Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
File: 5HZ7Uea0grnnp0g2YqXb7huNhaA.mft (raw, json)
Hash identifier: TVcrh49iAAe2QoI6FOAGAL8Z58eB61zI7Vz7p2MkurQ=
Subject key identifier: 2F:EB:FB:60:D9:35:1E:5E:8B:73:8A:1E:80:2B:C7:AC:37:99:46:62
Authority key identifier: E4:76:7B:51:E6:B4:82:B9:E7:A7:48:36:62:A5:DB:EE:1B:8D:85:A0
Certificate issuer: /CN=e4767b51e6b482b9e7a7483662a5dbee1b8d85a0
Certificate serial: 019511A24BA5534DDDB11480DE44B0FF35AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
Manifest number: 1455
Signing time: Mon 17 Feb 2025 02:00:03 +0000
Manifest this update: Mon 17 Feb 2025 02:00:03 +0000
Manifest next update: Tue 18 Feb 2025 02:00:03 +0000
Files and hashes: 1: 1-2kAM8E1UL_Pvf9Vzt6AdGfyh8o.roa (hash: Ohp9jg/lWKCAW1pqYiDBNHfJGsbI7n6Nnedeq9nVw0Y=)
2: 5HZ7Uea0grnnp0g2YqXb7huNhaA.crl (hash: kGGnYOvqwADndkoj0yMllUinEP8nQHCYmcJOIJWdLWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:4b:a5:53:4d:dd:b1:14:80:de:44:b0:ff:35:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4767b51e6b482b9e7a7483662a5dbee1b8d85a0
Validity
Not Before: Feb 17 02:00:03 2025 GMT
Not After : Feb 18 02:00:03 2025 GMT
Subject: CN=2febfb60d9351e5e8b738a1e802bc7ac37994662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e2:cb:80:2b:41:88:62:09:29:88:9e:c8:23:
2a:91:da:20:4e:80:bc:f5:4f:41:79:ca:1c:ad:10:
c0:ba:cf:b2:72:93:2d:32:a9:19:05:8a:8e:f1:f6:
23:22:95:58:5c:c4:4a:47:de:b4:03:ac:a8:c9:ae:
fd:7c:dc:d5:85:91:6e:2c:c5:92:9e:95:44:09:7b:
75:fd:b4:e0:c3:89:86:61:19:4a:98:69:e5:d9:b2:
73:7f:8e:fb:c8:4e:d5:98:eb:b3:12:37:d1:7e:a4:
3e:22:5b:36:5a:c5:2b:f2:01:e5:79:15:b0:68:aa:
15:70:5d:cd:7a:18:56:53:13:5b:a4:2f:53:21:56:
46:83:a3:c4:f6:52:9c:54:01:d3:51:f4:83:27:43:
dc:da:1e:00:b6:6c:45:8a:3f:6d:6f:6d:4d:16:cc:
1c:6c:3d:1d:3a:0c:66:c0:4a:fa:03:e3:fe:33:ce:
31:eb:21:c9:cc:d3:c0:61:50:b6:0c:0a:4a:96:f1:
21:a7:43:76:ea:03:95:11:84:69:3b:b8:bd:2c:12:
e2:5c:37:1a:7f:b7:2d:1b:57:d5:77:09:ef:53:6e:
85:5f:ee:f5:be:83:01:47:d1:a2:0e:1a:ca:7a:db:
39:4e:c4:a5:d8:a4:bf:0f:2e:d6:8d:b5:ed:52:4b:
9f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:EB:FB:60:D9:35:1E:5E:8B:73:8A:1E:80:2B:C7:AC:37:99:46:62
X509v3 Authority Key Identifier:
keyid:E4:76:7B:51:E6:B4:82:B9:E7:A7:48:36:62:A5:DB:EE:1B:8D:85:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:a7:b9:1d:46:30:0a:03:5f:9d:84:c5:4a:88:b1:ae:de:8e:
7e:29:58:97:61:b1:46:9a:9f:b7:f2:2f:0e:6b:36:dc:6d:3d:
95:e3:7b:b8:0a:59:c5:b3:59:20:a5:6e:16:5d:65:a8:dc:59:
7c:c2:01:87:b9:c5:88:e5:72:aa:c7:9a:2a:b9:70:23:4b:74:
f4:16:a5:9e:37:d6:4d:b7:6f:54:8d:11:74:31:7e:98:c7:f8:
2b:7a:4e:55:ec:4b:0f:06:39:87:ed:08:6c:49:1f:49:51:25:
85:10:e0:9d:a3:c1:54:92:11:0e:75:55:c1:8d:65:d6:e2:2f:
78:e5:ea:d9:f7:1c:04:24:1c:3f:3c:c8:6f:8b:31:c9:a7:d7:
26:c9:cf:85:bb:4a:67:54:f3:f8:d7:d7:a8:b4:18:43:98:5a:
2f:3e:b1:29:f7:65:2b:10:05:b6:ba:70:ad:89:86:79:98:67:
b0:87:63:6c:95:c7:a6:23:bb:ee:2c:db:2c:ea:23:7d:b8:6e:
f7:6a:f4:4a:2e:52:47:49:3c:2b:ff:1a:68:78:28:ea:69:29:
40:61:50:31:b8:69:a8:cd:85:1e:61:72:92:33:21:8e:62:4c:
f7:e3:55:71:d3:e4:69:24:32:3d:6c:81:89:b1:e4:5d:9c:bd:
c5:bf:92:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURokulU03dsRSA3kSw/zWsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0NzY3YjUxZTZiNDgyYjllN2E3NDgzNjYyYTVkYmVlMWI4
ZDg1YTAwHhcNMjUwMjE3MDIwMDAzWhcNMjUwMjE4MDIwMDAzWjAzMTEwLwYDVQQD
EygyZmViZmI2MGQ5MzUxZTVlOGI3MzhhMWU4MDJiYzdhYzM3OTk0NjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueLLgCtBiGIJKYieyCMqkdogToC8
9U9BecocrRDAus+ycpMtMqkZBYqO8fYjIpVYXMRKR960A6yoya79fNzVhZFuLMWS
npVECXt1/bTgw4mGYRlKmGnl2bJzf477yE7VmOuzEjfRfqQ+Ils2WsUr8gHleRWw
aKoVcF3NehhWUxNbpC9TIVZGg6PE9lKcVAHTUfSDJ0Pc2h4AtmxFij9tb21NFswc
bD0dOgxmwEr6A+P+M84x6yHJzNPAYVC2DApKlvEhp0N26gOVEYRpO7i9LBLiXDca
f7ctG1fVdwnvU26FX+71voMBR9GiDhrKets5TsSl2KS/Dy7WjbXtUkuf5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC/r+2DZNR5ei3OKHoArx6w3mUZiMB8GA1UdIwQY
MBaAFOR2e1HmtIK556dINmKl2+4bjYWgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUhaN1VlYTBncm5ucDBnMllxWGI3aHVOaGFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy83NDU3NjgtYmE4MC00ZTc2LWExZDgt
YmRiZTE2ODA2NjE2LzEvNUhaN1VlYTBncm5ucDBnMllxWGI3aHVOaGFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy83NDU3NjgtYmE4MC00ZTc2LWExZDgtYmRiZTE2ODA2NjE2
LzEvNUhaN1VlYTBncm5ucDBnMllxWGI3aHVOaGFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANKe5HUYw
CgNfnYTFSoixrt6OfilYl2GxRpqft/IvDms23G09leN7uApZxbNZIKVuFl1lqNxZ
fMIBh7nFiOVyqseaKrlwI0t09BalnjfWTbdvVI0RdDF+mMf4K3pOVexLDwY5h+0I
bEkfSVElhRDgnaPBVJIRDnVVwY1l1uIveOXq2fccBCQcPzzIb4sxyafXJsnPhbtK
Z1Tz+NfXqLQYQ5haLz6xKfdlKxAFtrpwrYmGeZhnsIdjbJXHpiO77izbLOojfbhu
92r0Si5SR0k8K/8aaHgo6mkpQGFQMbhpqM2FHmFykjMhjmJM9+NVcdPkaSQyPWyB
ibHkXZy9xb+S4A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:35 2025 by rpki-client