUtFxabHWNkVgtDyh8MB8GA1UdIwQY
MBaAFI1Qs6mgUDkFWWx39YAr75/HPWR9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalZDenFhQlFPUVZaYkhmMWdDdnZuOGM5WkgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82OGQxNDMtMTIzNy00OTEyLWE4OTIt
Y2VmMDFkODc3ZWJlLzEvalZDenFhQlFPUVZaYkhmMWdDdnZuOGM5WkgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS82OGQxNDMtMTIzNy00OTEyLWE4OTItY2VmMDFkODc3ZWJl
LzEvalZDenFhQlFPUVZaYkhmMWdDdnZuOGM5WkgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQZezWgnB
WBZLc/2XyE0wx0cZMiAHMXoLhl8pP1SMbkK7AfIfzxaEPU68jVRB4ITlDIus7yOC
Jlf4ssHaDdhr8J+ElQA7Zk8fjePbrYepEYjyLyuJPSJwiAg26oMhvh/zcayh6jg4
suDOYJFPionx9L0EN8vRKBNR1Pb0hFTGar3mRM0a2Oaq4FCAnY6q+7mZpJMZntCZ
zBMUIKuRnK0dm3zAmD6ru3y1EcViq8g7nfLVgQWS78VhwPweEgTuH6GrgfuM7rcw
O1YMygzBtEqXaEtjpm/4gV6vDzpnOGiP4qU0WOh92+Yt4rDNuwHgVqX39Nm+sv/f
oRB1g/A+lHp+dA==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:58:38 2025 by rpki-client