Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
File: Q_2TYug7hS8_0zEbCQlvYommoPg.mft (raw, json)
Hash identifier: BK7mkOX1CipBSkzMYV3qaYXcTys1jXnI9vfY/TH/hN8=
Subject key identifier: CD:00:4C:B5:F6:C4:68:CB:48:BE:4D:7B:9D:16:D8:24:8A:61:19:B6
Authority key identifier: 43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8
Certificate issuer: /CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8
Certificate serial: 0194C49A21FA67D7CF6433452D1E0405A89C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
Manifest number: 0D03
Signing time: Sun 02 Feb 2025 03:00:23 +0000
Manifest this update: Sun 02 Feb 2025 03:00:23 +0000
Manifest next update: Mon 03 Feb 2025 03:00:23 +0000
Files and hashes: 1: Fy-RDVpoQYqhk9YIhC0_OXJ7Ngw.roa (hash: MSpbkpTae0BKWb0wW1Z5MLxX2eex/b1uULBuB1GrJoU=)
2: Q_2TYug7hS8_0zEbCQlvYommoPg.crl (hash: CCQufzuptxiEdh/i8LJu/B8h3X1zjyfTl7SB9dO1J8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:21:fa:67:d7:cf:64:33:45:2d:1e:04:05:a8:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8
Validity
Not Before: Feb 2 03:00:23 2025 GMT
Not After : Feb 3 03:00:23 2025 GMT
Subject: CN=cd004cb5f6c468cb48be4d7b9d16d8248a6119b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:79:03:fd:2f:94:0a:e3:cf:cf:c9:86:55:8d:
76:ad:18:39:dd:9d:a2:d9:c2:7f:3b:ac:cc:f2:54:
be:5b:f5:d3:b2:70:aa:aa:7d:c8:8e:b8:7b:0e:aa:
46:b3:c6:7b:f3:c7:8a:00:a6:1b:f1:33:af:e6:ff:
ee:8b:12:6e:76:dc:cc:60:70:8a:d6:5b:54:52:32:
e0:95:8a:d4:5d:b2:02:d1:af:a2:7a:ca:9a:71:26:
8c:e6:14:21:08:e5:18:a7:74:eb:3c:12:6d:ab:1c:
ff:b6:d3:fd:2a:dd:d3:af:aa:8f:0a:07:56:29:18:
d7:65:8f:eb:5b:31:8b:a5:46:4d:b9:dc:77:52:ea:
5d:78:f1:e2:14:d7:ca:80:8a:dc:83:ca:0b:bf:a0:
93:ef:c9:3a:cc:4c:e6:45:e2:14:e4:a3:16:3e:07:
53:5e:19:7b:a0:d4:96:88:9d:8d:95:09:e9:bc:51:
4e:55:83:b1:3b:2e:51:ca:dc:44:a2:30:71:90:3d:
7a:1a:73:66:eb:f0:c8:1f:65:ea:4e:6c:bf:03:19:
2f:f4:f8:2e:b0:da:71:b5:89:45:a3:51:5c:42:f2:
9a:e8:c7:88:5f:20:68:a7:82:c0:5e:a3:4d:e8:fc:
97:e7:84:fb:b6:2d:59:04:ca:f7:1e:73:ad:0e:fb:
d1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:00:4C:B5:F6:C4:68:CB:48:BE:4D:7B:9D:16:D8:24:8A:61:19:B6
X509v3 Authority Key Identifier:
keyid:43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:15:04:77:fe:f6:0b:2f:ab:13:59:6a:db:33:38:de:ea:16:
13:3a:b8:7d:59:c7:cf:8b:ee:c9:7f:f4:78:20:2f:31:c9:d5:
89:1c:7e:cd:f0:27:0b:f4:b2:f7:e5:03:5a:3c:17:09:c0:d5:
82:57:6b:63:5b:fa:72:f1:cc:0a:34:6a:06:5f:55:b8:7b:35:
2b:9f:ed:ee:ba:8e:7d:9e:e6:19:3b:37:4d:05:01:7d:86:6e:
08:29:75:2f:f7:22:7c:d7:4a:62:db:05:5f:ea:40:bf:f1:3b:
70:73:8a:48:97:03:1e:ce:51:ec:78:af:1c:25:66:6f:b2:6c:
6c:a9:eb:b7:f3:cc:40:fc:e9:ad:57:0f:23:3a:4e:3b:aa:ea:
0b:52:61:4d:4c:bc:b5:0e:51:3d:eb:b3:ba:45:99:b4:b9:17:
37:16:3a:cf:25:cf:53:dc:9c:44:06:38:9a:79:e7:2d:22:6b:
ac:05:9c:1e:a6:bf:db:f3:11:94:09:a9:69:93:39:6a:e9:ea:
bc:fa:ff:36:6e:83:e6:d6:e7:b3:c6:51:a1:ba:25:03:92:ff:
8b:02:79:bf:61:b5:20:39:1b:46:ed:d3:39:e2:9f:80:ba:4d:
b5:03:6d:8d:dc:f9:db:77:b3:05:8b:c3:a3:39:b9:ba:ac:35:
59:35:3a:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTEmiH6Z9fPZDNFLR4EBaicMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzZmQ5MzYyZTgzYjg1MmYzZmQzMzExYjA5MDk2ZjYyODlh
NmEwZjgwHhcNMjUwMjAyMDMwMDIzWhcNMjUwMjAzMDMwMDIzWjAzMTEwLwYDVQQD
EyhjZDAwNGNiNWY2YzQ2OGNiNDhiZTRkN2I5ZDE2ZDgyNDhhNjExOWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnkD/S+UCuPPz8mGVY12rRg53Z2i
2cJ/O6zM8lS+W/XTsnCqqn3Ijrh7DqpGs8Z788eKAKYb8TOv5v/uixJudtzMYHCK
1ltUUjLglYrUXbIC0a+iesqacSaM5hQhCOUYp3TrPBJtqxz/ttP9Kt3Tr6qPCgdW
KRjXZY/rWzGLpUZNudx3UupdePHiFNfKgIrcg8oLv6CT78k6zEzmReIU5KMWPgdT
Xhl7oNSWiJ2NlQnpvFFOVYOxOy5RytxEojBxkD16GnNm6/DIH2XqTmy/Axkv9Pgu
sNpxtYlFo1FcQvKa6MeIXyBop4LAXqNN6PyX54T7ti1ZBMr3HnOtDvvRzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM0ATLX2xGjLSL5Ne50W2CSKYRm2MB8GA1UdIwQY
MBaAFEP9k2LoO4UvP9MxGwkJb2KJpqD4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUV8yVFl1ZzdoUzhfMHpFYkNRbHZZb21tb1BnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8xZDNjMTUtMzQxNi00NGFkLTlhODkt
NjU0N2JiMWI4MGMyLzEvUV8yVFl1ZzdoUzhfMHpFYkNRbHZZb21tb1BnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi8xZDNjMTUtMzQxNi00NGFkLTlhODktNjU0N2JiMWI4MGMy
LzEvUV8yVFl1ZzdoUzhfMHpFYkNRbHZZb21tb1BnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfhUEd/72
Cy+rE1lq2zM43uoWEzq4fVnHz4vuyX/0eCAvMcnViRx+zfAnC/Sy9+UDWjwXCcDV
gldrY1v6cvHMCjRqBl9VuHs1K5/t7rqOfZ7mGTs3TQUBfYZuCCl1L/cifNdKYtsF
X+pAv/E7cHOKSJcDHs5R7HivHCVmb7JsbKnrt/PMQPzprVcPIzpOO6rqC1JhTUy8
tQ5RPeuzukWZtLkXNxY6zyXPU9ycRAY4mnnnLSJrrAWcHqa/2/MRlAmpaZM5aunq
vPr/Nm6D5tbns8ZRobolA5L/iwJ5v2G1IDkbRu3TOeKfgLpNtQNtjdz523ezBYvD
ozm5uqw1WTU6dQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:50:47 2025 by rpki-client