Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
File: mXwn0VtG2xhLwCswPIa0fEScG1Q.mft (raw, json)
Hash identifier: WdRz4+bshOmgKcwzbzfyqBwGKpQSG1fhii/+YHJWuB8=
Subject key identifier: 60:D6:F1:72:18:F6:0B:EC:30:FE:EA:80:1F:76:61:32:F4:A1:68:D6
Authority key identifier: 99:7C:27:D1:5B:46:DB:18:4B:C0:2B:30:3C:86:B4:7C:44:9C:1B:54
Certificate issuer: /CN=997c27d15b46db184bc02b303c86b47c449c1b54
Certificate serial: 01951134DAA566C9996AE1369690C337EECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXwn0VtG2xhLwCswPIa0fEScG1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
Manifest number: 0D1B
Signing time: Mon 17 Feb 2025 00:00:31 +0000
Manifest this update: Mon 17 Feb 2025 00:00:31 +0000
Manifest next update: Tue 18 Feb 2025 00:00:31 +0000
Files and hashes: 1: JpZlGPUSnNPcPAQ7HrfbEiiCY90.roa (hash: sj/ySyRWLvZHGTxRHODxTY1XK4NRx1uXT8wwjiiWvG0=)
2: mXwn0VtG2xhLwCswPIa0fEScG1Q.crl (hash: ZyrwL3HWChalOj0/38VwRlefh8q1lzphYxAOwIjDwNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXwn0VtG2xhLwCswPIa0fEScG1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:da:a5:66:c9:99:6a:e1:36:96:90:c3:37:ee:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997c27d15b46db184bc02b303c86b47c449c1b54
Validity
Not Before: Feb 17 00:00:31 2025 GMT
Not After : Feb 18 00:00:31 2025 GMT
Subject: CN=60d6f17218f60bec30feea801f766132f4a168d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3f:3f:33:bf:1a:21:02:4f:06:28:2e:ae:39:
7d:84:c9:20:d3:e4:d7:1e:d2:2d:6f:92:29:9f:b0:
16:17:b5:1c:e8:e4:d4:d2:9a:ee:3c:e7:d5:3a:f3:
a4:71:69:01:ec:78:52:0d:79:50:e9:7a:1b:bc:fb:
4a:3c:3f:7d:3c:07:f7:cf:46:71:06:e9:38:de:bc:
3c:76:48:ca:76:85:50:c7:a7:73:e2:2e:8d:27:ce:
88:63:39:36:aa:c6:1b:87:51:4b:c7:1e:b9:89:d7:
ad:29:0d:e4:22:46:81:28:f9:25:bb:0e:5a:50:ba:
f5:85:da:21:9f:33:fa:87:ed:7b:84:4d:b1:bc:f2:
4a:4c:ec:45:43:2a:fb:15:ad:85:fb:92:26:8e:6c:
ae:f9:6b:b4:39:92:52:cf:83:08:5a:f4:5a:0a:33:
00:d5:d4:cc:96:e6:a8:82:8c:b1:32:7e:7c:67:af:
d2:c8:fe:7c:99:10:f5:0e:4d:e4:aa:56:dc:57:b2:
7f:72:a8:0d:ef:ff:84:93:a1:00:55:ad:a7:30:e0:
06:f4:e3:3c:c7:19:b5:fe:ca:74:e4:ee:32:04:e9:
0d:68:d8:d0:5c:da:9b:e6:fa:22:ff:db:a7:0b:7f:
7a:8e:0d:c7:c3:9f:3a:4d:57:97:f0:69:00:b9:90:
fb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D6:F1:72:18:F6:0B:EC:30:FE:EA:80:1F:76:61:32:F4:A1:68:D6
X509v3 Authority Key Identifier:
keyid:99:7C:27:D1:5B:46:DB:18:4B:C0:2B:30:3C:86:B4:7C:44:9C:1B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXwn0VtG2xhLwCswPIa0fEScG1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:6a:17:84:3b:ef:03:7b:50:34:da:ef:3e:c3:fa:09:24:f2:
c9:cb:65:c8:5d:fa:d6:a8:1c:db:d9:67:13:39:cf:7c:64:71:
26:4a:ca:88:07:df:6e:95:68:07:02:f4:7a:c2:a6:11:d2:82:
dc:5b:f5:e1:76:43:22:e9:60:83:23:5e:97:3b:07:ed:df:29:
b3:61:51:eb:20:05:14:4b:71:b5:d7:b7:16:1a:1c:21:36:3d:
6d:ae:b4:ba:d9:b4:21:1a:75:28:d2:52:e7:90:68:78:c8:50:
9b:df:4c:bb:05:c4:e6:1a:8c:dd:74:12:3e:68:f8:09:fc:5c:
a7:4d:e7:7e:b5:e9:5a:58:d7:8e:bf:ee:9b:69:87:11:2c:e0:
86:4e:2f:79:1a:f1:23:1d:6d:a9:dd:77:29:90:e4:6d:86:30:
5a:4b:d8:fb:b2:f3:1b:02:56:15:17:5c:6a:e5:65:f3:e2:ce:
fd:f9:af:cf:c9:62:b5:37:3a:4e:ca:25:d0:ac:da:f6:17:54:
c9:ee:a2:e1:0e:d2:c6:08:6d:c0:d1:19:84:69:51:a9:df:91:
ec:41:d6:fb:c3:36:38:bd:9d:35:24:77:db:18:83:e2:fd:ed:
cd:fc:ac:44:8b:b0:fd:c7:6d:ca:15:65:2d:c0:de:c7:1d:db:
90:a4:0f:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNNqlZsmZauE2lpDDN+7OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5N2MyN2QxNWI0NmRiMTg0YmMwMmIzMDNjODZiNDdjNDQ5
YzFiNTQwHhcNMjUwMjE3MDAwMDMxWhcNMjUwMjE4MDAwMDMxWjAzMTEwLwYDVQQD
Eyg2MGQ2ZjE3MjE4ZjYwYmVjMzBmZWVhODAxZjc2NjEzMmY0YTE2OGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtz8/M78aIQJPBigurjl9hMkg0+TX
HtItb5Ipn7AWF7Uc6OTU0pruPOfVOvOkcWkB7HhSDXlQ6XobvPtKPD99PAf3z0Zx
Buk43rw8dkjKdoVQx6dz4i6NJ86IYzk2qsYbh1FLxx65idetKQ3kIkaBKPkluw5a
ULr1hdohnzP6h+17hE2xvPJKTOxFQyr7Fa2F+5Imjmyu+Wu0OZJSz4MIWvRaCjMA
1dTMluaogoyxMn58Z6/SyP58mRD1Dk3kqlbcV7J/cqgN7/+Ek6EAVa2nMOAG9OM8
xxm1/sp05O4yBOkNaNjQXNqb5voi/9unC396jg3Hw586TVeX8GkAuZD7GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGDW8XIY9gvsMP7qgB92YTL0oWjWMB8GA1UdIwQY
MBaAFJl8J9FbRtsYS8ArMDyGtHxEnBtUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVh3bjBWdEcyeGhMd0Nzd1BJYTBmRVNjRzFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi81Y2NiYWYtYzUxZC00ZTc2LWEzZWUt
MzVhYjQyMDE3M2RiLzEvbVh3bjBWdEcyeGhMd0Nzd1BJYTBmRVNjRzFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi81Y2NiYWYtYzUxZC00ZTc2LWEzZWUtMzVhYjQyMDE3M2Ri
LzEvbVh3bjBWdEcyeGhMd0Nzd1BJYTBmRVNjRzFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQWoXhDvv
A3tQNNrvPsP6CSTyyctlyF361qgc29lnEznPfGRxJkrKiAffbpVoBwL0esKmEdKC
3Fv14XZDIulggyNelzsH7d8ps2FR6yAFFEtxtde3FhocITY9ba60utm0IRp1KNJS
55BoeMhQm99MuwXE5hqM3XQSPmj4Cfxcp03nfrXpWljXjr/um2mHESzghk4veRrx
Ix1tqd13KZDkbYYwWkvY+7LzGwJWFRdcauVl8+LO/fmvz8litTc6Tsol0Kza9hdU
ye6i4Q7SxghtwNEZhGlRqd+R7EHW+8M2OL2dNSR32xiD4v3tzfysRIuw/cdtyhVl
LcDexx3bkKQPyQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:07 2025 by rpki-client