Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
File: Cani7ovOptW5GcSjPSbZu_mCqEM.mft (raw, json)
Hash identifier: Mbif6FnKV21iS9YxnWvsunjDzCy+teNb1teVrTzK+No=
Subject key identifier: 0E:10:7F:63:53:6C:6D:73:30:6F:BD:C6:2F:77:C3:1E:93:DF:9C:7E
Authority key identifier: 09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
Certificate issuer: /CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Certificate serial: 019512478D262814C2AF59D3D9B264FC83C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
Manifest number: 08D5
Signing time: Mon 17 Feb 2025 05:00:33 +0000
Manifest this update: Mon 17 Feb 2025 05:00:33 +0000
Manifest next update: Tue 18 Feb 2025 05:00:33 +0000
Files and hashes: 1: Cani7ovOptW5GcSjPSbZu_mCqEM.crl (hash: WJpVhHnCr+yIrRlbYrMVKgGF8hsr5Lg9TnYjFrh6VFg=)
2: VNahP0UQveZ8aD0TsmaExJY0tZA.roa (hash: mRQeMIIWNprrsGatyNnULZeqD9q6svl4Pj1uiYVKUX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:8d:26:28:14:c2:af:59:d3:d9:b2:64:fc:83:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Validity
Not Before: Feb 17 05:00:33 2025 GMT
Not After : Feb 18 05:00:33 2025 GMT
Subject: CN=0e107f63536c6d73306fbdc62f77c31e93df9c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:36:00:fa:fa:80:af:ec:96:a4:e1:a4:f6:4c:
d1:3c:41:de:10:5c:0d:4b:8c:c4:6a:5b:f1:0f:ea:
b1:d8:3d:d7:7a:4b:f5:7e:37:34:32:de:42:b8:9e:
f7:3d:64:e4:ad:fe:e9:82:cf:7e:e4:b7:7e:ef:03:
85:1d:33:7d:86:d9:f4:fc:ca:42:8b:db:b2:d7:57:
c9:cf:74:27:48:e0:2f:a5:94:bf:19:d0:34:fb:8b:
99:3f:0a:c7:34:98:89:89:a8:88:6e:13:a2:a7:9b:
82:9a:16:d1:d4:a8:44:a9:30:e1:81:f0:b8:70:02:
73:94:65:fa:19:d2:00:6f:9a:c8:d6:59:27:07:80:
a4:b9:ec:21:96:c4:20:ba:05:c4:a6:c6:53:6e:a2:
fe:cb:34:7a:6c:23:af:72:3b:85:39:ff:83:3a:e8:
82:c8:a6:95:d3:d3:48:6b:96:98:50:71:b5:2a:4d:
5f:89:f8:44:6c:7e:0b:bc:da:2c:18:9b:66:3e:0c:
b2:f0:3b:3c:e0:00:c9:a2:ce:b5:2a:f1:e6:60:f6:
1c:df:29:8a:e2:12:39:d8:06:7c:30:9d:e7:40:ce:
d7:3c:83:60:d2:3b:16:33:49:3f:9d:66:89:e8:13:
f1:6a:6b:ea:80:c9:0d:68:e1:05:1f:0c:08:20:fa:
32:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:10:7F:63:53:6C:6D:73:30:6F:BD:C6:2F:77:C3:1E:93:DF:9C:7E
X509v3 Authority Key Identifier:
keyid:09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:1a:17:3a:92:e7:09:d3:09:43:e5:50:3f:c2:3f:1a:ca:99:
21:be:65:7c:f2:e8:c1:87:e9:4d:f2:f3:1a:15:c3:77:d2:6c:
41:ac:3d:29:f7:77:6a:4b:19:9b:59:87:0c:9a:50:76:6b:04:
48:02:56:8f:08:eb:c8:3a:25:40:b8:4e:ca:fe:77:0c:5d:d3:
d4:7e:bf:44:73:68:99:b6:c8:0e:9d:55:3a:5b:fd:6b:f1:96:
19:de:2f:ed:45:e9:7b:84:5f:97:57:f9:13:f5:9f:be:44:11:
a0:58:a4:20:ca:c1:d4:35:b2:7c:d1:43:12:f8:70:1d:5d:da:
ad:ac:02:38:df:9f:1e:76:7c:a9:f2:6e:1d:e1:27:c2:dc:a0:
45:29:71:12:ef:48:f2:d1:f5:25:57:22:7f:84:0d:32:95:f8:
08:d4:0b:ca:08:24:d2:91:72:59:2c:fb:70:a0:54:31:c0:5c:
eb:33:7d:42:47:3c:1f:8a:bb:a2:bf:3d:9c:84:15:c7:4a:b6:
99:65:74:00:f3:29:f2:bf:79:9a:86:e1:34:1c:1d:88:18:7c:
dc:6d:e5:fd:18:c3:30:6e:58:d2:99:cf:f8:2b:48:23:18:ad:
dd:68:0b:d4:3d:d2:71:a1:a9:86:39:19:28:ba:6a:aa:c0:f1:
91:a3:f1:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSR40mKBTCr1nT2bJk/IPDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5YTllMmVlOGJjZWE2ZDViOTE5YzRhMzNkMjZkOWJiZjk4
MmE4NDMwHhcNMjUwMjE3MDUwMDMzWhcNMjUwMjE4MDUwMDMzWjAzMTEwLwYDVQQD
EygwZTEwN2Y2MzUzNmM2ZDczMzA2ZmJkYzYyZjc3YzMxZTkzZGY5YzdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTYA+vqAr+yWpOGk9kzRPEHeEFwN
S4zEalvxD+qx2D3Xekv1fjc0Mt5CuJ73PWTkrf7pgs9+5Ld+7wOFHTN9htn0/MpC
i9uy11fJz3QnSOAvpZS/GdA0+4uZPwrHNJiJiaiIbhOip5uCmhbR1KhEqTDhgfC4
cAJzlGX6GdIAb5rI1lknB4CkuewhlsQgugXEpsZTbqL+yzR6bCOvcjuFOf+DOuiC
yKaV09NIa5aYUHG1Kk1fifhEbH4LvNosGJtmPgyy8Ds84ADJos61KvHmYPYc3ymK
4hI52AZ8MJ3nQM7XPINg0jsWM0k/nWaJ6BPxamvqgMkNaOEFHwwIIPoy+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA4Qf2NTbG1zMG+9xi93wx6T35x+MB8GA1UdIwQY
MBaAFAmp4u6LzqbVuRnEoz0m2bv5gqhDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2FuaTdvdk9wdFc1R2NTalBTYlp1X21DcUVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS81OGQxNWItOWYwMi00MmM0LWIwMmQt
YTAxZWVhNjVmZDMzLzEvQ2FuaTdvdk9wdFc1R2NTalBTYlp1X21DcUVNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS81OGQxNWItOWYwMi00MmM0LWIwMmQtYTAxZWVhNjVmZDMz
LzEvQ2FuaTdvdk9wdFc1R2NTalBTYlp1X21DcUVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfRoXOpLn
CdMJQ+VQP8I/GsqZIb5lfPLowYfpTfLzGhXDd9JsQaw9Kfd3aksZm1mHDJpQdmsE
SAJWjwjryDolQLhOyv53DF3T1H6/RHNombbIDp1VOlv9a/GWGd4v7UXpe4Rfl1f5
E/WfvkQRoFikIMrB1DWyfNFDEvhwHV3arawCON+fHnZ8qfJuHeEnwtygRSlxEu9I
8tH1JVcif4QNMpX4CNQLyggk0pFyWSz7cKBUMcBc6zN9Qkc8H4q7or89nIQVx0q2
mWV0APMp8r95mobhNBwdiBh83G3l/RjDMG5Y0pnP+CtIIxit3WgL1D3ScaGphjkZ
KLpqqsDxkaPx0w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:40 2025 by rpki-client