Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: draac9aW31u+6wSyY9pN1ksKtFpkOCyBPmf5ixRPGOE=
Subject key identifier: 28:2C:85:F9:74:7C:9B:4B:A0:33:8C:3C:23:A1:0D:B2:CB:D0:C2:FE
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 019510C7F74F16920A98671D7EF0CD56AF76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0AAA
Signing time: Sun 16 Feb 2025 22:01:35 +0000
Manifest this update: Sun 16 Feb 2025 22:01:35 +0000
Manifest next update: Mon 17 Feb 2025 22:01:35 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: wnpurcbqAUbqxGp2gnfBmKl/QLwAfkW+gvkg81yZHC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:f7:4f:16:92:0a:98:67:1d:7e:f0:cd:56:af:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Feb 16 22:01:35 2025 GMT
Not After : Feb 17 22:01:35 2025 GMT
Subject: CN=282c85f9747c9b4ba0338c3c23a10db2cbd0c2fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ab:f3:fd:cb:0c:36:73:a7:2c:44:0e:6b:03:
51:05:3d:52:47:bd:1b:2c:ca:dc:a6:db:bf:91:c6:
41:b9:75:ae:e2:71:44:42:db:8e:12:c3:11:b4:20:
fb:00:d2:8d:84:61:0a:d9:f0:b8:41:6f:f8:06:cd:
3e:de:b8:39:b8:aa:99:e8:ee:a4:d3:43:8b:c5:bb:
7f:60:be:3d:cb:54:77:64:2a:e2:f5:b3:7d:7c:53:
9d:87:0a:5d:aa:da:4e:d8:78:36:46:1b:a2:98:f3:
05:3c:94:87:32:a7:48:df:7c:91:4e:f9:1e:e9:61:
85:4d:d4:ad:74:06:21:e8:1f:21:78:78:7d:bd:a0:
2c:e4:31:c1:83:cb:24:fc:80:e6:95:a1:d3:a6:43:
c4:df:bf:30:ca:2a:01:d4:9c:5c:ef:ff:fc:4e:83:
f3:89:d7:ca:45:20:4c:c9:44:08:65:a4:c9:5a:0e:
3f:b0:f5:6b:7f:0f:66:e6:ad:44:d1:6a:39:0b:81:
b8:e5:f5:82:d4:cc:3a:bc:47:85:dd:02:ea:34:56:
db:24:8d:df:d8:39:0f:68:27:78:19:ea:e2:88:24:
0a:62:57:e4:70:9f:7e:f3:86:d6:06:38:c3:a1:64:
7e:51:52:35:4c:8c:5b:79:ea:db:1b:35:c2:05:54:
d2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2C:85:F9:74:7C:9B:4B:A0:33:8C:3C:23:A1:0D:B2:CB:D0:C2:FE
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:43:01:68:60:4e:f2:bd:64:da:65:83:47:66:23:5d:41:31:
b4:15:59:fa:5f:5e:bf:3d:0a:2d:00:54:5a:0a:93:9f:bd:a6:
25:a7:29:6b:f4:f1:35:b3:4d:d1:76:ea:77:54:15:9f:54:89:
ed:2d:d6:f3:0b:3b:96:1d:c5:64:cc:02:42:53:ec:7e:b5:95:
ae:c8:74:b2:eb:30:b4:2a:7d:e2:55:c7:53:a3:6f:bd:01:1c:
46:46:e4:c1:03:77:73:10:b7:c2:df:9f:c0:4b:22:86:a8:41:
fd:80:90:4c:fb:21:fd:a2:a4:90:fc:94:45:1e:e2:81:95:3a:
b0:2d:2e:93:b8:6b:0a:04:cb:9f:36:c1:60:6e:65:fd:ba:ce:
8a:ca:54:a8:08:40:ac:a7:65:e5:22:10:79:5f:d4:49:20:bd:
dc:9b:d7:61:33:70:25:d0:e7:e1:5b:da:80:b6:6d:d3:27:4e:
aa:9b:3b:ab:8c:e3:cf:25:68:93:c0:66:be:11:3d:04:42:80:
65:7d:91:d6:fd:9e:a7:1b:ef:84:09:e1:f0:39:cb:73:d1:16:
3f:86:e8:26:41:fb:a4:a8:89:d0:51:60:1c:f2:32:70:ef:b0:
d8:28:f8:e2:59:f2:76:90:91:1a:1f:9f:2e:2a:de:ff:fc:5c:
02:ec:6a:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQx/dPFpIKmGcdfvDNVq92MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2M2ZlOWMxMzQwNDFjZWJkYTU2OGI5ZjkwOGUyYWVmMzhh
YjdmNzUwHhcNMjUwMjE2MjIwMTM1WhcNMjUwMjE3MjIwMTM1WjAzMTEwLwYDVQQD
EygyODJjODVmOTc0N2M5YjRiYTAzMzhjM2MyM2ExMGRiMmNiZDBjMmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKvz/csMNnOnLEQOawNRBT1SR70b
LMrcptu/kcZBuXWu4nFEQtuOEsMRtCD7ANKNhGEK2fC4QW/4Bs0+3rg5uKqZ6O6k
00OLxbt/YL49y1R3ZCri9bN9fFOdhwpdqtpO2Hg2RhuimPMFPJSHMqdI33yRTvke
6WGFTdStdAYh6B8heHh9vaAs5DHBg8sk/IDmlaHTpkPE378wyioB1Jxc7//8ToPz
idfKRSBMyUQIZaTJWg4/sPVrfw9m5q1E0Wo5C4G45fWC1Mw6vEeF3QLqNFbbJI3f
2DkPaCd4GeriiCQKYlfkcJ9+84bWBjjDoWR+UVI1TIxbeerbGzXCBVTSXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCgshfl0fJtLoDOMPCOhDbLL0ML+MB8GA1UdIwQY
MBaAFPY/6cE0BBzr2laLn5COKu84q391MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYt
NWFlYzc2NmE0OWI0LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYtNWFlYzc2NmE0OWI0
LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHEMBaGBO
8r1k2mWDR2YjXUExtBVZ+l9evz0KLQBUWgqTn72mJacpa/TxNbNN0Xbqd1QVn1SJ
7S3W8ws7lh3FZMwCQlPsfrWVrsh0suswtCp94lXHU6NvvQEcRkbkwQN3cxC3wt+f
wEsihqhB/YCQTPsh/aKkkPyURR7igZU6sC0uk7hrCgTLnzbBYG5l/brOispUqAhA
rKdl5SIQeV/USSC93JvXYTNwJdDn4VvagLZt0ydOqps7q4zjzyVok8BmvhE9BEKA
ZX2R1v2epxvvhAnh8DnLc9EWP4boJkH7pKiJ0FFgHPIycO+w2Cj44lnydpCRGh+f
Lire//xcAuxqAw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:32 2025 by rpki-client