Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
File: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft (raw, json)
Hash identifier: a10FL3rdOPaFj/zrbwOJ7PmjiHWLFXR8kNVgL6jTpPU=
Subject key identifier: 9B:B1:A4:BF:77:0A:A8:25:47:25:5D:4F:B6:E4:77:F3:77:19:CB:F0
Authority key identifier: 94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
Certificate issuer: /CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Certificate serial: 0194C387DEDB1CE9CF5CC460D14BDAB74B12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
Manifest number: 10C8
Signing time: Sat 01 Feb 2025 22:00:49 +0000
Manifest this update: Sat 01 Feb 2025 22:00:49 +0000
Manifest next update: Sun 02 Feb 2025 22:00:49 +0000
Files and hashes: 1: GkmNRez_B8q96uaVOleqThEPoEs.roa (hash: aNQGHPeLClAe2Gmzc0jqm+MRXJ2xuLHjsljQiK1K4qw=)
2: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl (hash: FfLt0P7C79Dv45qQB6gBv042y5c+VnMhjskiUG7FVBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:de:db:1c:e9:cf:5c:c4:60:d1:4b:da:b7:4b:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Validity
Not Before: Feb 1 22:00:49 2025 GMT
Not After : Feb 2 22:00:49 2025 GMT
Subject: CN=9bb1a4bf770aa82547255d4fb6e477f37719cbf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e0:4a:0f:f1:5c:db:9f:a6:3d:35:1a:8d:5a:
4b:a7:1f:8e:ad:10:86:f7:b0:fd:55:28:76:02:0c:
25:ec:ca:ac:6a:7f:a1:35:52:c2:d4:dc:b1:53:25:
e9:ae:1d:3f:ad:6a:0a:13:9e:91:79:1f:08:ed:a0:
7f:55:fc:f2:be:15:e7:5a:50:d9:cc:23:46:e0:96:
b2:fd:07:c5:9c:6d:d6:6b:41:1c:69:22:12:66:54:
4d:96:f2:5f:23:4e:9e:7e:5d:73:a9:e7:e5:f7:ed:
0f:6c:cf:1a:d2:52:9c:66:59:a3:f3:23:e7:51:11:
d0:50:3f:6c:bf:7f:36:2e:22:ea:7a:9f:8c:e4:e5:
ab:bf:28:f2:20:0c:35:1a:41:55:eb:38:7f:af:91:
9e:c8:9f:c1:a2:56:12:da:30:90:c8:72:8e:12:86:
77:e1:28:4a:a4:25:10:3e:4f:f3:8b:bc:b5:90:1b:
03:4e:3d:f8:27:b8:53:46:13:bf:13:e8:ab:51:6b:
5b:7c:66:13:f1:2f:3d:45:63:97:bb:49:9f:40:59:
4d:5d:da:fa:ad:42:e2:98:40:b0:8e:88:54:0f:70:
2e:80:8c:8b:fe:a3:b5:2a:b0:ce:3c:82:ed:83:2a:
c2:13:55:c9:0a:26:74:2a:2e:9e:ab:4d:fb:e5:93:
97:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B1:A4:BF:77:0A:A8:25:47:25:5D:4F:B6:E4:77:F3:77:19:CB:F0
X509v3 Authority Key Identifier:
keyid:94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:4e:e0:d7:c4:23:76:71:b7:21:eb:52:da:d7:3d:f3:f4:03:
73:02:e6:d4:5a:a1:79:18:cf:63:81:55:b1:7f:4a:c0:96:4f:
ce:5b:3e:91:61:3e:0a:5a:d4:d5:4c:18:4b:cb:20:d0:33:5d:
2a:c0:a0:1b:a8:77:0b:e3:c1:79:8d:cb:51:94:9c:7f:3a:5c:
fa:b8:79:d2:c7:3c:6b:ec:70:49:41:0a:aa:19:31:57:25:3b:
63:c7:0b:62:6c:a3:0d:5d:2e:82:fc:10:9d:83:e2:89:2a:ce:
bd:3e:84:88:5a:ce:68:ec:cf:da:81:65:a5:66:64:27:b8:5b:
b0:6e:8b:41:45:8e:37:82:76:ab:a7:f6:db:51:0e:cb:50:48:
8d:cd:96:9b:87:e5:a1:45:93:67:dc:b0:38:5b:81:2d:04:1a:
5a:5e:35:f9:5e:03:c4:be:7c:19:00:5f:8c:0e:79:e6:52:51:
98:35:97:70:46:19:d6:6f:48:be:61:81:67:a1:d7:16:4a:45:
84:a1:9c:f1:be:59:6b:e8:b3:07:8b:41:24:12:de:8c:06:41:
66:8b:3c:cb:be:84:f0:d5:b5:66:e5:b2:2d:b3:00:59:ea:7a:
23:85:dc:64:96:9b:50:1c:06:f5:9b:2c:c0:46:cf:c7:b2:6d:
18:74:30:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDh97bHOnPXMRg0Uvat0sSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZmE2YzQyOTkzMjFkYzVmYzkxZmM3OTYzYWE1MTQ4N2U0
YWY1ZTYwHhcNMjUwMjAxMjIwMDQ5WhcNMjUwMjAyMjIwMDQ5WjAzMTEwLwYDVQQD
Eyg5YmIxYTRiZjc3MGFhODI1NDcyNTVkNGZiNmU0NzdmMzc3MTljYmYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+BKD/Fc25+mPTUajVpLpx+OrRCG
97D9VSh2Agwl7Mqsan+hNVLC1NyxUyXprh0/rWoKE56ReR8I7aB/VfzyvhXnWlDZ
zCNG4Jay/QfFnG3Wa0EcaSISZlRNlvJfI06efl1zqefl9+0PbM8a0lKcZlmj8yPn
URHQUD9sv382LiLqep+M5OWrvyjyIAw1GkFV6zh/r5GeyJ/BolYS2jCQyHKOEoZ3
4ShKpCUQPk/zi7y1kBsDTj34J7hTRhO/E+irUWtbfGYT8S89RWOXu0mfQFlNXdr6
rULimECwjohUD3AugIyL/qO1KrDOPILtgyrCE1XJCiZ0Ki6eq0375ZOXXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJuxpL93CqglRyVdT7bkd/N3GcvwMB8GA1UdIwQY
MBaAFJT6bEKZMh3F/JH8eWOqUUh+SvXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80M2QyNTUtMjg0YS00NjhmLThiNmUt
ZmIxZTlkYjBjMzg4LzEvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC80M2QyNTUtMjg0YS00NjhmLThiNmUtZmIxZTlkYjBjMzg4
LzEvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATk7g18Qj
dnG3IetS2tc98/QDcwLm1FqheRjPY4FVsX9KwJZPzls+kWE+ClrU1UwYS8sg0DNd
KsCgG6h3C+PBeY3LUZScfzpc+rh50sc8a+xwSUEKqhkxVyU7Y8cLYmyjDV0ugvwQ
nYPiiSrOvT6EiFrOaOzP2oFlpWZkJ7hbsG6LQUWON4J2q6f221EOy1BIjc2Wm4fl
oUWTZ9ywOFuBLQQaWl41+V4DxL58GQBfjA555lJRmDWXcEYZ1m9IvmGBZ6HXFkpF
hKGc8b5Za+izB4tBJBLejAZBZos8y76E8NW1ZuWyLbMAWep6I4XcZJabUBwG9Zss
wEbPx7JtGHQw7A==
-----END CERTIFICATE-----
Generated at Sun Feb 2 05:56:01 2025 by rpki-client